$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AXOevJjc5S9s9yO5NaXvVx01lL4.roa File: AXOevJjc5S9s9yO5NaXvVx01lL4.roa (raw, json) Hash identifier: fDfJJEqiQ9ZqGB5JhK0SqJKpZLOQ5mIsAiGpxd/DCDA= Subject key identifier: 01:73:9E:BC:98:DC:E5:2F:6C:F7:23:B9:35:A5:EF:57:1D:35:94:BE Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1489 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AXOevJjc5S9s9yO5NaXvVx01lL4.roa Signing time: Fri 22 Aug 2025 08:54:32 +0000 ROA not before: Fri 22 Aug 2025 08:54:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 203.77.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5257 (0x1489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=01739EBC98DCE52F6CF723B935A5EF571D3594BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:45:c3:ad:9b:b9:dd:a1:bc:05:35:85:fb:4e: 32:74:b1:3d:11:19:31:62:24:2f:2e:58:0e:d6:d5: 89:2a:75:c1:1e:18:7d:b1:1c:0e:ca:cd:8c:54:a0: 29:c8:e9:9a:53:90:f1:15:d9:55:07:3d:7a:50:33: 18:c3:52:b0:f7:11:01:1a:38:3a:56:6b:e5:d5:85: 22:c0:d6:b0:b9:ba:66:a8:65:c7:70:e2:3a:1b:fd: 9e:2f:db:5d:28:3e:67:75:58:a8:e1:d7:a0:69:8a: 46:f2:d7:b4:7f:e1:56:e0:05:0d:69:e2:25:22:22: df:09:f4:de:89:a1:b9:da:b5:05:c5:3b:f5:b1:06: be:e9:9d:81:7e:8e:05:b7:14:09:25:bf:ce:0b:e5: eb:e7:3b:e9:72:c6:69:fe:2e:db:08:0d:97:c8:94: 70:c5:c1:01:60:83:64:ce:08:c9:68:6a:18:d4:04: fd:a3:33:71:b7:f4:4d:0f:e3:a2:72:c5:2a:0b:df: a6:10:97:b8:7c:d8:83:af:fe:73:f9:1f:bc:3b:6c: f2:3a:ae:be:ca:8f:7e:b3:c8:ed:d8:fb:51:d9:69: 86:aa:2e:5d:59:d5:02:b9:a6:78:6a:27:81:a7:0d: 92:f6:c6:f3:aa:f8:df:6f:ae:08:c3:66:23:20:3a: 11:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:73:9E:BC:98:DC:E5:2F:6C:F7:23:B9:35:A5:EF:57:1D:35:94:BE X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AXOevJjc5S9s9yO5NaXvVx01lL4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.36.0/23 Signature Algorithm: sha256WithRSAEncryption 32:06:6d:86:72:b6:c5:c6:92:e4:41:75:89:dd:d1:7e:e9:6f: 76:ba:53:bd:b5:b1:7b:3c:a9:46:eb:b9:d0:02:b9:b1:d6:f8: 5c:e9:8f:d0:fb:69:fd:27:35:d8:34:af:9e:fc:ed:66:6c:7b: df:d6:70:fb:8f:8d:e4:b9:13:a4:37:6d:db:5d:d1:51:6e:ce: 35:c5:5d:cd:a0:26:d2:78:34:8a:11:5c:59:96:50:9a:86:dc: 8f:d5:5e:12:8a:e8:f3:03:25:7a:fe:46:9a:88:c9:ae:6c:25: c7:32:0c:a6:60:38:b7:3c:71:fc:f4:2c:81:54:7a:3b:86:2d: d0:c0:51:e4:d9:d9:57:c6:9e:1a:d1:72:e6:ba:f1:f8:45:45: b5:9c:dd:65:ec:21:ee:25:39:3c:26:f3:35:1a:1f:29:79:b9: 7d:32:b6:1f:bd:a4:a2:9e:46:d7:ba:c0:2e:d9:7b:f4:e0:fc: 8c:79:61:41:15:ba:0e:fe:97:17:42:e4:15:11:25:94:1e:93: f6:4e:95:88:62:87:74:5d:d0:28:c2:88:e6:72:76:7c:2c:3f: b3:30:78:eb:27:47:13:47:34:bd:e1:ba:61:de:11:97:03:ce: a7:40:57:36:29:1c:60:ab:fe:37:58:67:68:28:37:b8:8f:d1: 03:70:8d:9f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFIkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAxNzM5RUJDOThEQ0U1 MkY2Q0Y3MjNCOTM1QTVFRjU3MUQzNTk0QkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGRcOtm7ndobwFNYX7TjJ0sT0RGTFiJC8uWA7W1YkqdcEeGH2x HA7KzYxUoCnI6ZpTkPEV2VUHPXpQMxjDUrD3EQEaODpWa+XVhSLA1rC5umaoZcdw 4job/Z4v210oPmd1WKjh16Bpikby17R/4VbgBQ1p4iUiIt8J9N6JobnatQXFO/Wx Br7pnYF+jgW3FAklv84L5evnO+lyxmn+LtsIDZfIlHDFwQFgg2TOCMloahjUBP2j M3G39E0P46JyxSoL36YQl7h82IOv/nP5H7w7bPI6rr7Kj36zyO3Y+1HZaYaqLl1Z 1QK5pnhqJ4GnDZL2xvOq+N9vrgjDZiMgOhHHAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUAXOevJjc5S9s9yO5NaXvVx01lL4wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQVhPZXZKamM1UzlzOXlP NU5hWHZWeDAxbEw0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ActNJDANBgkqhkiG9w0BAQsFAAOCAQEAMgZthnK2xcaS5EF1id3RfulvdrpTvbWx ezypRuu50AK5sdb4XOmP0Ptp/Sc12DSvnvztZmx739Zw+4+N5LkTpDdt213RUW7O NcVdzaAm0ng0ihFcWZZQmobcj9VeEoro8wMlev5GmojJrmwlxzIMpmA4tzxx/PQs gVR6O4Yt0MBR5NnZV8aeGtFy5rrx+EVFtZzdZewh7iU5PCbzNRofKXm5fTK2H72k op5G17rALtl79OD8jHlhQRW6Dv6XF0LkFREllB6T9k6ViGKHdF3QKMKI5nJ2fCw/ szB46ydHE0c0veG6Yd4RlwPOp0BXNikcYKv+N1hnaCg3uI/RA3CNnw== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:22 2025 by rpki-client