$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DCNcbf4E1RpY0iDjujG2r7f_chA.roa File: DCNcbf4E1RpY0iDjujG2r7f_chA.roa (raw, json) Hash identifier: UXd9immmfPQvtVpXwVnlLlTxPtnAsm7ZamXkIImxgc4= Subject key identifier: 0C:23:5C:6D:FE:04:D5:1A:58:D2:20:E3:BA:31:B6:AF:B7:FF:72:10 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14E2 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DCNcbf4E1RpY0iDjujG2r7f_chA.roa Signing time: Fri 22 Aug 2025 08:54:53 +0000 ROA not before: Fri 22 Aug 2025 08:54:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 219.80.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5346 (0x14e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0C235C6DFE04D51A58D220E3BA31B6AFB7FF7210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:82:97:55:31:2a:79:70:15:1a:13:91:3e:40: 58:e9:11:84:55:0d:a1:ae:d9:2c:6a:05:de:41:48: c5:de:6a:73:98:f2:79:15:d4:97:b4:9b:d7:6c:1b: dd:3b:92:14:d1:ce:67:11:bf:7e:f7:5b:77:de:f9: 86:a5:9d:17:e5:c7:22:cd:e0:37:0d:40:e0:13:36: e6:ef:40:b0:f8:9a:f7:d8:f5:8f:94:ec:bb:d7:f1: 6d:e1:d4:a7:91:91:73:f8:8a:29:61:60:88:55:0e: e8:fa:e0:51:32:e9:03:c2:93:63:5e:09:11:7b:89: 73:db:dc:f2:03:ca:98:03:5c:7b:dc:24:e6:5e:39: 4a:58:9d:ab:41:ce:71:c5:5e:c8:de:c0:9a:1c:aa: 31:a3:cd:4d:95:1b:d7:a5:6b:00:27:d9:69:67:eb: 23:18:05:2d:1e:72:8c:fa:2d:0d:f1:da:5d:c6:30: 3c:ed:42:61:f7:b0:65:d7:da:65:33:01:45:97:2a: 25:4c:d8:46:eb:5a:64:1c:5a:6e:fb:94:b8:59:d1: 32:5b:24:ea:17:68:82:da:35:95:cf:c9:46:e7:c9: ce:18:4c:80:70:61:06:e2:8b:6d:32:a2:b3:01:60: 3f:85:da:87:89:9b:69:7c:48:ff:2b:a7:c9:b2:e8: 33:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:23:5C:6D:FE:04:D5:1A:58:D2:20:E3:BA:31:B6:AF:B7:FF:72:10 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DCNcbf4E1RpY0iDjujG2r7f_chA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.80.0.0/16 Signature Algorithm: sha256WithRSAEncryption 36:e2:4c:14:a8:d6:5b:5a:bf:01:37:2a:ba:97:3f:e0:01:59: 8b:99:e8:d3:f8:8f:b9:44:6e:bc:ee:e0:cd:71:29:9a:6a:44: 81:ad:25:9b:e0:d6:04:50:24:82:3f:10:34:82:81:b0:36:7d: 37:08:f4:3e:69:62:f8:39:9f:73:b5:1e:6b:70:c7:c4:ea:46: 48:bc:f0:2a:df:f1:4c:80:74:b5:b7:81:38:eb:85:19:c6:86: c9:1f:e1:1c:7b:39:dc:99:e8:22:40:98:38:48:a5:c4:49:9d: 3a:47:05:b4:e0:21:35:98:ca:8e:d2:aa:d3:2c:b4:58:86:bf: 2b:6c:8b:e5:a1:86:ba:83:b9:d1:78:ac:7e:3a:31:7a:52:d8: 75:68:8d:20:b4:79:08:e1:a7:65:59:c0:0b:3c:9c:f3:57:a3: ad:7e:a1:8d:ab:ce:da:40:b0:52:51:a4:de:18:a0:6e:f2:42: 50:bc:07:b9:c2:1f:29:bd:7e:fd:b6:74:d0:c1:37:d4:64:63: a7:fd:1a:cf:b2:86:7d:99:d6:24:08:43:3f:dc:00:72:62:9d: 28:ae:d1:ae:31:3a:09:61:bf:a4:f0:ea:8e:b3:20:a4:be:69: df:c9:59:b9:51:e0:9d:45:11:b6:ec:f7:93:02:27:5f:ba:33: 9c:34:50:ea -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICFOIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBDMjM1QzZERkUwNEQ1 MUE1OEQyMjBFM0JBMzFCNkFGQjdGRjcyMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDgpdVMSp5cBUaE5E+QFjpEYRVDaGu2SxqBd5BSMXeanOY8nkV 1Je0m9dsG907khTRzmcRv373W3fe+YalnRflxyLN4DcNQOATNubvQLD4mvfY9Y+U 7LvX8W3h1KeRkXP4iilhYIhVDuj64FEy6QPCk2NeCRF7iXPb3PIDypgDXHvcJOZe OUpYnatBznHFXsjewJocqjGjzU2VG9elawAn2Wln6yMYBS0ecoz6LQ3x2l3GMDzt QmH3sGXX2mUzAUWXKiVM2EbrWmQcWm77lLhZ0TJbJOoXaILaNZXPyUbnyc4YTIBw YQbii20yorMBYD+F2oeJm2l8SP8rp8my6DNFAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUDCNcbf4E1RpY0iDjujG2r7f/chAwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvRENOY2JmNEUxUnBZMGlE anVqRzJyN2ZfY2hBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD ANtQMA0GCSqGSIb3DQEBCwUAA4IBAQA24kwUqNZbWr8BNyq6lz/gAVmLmejT+I+5 RG687uDNcSmaakSBrSWb4NYEUCSCPxA0goGwNn03CPQ+aWL4OZ9ztR5rcMfE6kZI vPAq3/FMgHS1t4E464UZxobJH+EcezncmegiQJg4SKXESZ06RwW04CE1mMqO0qrT LLRYhr8rbIvloYa6g7nReKx+OjF6Uth1aI0gtHkI4adlWcALPJzzV6OtfqGNq87a QLBSUaTeGKBu8kJQvAe5wh8pvX79tnTQwTfUZGOn/RrPsoZ9mdYkCEM/3AByYp0o rtGuMToJYb+k8OqOsyCkvmnfyVm5UeCdRRG27PeTAidfujOcNFDq -----END CERTIFICATE-----Generated at Sun Aug 24 08:54:04 2025 by rpki-client