$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Cj_7B7fGVAGYbc5Nm-e_9RvrJAk.roa File: Cj_7B7fGVAGYbc5Nm-e_9RvrJAk.roa (raw, json) Hash identifier: TmzYOHH9ozZcN3BAugqF/DbkKkCXkfTnkEiMMAujTPk= Subject key identifier: 0A:3F:FB:07:B7:C6:54:01:98:6D:CE:4D:9B:E7:BF:F5:1B:EB:24:09 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14C5 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Cj_7B7fGVAGYbc5Nm-e_9RvrJAk.roa Signing time: Fri 22 Aug 2025 08:54:46 +0000 ROA not before: Fri 22 Aug 2025 08:54:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 135596 IP address blocks: 60.198.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5317 (0x14c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0A3FFB07B7C65401986DCE4D9BE7BFF51BEB2409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8e:2a:e6:f7:75:02:ac:de:d4:cd:0a:e2:56: be:0d:60:91:69:01:b6:93:ff:5e:4a:bf:11:dd:5d: 38:99:bf:5c:86:f0:d2:14:f0:12:f3:d4:7b:3f:8d: 5e:b4:8d:25:e1:d0:23:e4:b4:a1:6c:c2:e1:2c:62: f7:29:d4:16:3d:b4:f0:bf:2d:b9:d7:6c:fc:91:bf: 4b:72:4a:86:6d:56:b2:0f:88:43:a9:6f:05:7e:29: a3:19:4a:27:27:db:0a:28:dc:ec:b8:ba:3f:03:9d: 7c:c4:87:74:03:47:f1:69:b1:14:7f:5b:76:45:fb: f7:37:6e:62:4a:53:51:06:56:49:76:bd:9f:0f:ca: 08:e9:a8:db:56:ce:5d:ce:26:01:1d:33:72:e5:d7: 12:da:6d:9f:b0:a4:71:33:f7:4f:57:8e:3a:68:30: 64:30:7e:d5:97:e0:09:ec:24:f8:dc:05:50:f0:5f: a0:8e:86:f8:30:38:b8:2c:64:ca:d9:46:fd:24:24: d8:23:e4:c1:3f:0f:e8:ef:6b:f2:65:45:1e:68:d7: cc:4a:d9:6f:81:c7:3e:b7:55:a4:26:f6:47:74:01: f5:41:06:46:7f:b1:74:4d:63:6d:9f:3b:b8:79:7e: 08:ed:7b:41:44:78:e0:96:d3:29:f3:98:7d:ec:c4: 94:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:3F:FB:07:B7:C6:54:01:98:6D:CE:4D:9B:E7:BF:F5:1B:EB:24:09 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Cj_7B7fGVAGYbc5Nm-e_9RvrJAk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.198.153.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:b2:fb:40:fd:cb:c1:28:0c:cf:70:c7:6e:f0:68:cc:96:12: 89:b9:79:4d:80:28:12:db:65:f4:84:39:ec:ba:85:67:03:ff: f5:42:6b:09:20:79:17:6b:be:3a:78:d2:54:6e:e3:76:c4:3a: 1a:31:ee:a3:33:ee:9b:c8:65:5e:f5:ff:bb:80:cd:f6:dd:81: 97:6b:61:fe:93:98:d2:d7:b7:e6:f7:fe:84:9a:e0:de:c6:88: 77:b0:8f:31:23:0f:24:23:21:91:c8:99:7a:b4:b0:c4:2a:58: 78:c2:c1:f9:61:7b:e6:96:4b:60:50:32:05:71:bc:77:e6:0e: 3f:6d:ce:3d:57:a3:52:b0:f8:c3:56:39:0b:00:0f:1c:28:44: f3:74:84:6f:8b:ff:41:d9:57:96:6e:a6:81:8f:57:51:78:4c: 28:39:c6:79:92:9a:a0:51:56:8f:43:e6:7b:ff:fd:85:42:f4: 53:72:0e:97:22:e4:57:4d:22:93:e7:aa:ad:c0:d1:27:3d:53: 8f:dd:a5:60:32:b9:d6:cd:dc:9d:04:69:7a:13:ab:b5:0a:ae: c2:97:e7:ca:67:b3:7f:fe:62:5a:b1:fb:f6:9b:20:93:cf:73: 65:80:29:52:d6:ba:58:03:a3:00:7f:c1:06:3b:6d:a1:20:83: c7:98:10:cf -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFMUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBBM0ZGQjA3QjdDNjU0 MDE5ODZEQ0U0RDlCRTdCRkY1MUJFQjI0MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4jirm93UCrN7UzQriVr4NYJFpAbaT/15KvxHdXTiZv1yG8NIU 8BLz1Hs/jV60jSXh0CPktKFswuEsYvcp1BY9tPC/LbnXbPyRv0tySoZtVrIPiEOp bwV+KaMZSicn2woo3Oy4uj8DnXzEh3QDR/FpsRR/W3ZF+/c3bmJKU1EGVkl2vZ8P ygjpqNtWzl3OJgEdM3Ll1xLabZ+wpHEz909XjjpoMGQwftWX4AnsJPjcBVDwX6CO hvgwOLgsZMrZRv0kJNgj5ME/D+jva/JlRR5o18xK2W+Bxz63VaQm9kd0AfVBBkZ/ sXRNY22fO7h5fgjte0FEeOCW0ynzmH3sxJQDAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUCj/7B7fGVAGYbc5Nm+e/9RvrJAkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQ2pfN0I3ZkdWQUdZYmM1 Tm0tZV85UnZySkFrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzGmTANBgkqhkiG9w0BAQsFAAOCAQEALrL7QP3LwSgMz3DHbvBozJYSibl5TYAo Ettl9IQ57LqFZwP/9UJrCSB5F2u+OnjSVG7jdsQ6GjHuozPum8hlXvX/u4DN9t2B l2th/pOY0te35vf+hJrg3saId7CPMSMPJCMhkciZerSwxCpYeMLB+WF75pZLYFAy BXG8d+YOP23OPVejUrD4w1Y5CwAPHChE83SEb4v/QdlXlm6mgY9XUXhMKDnGeZKa oFFWj0Pme//9hUL0U3IOlyLkV00ik+eqrcDRJz1Tj92lYDK51s3cnQRpehOrtQqu wpfnymezf/5iWrH79psgk89zZYApUta6WAOjAH/BBjttoSCDx5gQzw== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:39 2025 by rpki-client