$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9bj2JtdJIDWvfigMgD26-GJotqs.roa File: 9bj2JtdJIDWvfigMgD26-GJotqs.roa (raw, json) Hash identifier: HW9xO07K+5EH/lDK8NQID2AyYNUtv+2aCEkfQ3NT8gI= Subject key identifier: F5:B8:F6:26:D7:49:20:35:AF:7E:28:0C:80:3D:BA:F8:62:68:B6:AB Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14DC Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9bj2JtdJIDWvfigMgD26-GJotqs.roa Signing time: Fri 22 Aug 2025 08:54:51 +0000 ROA not before: Fri 22 Aug 2025 08:54:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3911 IP address blocks: 219.86.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5340 (0x14dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F5B8F626D7492035AF7E280C803DBAF86268B6AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a2:d0:fa:d9:83:89:ae:d3:25:1b:12:14:f6: 9e:24:7c:f1:a3:ea:58:c5:de:3f:02:5f:6e:6b:84: c9:dc:93:65:2e:26:a2:a2:09:75:b5:81:41:4d:1e: e9:d0:9e:ea:2c:48:eb:4c:70:5d:8c:3b:02:8f:4e: 7c:19:9b:c9:10:9d:8a:d2:f7:31:ea:b9:9d:cf:0f: e9:29:e6:7f:8e:1f:70:02:48:2b:21:37:60:07:ba: b0:e6:95:f6:93:7d:19:c0:9c:b2:e8:53:6c:ba:b6: f5:89:03:1d:17:90:1f:57:0a:bb:97:df:2b:00:e9: 6b:b0:a0:89:e3:d0:c9:95:25:00:d5:8a:21:64:a8: 8e:52:fc:33:ea:e5:a4:26:f4:c7:2a:56:7f:7a:94: da:90:5d:81:5c:87:b0:7b:5e:5d:74:14:77:8f:df: ef:6c:f1:9e:61:a1:63:89:40:3d:fc:28:1d:90:a2: 42:f5:3a:01:af:20:5e:b7:e3:e0:2c:c3:4f:c2:49: 9d:ae:83:8b:6b:e8:78:29:a7:81:0f:81:a6:b9:4a: 58:24:32:d5:5a:52:9e:8c:f1:48:b2:e8:a3:d0:b1: 8b:32:75:11:a4:09:00:0e:3e:d4:d2:17:21:89:65: c2:93:56:95:7a:fa:1e:a4:11:c4:f0:45:25:74:3b: e0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:B8:F6:26:D7:49:20:35:AF:7E:28:0C:80:3D:BA:F8:62:68:B6:AB X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9bj2JtdJIDWvfigMgD26-GJotqs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.86.93.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:bd:55:15:0e:33:8e:31:d0:d8:1a:d1:57:62:1d:73:de:a2: cd:2f:6b:54:73:92:bf:58:77:bc:d2:44:45:b2:35:7c:d8:9a: cb:f7:a3:81:0d:c8:10:1d:48:81:cc:7e:7a:06:2c:a9:87:13: ca:27:ef:f4:33:47:e5:5f:d4:7f:45:29:4b:51:68:8c:47:d5: 18:7f:14:f6:4d:6f:9b:b9:7c:8f:94:08:29:a4:ee:ec:31:5f: c5:fa:43:50:69:28:8d:f6:7d:20:56:99:36:7f:d2:8e:87:6a: d7:b0:fc:4e:38:71:3c:97:d0:75:8f:f9:e7:dd:96:ce:8a:96: bf:65:24:7b:b0:f2:72:1b:4d:c4:67:06:40:cb:eb:d1:a3:f0: fc:79:be:2e:41:da:5e:f8:b1:7b:31:ea:78:28:c9:90:b6:dc: ae:00:60:c7:44:b0:36:bb:58:66:2e:e8:91:f5:e6:e7:c6:11: 8c:4f:4c:1a:55:12:71:34:1c:0b:02:54:aa:fb:97:3f:9a:d1: 16:b7:c8:df:ed:59:a9:9c:a2:c6:d5:a0:70:23:22:ad:6d:71: 5c:fd:ed:44:63:10:f6:75:e1:3b:56:38:63:5f:be:5f:ff:a2: 44:34:96:b0:37:6e:03:eb:09:72:8e:d3:59:08:1e:d3:c6:46: 2c:8d:9f:37 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFNwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY1QjhGNjI2RDc0OTIw MzVBRjdFMjgwQzgwM0RCQUY4NjI2OEI2QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmotD62YOJrtMlGxIU9p4kfPGj6ljF3j8CX25rhMnck2UuJqKi CXW1gUFNHunQnuosSOtMcF2MOwKPTnwZm8kQnYrS9zHquZ3PD+kp5n+OH3ACSCsh N2AHurDmlfaTfRnAnLLoU2y6tvWJAx0XkB9XCruX3ysA6WuwoInj0MmVJQDViiFk qI5S/DPq5aQm9McqVn96lNqQXYFch7B7Xl10FHeP3+9s8Z5hoWOJQD38KB2QokL1 OgGvIF634+Asw0/CSZ2ug4tr6Hgpp4EPgaa5SlgkMtVaUp6M8Uiy6KPQsYsydRGk CQAOPtTSFyGJZcKTVpV6+h6kEcTwRSV0O+D3AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU9bj2JtdJIDWvfigMgD26+GJotqswHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvOWJqMkp0ZEpJRFd2Zmln TWdEMjYtR0pvdHFzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ANtWXTANBgkqhkiG9w0BAQsFAAOCAQEADr1VFQ4zjjHQ2BrRV2Idc96izS9rVHOS v1h3vNJERbI1fNiay/ejgQ3IEB1Igcx+egYsqYcTyifv9DNH5V/Uf0UpS1FojEfV GH8U9k1vm7l8j5QIKaTu7DFfxfpDUGkojfZ9IFaZNn/Sjodq17D8TjhxPJfQdY/5 592WzoqWv2Uke7DychtNxGcGQMvr0aPw/Hm+LkHaXvixezHqeCjJkLbcrgBgx0Sw NrtYZi7okfXm58YRjE9MGlUScTQcCwJUqvuXP5rRFrfI3+1ZqZyixtWgcCMirW1x XP3tRGMQ9nXhO1Y4Y1++X/+iRDSWsDduA+sJco7TWQge08ZGLI2fNw== -----END CERTIFICATE-----Generated at Sun Aug 24 06:50:29 2025 by rpki-client