$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/D-l7Loz8yzHoK8eB0yekym6GwN0.roa File: D-l7Loz8yzHoK8eB0yekym6GwN0.roa (raw, json) Hash identifier: sWf4gRM4WKbpUqZuZ70/jZnebVX+/sFUGH27NpuXljU= Subject key identifier: 0F:E9:7B:2E:8C:FC:CB:31:E8:2B:C7:81:D3:27:A4:CA:6E:86:C0:DD Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14D1 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/D-l7Loz8yzHoK8eB0yekym6GwN0.roa Signing time: Fri 22 Aug 2025 08:54:49 +0000 ROA not before: Fri 22 Aug 2025 08:54:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.17.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5329 (0x14d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0FE97B2E8CFCCB31E82BC781D327A4CA6E86C0DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cf:a7:d9:8f:87:5e:f1:80:0b:51:eb:39:1d: 78:19:57:10:f9:09:3a:78:22:b7:ff:7a:f7:16:87: 68:66:f2:74:cf:66:cf:f6:79:7c:34:b7:52:fa:56: 75:20:47:2c:2c:48:cc:8c:9c:89:49:ef:7e:5a:17: 6a:14:06:9f:5c:89:f4:de:6a:40:1e:12:39:c6:73: 60:f4:8c:0f:4b:7e:17:5d:7f:f1:ee:70:52:fe:56: 40:77:fc:36:f5:1a:dd:e7:31:fa:a8:65:07:53:01: 00:c6:61:a7:f2:71:8f:f8:b7:f1:b8:4e:a0:04:dc: ae:6a:94:66:a7:2d:f9:db:c9:37:42:54:bd:d6:76: b1:e0:da:ce:4f:f6:9f:67:c1:ea:43:ec:18:84:d7: 21:6e:86:f8:41:c7:89:07:51:d2:8b:e9:c6:d2:26: 23:ea:53:ea:20:6b:a4:2e:de:d8:26:b6:69:4e:0e: 36:1b:04:44:16:a0:3a:e2:7e:bd:22:65:85:41:99: 54:16:6e:d8:e8:ab:da:93:15:4b:50:72:ed:cf:c5: 6a:cd:89:f7:32:3a:85:98:3b:44:ff:3b:69:d5:81: 0b:75:11:84:72:6b:40:20:bf:13:90:81:49:ec:2e: 00:1e:5e:e8:36:fd:67:96:2b:4d:35:40:ec:ed:97: c4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E9:7B:2E:8C:FC:CB:31:E8:2B:C7:81:D3:27:A4:CA:6E:86:C0:DD X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/D-l7Loz8yzHoK8eB0yekym6GwN0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.0.0/17 Signature Algorithm: sha256WithRSAEncryption 0d:aa:3a:0f:41:bf:a8:3e:0c:1b:10:5f:5d:9e:90:44:db:f0: bd:02:3e:d2:93:09:f4:19:b8:c0:a7:db:bb:b4:ae:d1:ae:fd: 29:d7:94:8e:b4:90:76:a2:36:a8:98:0e:5e:5d:24:93:6d:37: f8:1d:76:fa:69:98:1c:d3:56:a4:99:2f:1f:27:82:cb:ee:bd: e2:80:7f:ee:c2:ea:2f:15:7f:e1:9e:e3:e7:3d:30:cf:ac:0b: 71:2b:47:76:85:38:2b:1a:f6:7b:34:75:8c:a3:03:05:ec:2d: ad:05:67:0c:05:64:cf:2b:a3:f6:e8:31:ff:c1:73:57:f8:cd: b1:34:c9:63:7e:70:fd:fc:55:96:9e:88:f5:95:63:e1:c7:b1: 18:88:62:25:36:64:a2:88:0e:b4:1c:f6:a3:9d:6a:c5:ee:f4: 27:b2:6e:1e:47:d2:4a:7c:5a:6d:4f:97:16:e9:f9:93:44:fd: 1d:29:7c:70:e1:66:98:f3:b4:ce:9e:a8:05:28:28:68:bb:25: c2:95:95:94:b3:a6:9d:a5:1d:a2:75:e2:e9:1a:4f:97:24:7e: 64:24:de:b4:6c:9c:4a:58:3a:fd:ac:3f:47:39:f1:a7:68:bc: d0:1a:2d:20:24:ce:7c:4f:e4:fa:9e:41:5a:86:fe:9e:23:1f: 24:24:15:b0 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFNEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBGRTk3QjJFOENGQ0NC MzFFODJCQzc4MUQzMjdBNENBNkU4NkMwREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOz6fZj4de8YALUes5HXgZVxD5CTp4Irf/evcWh2hm8nTPZs/2 eXw0t1L6VnUgRywsSMyMnIlJ735aF2oUBp9cifTeakAeEjnGc2D0jA9Lfhddf/Hu cFL+VkB3/Db1Gt3nMfqoZQdTAQDGYafycY/4t/G4TqAE3K5qlGanLfnbyTdCVL3W drHg2s5P9p9nwepD7BiE1yFuhvhBx4kHUdKL6cbSJiPqU+oga6Qu3tgmtmlODjYb BEQWoDrifr0iZYVBmVQWbtjoq9qTFUtQcu3PxWrNifcyOoWYO0T/O2nVgQt1EYRy a0AgvxOQgUnsLgAeXug2/WeWK001QOztl8QNAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUD+l7Loz8yzHoK8eB0yekym6GwN0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvRC1sN0xvejh5ekhvSzhl QjB5ZWt5bTZHd04wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME B9IRADANBgkqhkiG9w0BAQsFAAOCAQEADao6D0G/qD4MGxBfXZ6QRNvwvQI+0pMJ 9Bm4wKfbu7Su0a79KdeUjrSQdqI2qJgOXl0kk203+B12+mmYHNNWpJkvHyeCy+69 4oB/7sLqLxV/4Z7j5z0wz6wLcStHdoU4Kxr2ezR1jKMDBewtrQVnDAVkzyuj9ugx /8FzV/jNsTTJY35w/fxVlp6I9ZVj4cexGIhiJTZkoogOtBz2o51qxe70J7JuHkfS SnxabU+XFun5k0T9HSl8cOFmmPO0zp6oBSgoaLslwpWVlLOmnaUdonXi6RpPlyR+ ZCTetGycSlg6/aw/Rznxp2i80BotICTOfE/k+p5BWob+niMfJCQVsA== -----END CERTIFICATE-----Generated at Sun Aug 24 06:48:37 2025 by rpki-client