$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CyaZCAvsxWDZC96Hs3AXFlGZSR0.roa File: CyaZCAvsxWDZC96Hs3AXFlGZSR0.roa (raw, json) Hash identifier: /ElY683Baas/kA6WVyDhK4K1nEcIdSm6H54leW7BIvY= Subject key identifier: 0B:26:99:08:0B:EC:C5:60:D9:0B:DE:87:B3:70:17:16:51:99:49:1D Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14EF Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CyaZCAvsxWDZC96Hs3AXFlGZSR0.roa Signing time: Fri 22 Aug 2025 08:54:56 +0000 ROA not before: Fri 22 Aug 2025 08:54:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24158 IP address blocks: 175.96.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5359 (0x14ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0B2699080BECC560D90BDE87B37017165199491D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:de:16:3f:2a:44:09:4c:e6:7d:5b:70:b8:dc: 2a:94:f8:83:18:ac:8e:b9:07:a4:73:bf:2e:6c:39: dc:96:8c:c3:c3:c7:74:64:28:7f:e6:a5:9e:09:23: c7:26:11:e3:3d:35:28:58:10:4e:04:91:31:94:9f: 7d:98:ed:07:4a:04:e2:dd:42:b1:60:67:6f:d0:bd: ae:53:9e:27:e5:c7:a0:92:36:af:36:0d:2d:b8:cf: a6:50:9a:fb:8a:8b:76:11:c6:ff:72:6f:cd:a9:42: ee:3c:11:3c:b7:ef:64:c9:f9:9b:54:06:4a:e3:46: 05:49:58:1e:7e:d6:05:a6:3f:b2:4f:9f:26:ea:dd: 9e:7b:00:6b:89:8b:3d:18:d0:cc:8b:a0:26:1d:c1: 2e:8d:27:68:27:48:a3:4f:74:22:15:3e:2d:55:b4: 75:91:c8:39:af:53:93:07:7f:2e:28:7a:f9:e6:42: 37:51:65:6a:f8:82:2a:ce:d3:41:b2:8a:71:82:01: ac:83:80:e7:5d:37:93:00:19:bc:2f:ea:3b:2b:f9: ca:b0:16:fe:5a:18:08:ef:66:e1:fa:2a:d1:4c:6e: 40:4b:5e:4a:44:d7:eb:65:b2:9d:9c:3f:93:ef:73: 96:d0:46:01:6f:29:3f:b3:cb:0b:3f:02:e5:c4:14: 28:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:26:99:08:0B:EC:C5:60:D9:0B:DE:87:B3:70:17:16:51:99:49:1D X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CyaZCAvsxWDZC96Hs3AXFlGZSR0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.96.0.0/16 Signature Algorithm: sha256WithRSAEncryption 78:b1:a2:70:05:41:37:b6:c6:83:01:34:08:45:55:8e:88:f5: 6b:b6:30:0b:5a:29:1a:d8:2d:e6:86:76:be:95:8e:f8:70:c4: 59:d0:81:1f:44:f0:15:4a:ec:ae:36:9f:98:81:97:c8:37:9f: 7a:15:17:89:c1:f9:8b:40:7e:7f:bc:a2:14:24:0a:ab:0c:70: 01:80:ed:69:0d:cc:20:5d:16:d7:95:96:94:be:0b:64:a6:b3: ed:7f:42:c8:5b:f2:1f:d6:76:fc:d6:35:a2:80:54:46:a8:91: 90:42:62:a8:b1:c7:ac:b4:2c:e6:d6:6e:b8:37:48:2b:62:bf: e9:9f:72:b9:8c:74:2d:55:c2:fd:be:84:a8:51:77:57:c7:0e: 1c:51:6f:a8:95:eb:cb:40:c2:e3:e3:90:a9:8e:5d:c8:bf:00: 23:87:df:6a:8c:1a:ab:73:ed:47:b4:e0:03:4b:a8:64:7d:3d: d2:5a:9b:97:d5:3b:8a:aa:aa:57:2b:b0:fa:e0:bb:12:c7:a1: 1e:87:42:97:a4:63:b2:18:d8:af:fd:9a:5b:20:ea:f7:36:2c: 88:62:06:e3:a8:5c:4d:37:1d:18:10:51:9f:db:7a:25:d4:e2: 90:60:d2:05:9f:39:86:21:e2:d7:fe:e1:a9:c1:59:26:1b:ba: 6e:6b:78:50 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICFO8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBCMjY5OTA4MEJFQ0M1 NjBEOTBCREU4N0IzNzAxNzE2NTE5OTQ5MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw3hY/KkQJTOZ9W3C43CqU+IMYrI65B6Rzvy5sOdyWjMPDx3Rk KH/mpZ4JI8cmEeM9NShYEE4EkTGUn32Y7QdKBOLdQrFgZ2/Qva5Tniflx6CSNq82 DS24z6ZQmvuKi3YRxv9yb82pQu48ETy372TJ+ZtUBkrjRgVJWB5+1gWmP7JPnybq 3Z57AGuJiz0Y0MyLoCYdwS6NJ2gnSKNPdCIVPi1VtHWRyDmvU5MHfy4oevnmQjdR ZWr4girO00GyinGCAayDgOddN5MAGbwv6jsr+cqwFv5aGAjvZuH6KtFMbkBLXkpE 1+tlsp2cP5Pvc5bQRgFvKT+zyws/AuXEFCj1AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUCyaZCAvsxWDZC96Hs3AXFlGZSR0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQ3lhWkNBdnN4V0RaQzk2 SHMzQVhGbEdaU1IwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AK9gMA0GCSqGSIb3DQEBCwUAA4IBAQB4saJwBUE3tsaDATQIRVWOiPVrtjALWika 2C3mhna+lY74cMRZ0IEfRPAVSuyuNp+YgZfIN596FReJwfmLQH5/vKIUJAqrDHAB gO1pDcwgXRbXlZaUvgtkprPtf0LIW/If1nb81jWigFRGqJGQQmKoscestCzm1m64 N0grYr/pn3K5jHQtVcL9voSoUXdXxw4cUW+olevLQMLj45Cpjl3IvwAjh99qjBqr c+1HtOADS6hkfT3SWpuX1TuKqqpXK7D64LsSx6Eeh0KXpGOyGNiv/ZpbIOr3NiyI YgbjqFxNNx0YEFGf23ol1OKQYNIFnzmGIeLX/uGpwVkmG7pua3hQ -----END CERTIFICATE-----Generated at Sun Aug 24 06:47:40 2025 by rpki-client