$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BtCCYL1H0OMgH9nL_hPcyaCbfzk.roa File: BtCCYL1H0OMgH9nL_hPcyaCbfzk.roa (raw, json) Hash identifier: KoQwX/JDEJNd5O4YVS0zmJPBWMA+0hAiTJNBpgjnPIA= Subject key identifier: 06:D0:82:60:BD:47:D0:E3:20:1F:D9:CB:FE:13:DC:C9:A0:9B:7F:39 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 148D Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BtCCYL1H0OMgH9nL_hPcyaCbfzk.roa Signing time: Fri 22 Aug 2025 08:54:33 +0000 ROA not before: Fri 22 Aug 2025 08:54:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.17.104.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5261 (0x148d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=06D08260BD47D0E3201FD9CBFE13DCC9A09B7F39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f0:25:55:d6:32:55:39:73:e5:df:b9:a1:1b: 5e:ef:de:7c:bb:c0:a3:0e:c5:04:8a:31:43:3f:81: 63:cf:c6:42:0b:f3:42:90:8f:60:2a:7b:5b:ba:5a: 21:3a:91:7c:2e:c9:71:54:a4:46:82:6c:11:f9:e3: e3:70:fb:97:3e:dc:8a:e4:28:1c:98:5d:86:0c:b6: 54:b1:e5:87:79:36:20:9e:a6:4b:17:82:6c:bf:c9: bc:cf:52:d4:22:e2:6e:56:f9:17:8f:0f:13:a6:b4: c8:3f:dd:1a:26:06:c4:7e:fb:78:ca:f2:99:50:80: f7:5d:2b:f2:72:49:84:9c:a2:29:49:e0:2f:46:73: a9:3f:78:03:bf:9a:f2:e4:2a:d0:27:2b:a9:eb:4e: 7e:c9:a7:ff:e3:45:1d:02:d7:2c:0f:d0:a9:1f:e0: 7a:19:d1:5a:52:a3:f7:4d:dd:68:4d:70:1f:93:72: df:09:00:e3:8d:51:78:c6:64:07:a8:65:7c:ee:19: 16:00:14:5a:df:68:c7:1b:38:63:ab:15:12:01:bd: 62:47:4e:a8:ac:37:55:a5:bd:ef:50:05:22:10:22: 99:07:b1:a4:57:be:cd:94:f3:8c:50:c8:af:5f:91: 33:c6:08:b7:a2:cf:b0:31:a7:a0:fd:36:41:6a:78: 41:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:D0:82:60:BD:47:D0:E3:20:1F:D9:CB:FE:13:DC:C9:A0:9B:7F:39 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BtCCYL1H0OMgH9nL_hPcyaCbfzk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.104.0/21 Signature Algorithm: sha256WithRSAEncryption 11:0c:13:62:f9:c1:42:1f:1f:d1:16:85:bb:79:36:3e:7a:a3: cc:ae:1c:3d:cd:bb:d6:cc:29:51:0a:c0:07:a8:5d:fd:c9:58: c4:e1:65:23:9c:38:2b:bb:ca:bf:b7:40:0f:03:13:47:2f:cd: e1:47:e0:8a:bf:4a:31:02:d6:70:58:4c:38:2b:4f:d1:89:4c: 2d:7a:ba:09:4f:e8:8c:ed:13:5f:31:f5:a8:c9:c6:f4:78:99: ce:a9:01:6c:40:83:d2:19:9d:6a:d9:a6:51:17:51:5c:8c:28: e1:b5:f2:8c:65:e4:71:00:41:fe:89:42:bd:ae:f9:7b:ee:98: 4c:b4:a9:e8:9f:31:25:70:98:a6:a8:05:06:3f:df:ae:ef:af: 04:ce:e5:78:20:a3:50:b4:10:da:bd:e1:83:4a:b1:e4:e4:83: f3:b2:88:6f:e4:8c:d8:5d:3c:e0:b8:04:a6:92:a0:5f:06:fe: 3e:c7:3e:db:22:d5:2f:73:ae:bc:1a:00:0f:e1:c1:8a:a8:30: 00:0d:d4:09:25:8f:13:89:74:26:82:1d:bc:46:ba:4e:43:fb: 03:47:ec:98:c5:f7:10:e1:53:9b:a6:3e:26:a2:06:3c:92:91: 4e:e1:e8:63:12:e8:74:da:3c:53:6d:86:63:c6:f3:20:9b:b1: 83:f8:9f:d6 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFI0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA2RDA4MjYwQkQ0N0Qw RTMyMDFGRDlDQkZFMTNEQ0M5QTA5QjdGMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDv8CVV1jJVOXPl37mhG17v3ny7wKMOxQSKMUM/gWPPxkIL80KQ j2Aqe1u6WiE6kXwuyXFUpEaCbBH54+Nw+5c+3IrkKByYXYYMtlSx5Yd5NiCepksX gmy/ybzPUtQi4m5W+RePDxOmtMg/3RomBsR++3jK8plQgPddK/JySYScoilJ4C9G c6k/eAO/mvLkKtAnK6nrTn7Jp//jRR0C1ywP0Kkf4HoZ0VpSo/dN3WhNcB+Tct8J AOONUXjGZAeoZXzuGRYAFFrfaMcbOGOrFRIBvWJHTqisN1Wlve9QBSIQIpkHsaRX vs2U84xQyK9fkTPGCLeiz7Axp6D9NkFqeEFlAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUBtCCYL1H0OMgH9nL/hPcyaCbfzkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQnRDQ1lMMUgwT01nSDlu TF9oUGN5YUNiZnprLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME A9IRaDANBgkqhkiG9w0BAQsFAAOCAQEAEQwTYvnBQh8f0RaFu3k2PnqjzK4cPc27 1swpUQrAB6hd/clYxOFlI5w4K7vKv7dADwMTRy/N4Ufgir9KMQLWcFhMOCtP0YlM LXq6CU/ojO0TXzH1qMnG9HiZzqkBbECD0hmdatmmURdRXIwo4bXyjGXkcQBB/olC va75e+6YTLSp6J8xJXCYpqgFBj/fru+vBM7leCCjULQQ2r3hg0qx5OSD87KIb+SM 2F084LgEppKgXwb+Psc+2yLVL3OuvBoAD+HBiqgwAA3UCSWPE4l0JoIdvEa6TkP7 A0fsmMX3EOFTm6Y+JqIGPJKRTuHoYxLodNo8U22GY8bzIJuxg/if1g== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:28 2025 by rpki-client