$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BodxTHrAsgH3S4o7B_cxNblihHQ.roa File: BodxTHrAsgH3S4o7B_cxNblihHQ.roa (raw, json) Hash identifier: y0fdU9gcjJTonBTr5BMv4tc7aJy8Cvl5UkSavMOdmzM= Subject key identifier: 06:87:71:4C:7A:C0:B2:01:F7:4B:8A:3B:07:F7:31:35:B9:62:84:74 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 149F Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BodxTHrAsgH3S4o7B_cxNblihHQ.roa Signing time: Fri 22 Aug 2025 08:54:38 +0000 ROA not before: Fri 22 Aug 2025 08:54:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 203.77.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5279 (0x149f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0687714C7AC0B201F74B8A3B07F73135B9628474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c1:ba:2b:ea:30:d7:72:20:c9:f1:12:0b:69: 25:29:e5:8f:d5:28:b5:6c:a2:0f:dc:c3:df:ad:6b: d4:ca:fd:43:b3:47:32:55:cb:29:14:82:46:7e:db: 6a:49:ed:66:fe:9e:39:8f:66:95:0a:a8:29:5f:f2: 78:b3:06:85:9a:d7:55:6c:5d:05:46:29:51:f0:f3: 07:e6:b5:b1:b0:9e:f1:81:c7:93:64:56:9f:94:e0: 94:6f:85:03:c1:3f:e7:4a:94:92:c8:f7:e8:71:67: 65:4a:63:fb:6f:52:f1:4b:b8:3d:2a:32:c9:ac:3c: 1a:e6:2d:a2:36:38:b4:1e:5e:dd:90:57:50:d4:98: f8:39:8d:9d:3b:9f:b2:4f:47:92:22:c3:b4:29:c5: 86:02:0f:c5:a8:bb:e0:ef:82:c9:6c:dd:06:29:d6: b0:ed:23:e7:b5:fa:48:61:46:4b:b6:f6:5c:5a:b9: 43:bb:64:81:a1:d5:c0:0e:46:49:88:47:98:91:50: 8d:70:52:17:58:75:12:ac:3f:54:4b:75:26:94:7d: 5b:08:4e:aa:9b:d3:44:e6:05:dd:ff:bf:49:cb:fd: 85:51:f0:15:4b:20:32:04:a3:a6:73:0a:fb:5e:82: 8a:18:c1:30:25:99:a7:e5:97:25:d3:a7:75:0e:19: 0d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:87:71:4C:7A:C0:B2:01:F7:4B:8A:3B:07:F7:31:35:B9:62:84:74 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BodxTHrAsgH3S4o7B_cxNblihHQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.38.0/23 Signature Algorithm: sha256WithRSAEncryption 88:e3:56:bf:41:51:d8:2b:02:1e:1d:92:ce:ac:79:5b:91:6b: 05:a9:4d:1b:fa:0f:f6:c6:ed:6a:93:05:f1:46:3c:14:3d:f8: 75:d6:51:c3:d2:f3:ed:17:73:3b:6c:da:4d:49:97:47:c5:39: de:64:b4:09:c7:26:9a:0e:a5:df:58:bb:38:10:04:2f:f1:f9: 19:1f:0a:23:e5:74:9e:ba:2f:89:30:a5:84:11:99:13:8c:39: 8a:d5:3a:85:d5:0c:3f:33:3a:d1:96:35:9f:83:f7:77:78:7b: 14:69:03:24:5b:bc:58:18:7a:ee:d1:74:4f:5b:2e:a0:c0:b7: b9:b3:21:99:61:93:46:38:3f:73:fb:13:ce:8f:4a:2d:05:05: c5:df:9a:20:b9:e8:9f:67:50:36:e3:c0:42:02:58:48:71:12: e2:a7:d3:69:b2:c7:0e:45:f0:53:11:e3:94:66:46:3e:13:43: 86:67:5d:ad:44:b6:b8:5f:2f:4f:68:32:ee:35:88:f5:5f:50: 62:92:80:ee:2f:f5:4a:05:81:49:9f:76:49:2f:45:5d:3f:72: cb:65:12:83:8d:9e:82:fc:41:cd:18:3e:a9:22:b0:e8:03:9c: a7:99:eb:9d:9e:af:1e:23:9a:da:8d:c4:e0:4c:11:8d:4e:86: fb:a2:9c:7e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFJ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA2ODc3MTRDN0FDMEIy MDFGNzRCOEEzQjA3RjczMTM1Qjk2Mjg0NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0wbor6jDXciDJ8RILaSUp5Y/VKLVsog/cw9+ta9TK/UOzRzJV yykUgkZ+22pJ7Wb+njmPZpUKqClf8nizBoWa11VsXQVGKVHw8wfmtbGwnvGBx5Nk Vp+U4JRvhQPBP+dKlJLI9+hxZ2VKY/tvUvFLuD0qMsmsPBrmLaI2OLQeXt2QV1DU mPg5jZ07n7JPR5Iiw7QpxYYCD8Wou+Dvgsls3QYp1rDtI+e1+khhRku29lxauUO7 ZIGh1cAORkmIR5iRUI1wUhdYdRKsP1RLdSaUfVsITqqb00TmBd3/v0nL/YVR8BVL IDIEo6ZzCvtegooYwTAlmafllyXTp3UOGQ2BAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUBodxTHrAsgH3S4o7B/cxNblihHQwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQm9keFRIckFzZ0gzUzRv N0JfY3hOYmxpaEhRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ActNJjANBgkqhkiG9w0BAQsFAAOCAQEAiONWv0FR2CsCHh2Szqx5W5FrBalNG/oP 9sbtapMF8UY8FD34ddZRw9Lz7RdzO2zaTUmXR8U53mS0Cccmmg6l31i7OBAEL/H5 GR8KI+V0nroviTClhBGZE4w5itU6hdUMPzM60ZY1n4P3d3h7FGkDJFu8WBh67tF0 T1suoMC3ubMhmWGTRjg/c/sTzo9KLQUFxd+aILnon2dQNuPAQgJYSHES4qfTabLH DkXwUxHjlGZGPhNDhmddrUS2uF8vT2gy7jWI9V9QYpKA7i/1SgWBSZ92SS9FXT9y y2USg42egvxBzRg+qSKw6AOcp5nrnZ6vHiOa2o3E4EwRjU6G+6Kcfg== -----END CERTIFICATE-----Generated at Sun Aug 24 06:50:36 2025 by rpki-client