$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/C4lhcbPqpGYuAqwSrcqtbdRUEOo.roa File: C4lhcbPqpGYuAqwSrcqtbdRUEOo.roa (raw, json) Hash identifier: cayseeyz45W4vInVFgsI/40GT6deiRHUwsHrtgnibGQ= Subject key identifier: 0B:89:61:71:B3:EA:A4:66:2E:02:AC:12:AD:CA:AD:6D:D4:54:10:EA Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14C7 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/C4lhcbPqpGYuAqwSrcqtbdRUEOo.roa Signing time: Fri 22 Aug 2025 08:54:46 +0000 ROA not before: Fri 22 Aug 2025 08:54:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 202.145.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5319 (0x14c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0B896171B3EAA4662E02AC12ADCAAD6DD45410EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2a:07:ee:31:c5:59:5e:97:18:9e:19:6f:09: b6:80:9b:e6:51:c0:6e:6b:f6:a4:dc:4b:37:29:0f: 55:3c:86:f1:cb:ac:19:9b:1d:c8:d5:62:5b:3c:fc: 57:4b:99:e8:e6:3d:f7:c0:1b:4c:1d:3f:28:57:aa: b9:47:df:51:52:74:af:ec:b5:da:53:b9:87:ca:24: 37:8b:f6:97:8d:10:64:27:52:2b:37:6e:7a:52:f7: 50:7a:e0:ce:5a:7b:3b:96:21:45:05:34:79:f3:51: c5:b4:ae:bb:ae:49:8f:34:38:63:d6:f9:aa:0a:d3: 58:e4:c1:06:3f:d5:c8:b0:91:76:1c:31:bf:19:d2: a8:30:42:c8:ae:c1:0c:0b:c8:fd:f7:c5:50:dc:3d: c9:6a:11:f0:0a:b3:31:03:64:7d:0e:e2:b3:dc:d9: d7:68:4b:45:5b:3e:21:13:6e:a6:0e:ae:96:bd:17: 3b:b3:cc:ae:73:05:0c:71:dd:2d:76:bc:2b:fc:5b: 44:a4:49:0e:75:42:52:54:9a:64:f5:5e:56:ae:75: 07:42:d7:57:0a:43:8c:c0:53:c8:1c:e1:7b:9b:06: f0:c1:c9:59:d6:a0:81:86:ad:89:38:f8:11:88:59: 8b:9e:75:63:72:2e:cb:4b:d6:34:78:ae:d0:92:5d: 6e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:89:61:71:B3:EA:A4:66:2E:02:AC:12:AD:CA:AD:6D:D4:54:10:EA X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/C4lhcbPqpGYuAqwSrcqtbdRUEOo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.145.32.0/19 Signature Algorithm: sha256WithRSAEncryption 03:e4:61:0b:48:12:10:90:90:d3:68:cf:75:4b:32:47:0d:80: 80:68:65:39:77:c4:db:18:ae:cd:71:e2:79:2e:f2:3e:26:ff: eb:1d:d6:20:b3:54:43:16:06:2c:bb:12:ec:ee:7f:aa:e4:bc: 68:36:19:99:1c:a0:cf:10:1b:05:17:97:46:99:15:1a:b4:03: 5c:26:b6:18:e7:2c:87:ca:aa:0a:cf:d5:e4:ee:21:ad:da:98: 00:2c:dc:0f:3c:89:d8:40:59:36:74:89:11:ad:0f:f7:72:b7: 20:1d:2c:cc:94:5d:9f:16:9f:cc:0e:87:66:4b:96:a1:2d:ef: bd:8e:53:ee:3c:05:76:de:2a:cb:1e:70:4d:ff:4b:6e:7a:cc: 86:c8:ad:52:79:2e:15:42:f1:35:bf:a7:a5:1e:75:33:13:80: 28:25:06:a3:1f:b1:16:84:ad:26:d4:99:1f:9d:d9:e1:b5:95: 67:94:12:cb:2b:4a:e6:62:55:ac:a8:a6:f7:17:bf:d1:a9:38: ab:e4:6b:7e:b1:cb:4f:be:96:5e:2c:a1:cc:ba:e0:12:07:1b: 8b:94:41:db:26:2c:31:56:d8:a3:e5:b9:6c:41:6f:36:ef:87: a6:01:00:54:60:cb:d7:6f:9f:5e:88:cc:ae:5d:28:32:5f:c6: 4d:fc:38:9f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFMcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBCODk2MTcxQjNFQUE0 NjYyRTAyQUMxMkFEQ0FBRDZERDQ1NDEwRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVKgfuMcVZXpcYnhlvCbaAm+ZRwG5r9qTcSzcpD1U8hvHLrBmb HcjVYls8/FdLmejmPffAG0wdPyhXqrlH31FSdK/stdpTuYfKJDeL9peNEGQnUis3 bnpS91B64M5aezuWIUUFNHnzUcW0rruuSY80OGPW+aoK01jkwQY/1ciwkXYcMb8Z 0qgwQsiuwQwLyP33xVDcPclqEfAKszEDZH0O4rPc2ddoS0VbPiETbqYOrpa9Fzuz zK5zBQxx3S12vCv8W0SkSQ51QlJUmmT1XlaudQdC11cKQ4zAU8gc4XubBvDByVnW oIGGrYk4+BGIWYuedWNyLstL1jR4rtCSXW6hAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUC4lhcbPqpGYuAqwSrcqtbdRUEOowHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQzRsaGNiUHFwR1l1QXF3 U3JjcXRiZFJVRU9vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BcqRIDANBgkqhkiG9w0BAQsFAAOCAQEAA+RhC0gSEJCQ02jPdUsyRw2AgGhlOXfE 2xiuzXHieS7yPib/6x3WILNUQxYGLLsS7O5/quS8aDYZmRygzxAbBReXRpkVGrQD XCa2GOcsh8qqCs/V5O4hrdqYACzcDzyJ2EBZNnSJEa0P93K3IB0szJRdnxafzA6H ZkuWoS3vvY5T7jwFdt4qyx5wTf9LbnrMhsitUnkuFULxNb+npR51MxOAKCUGox+x FoStJtSZH53Z4bWVZ5QSyytK5mJVrKim9xe/0ak4q+RrfrHLT76WXiyhzLrgEgcb i5RB2yYsMVbYo+W5bEFvNu+HpgEAVGDL12+fXojMrl0oMl/GTfw4nw== -----END CERTIFICATE-----Generated at Sun Aug 24 06:46:12 2025 by rpki-client