$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ESvd0SGppFtcoIojWtfELNMXP9k.roa File: ESvd0SGppFtcoIojWtfELNMXP9k.roa (raw, json) Hash identifier: aau8FYgH7oLQEVPmlEhmTjYSZjwEYZZYdDosYQsUK1Y= Subject key identifier: 11:2B:DD:D1:21:A9:A4:5B:5C:A0:8A:23:5A:D7:C4:2C:D3:17:3F:D9 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14B7 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ESvd0SGppFtcoIojWtfELNMXP9k.roa Signing time: Fri 22 Aug 2025 08:54:43 +0000 ROA not before: Fri 22 Aug 2025 08:54:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131634 IP address blocks: 124.108.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5303 (0x14b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=112BDDD121A9A45B5CA08A235AD7C42CD3173FD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:74:e0:8c:5b:af:05:fb:f8:7f:6c:e4:bf:e5: 6d:84:69:db:37:42:8a:a2:23:93:08:a6:9f:f0:fc: 58:14:cd:0e:0b:a0:20:5d:03:1a:ef:01:e4:b7:f1: 38:3b:91:fc:42:83:da:d4:66:7e:bd:44:21:02:22: e9:a2:43:75:7b:86:22:bf:a0:c6:02:21:ad:a2:53: 64:35:0d:ea:9e:a4:31:4b:8a:66:97:16:f6:eb:3c: f0:b7:3f:44:5b:84:b9:cf:9d:00:a8:1d:a8:f9:fd: ff:5d:a5:77:9d:c0:27:ee:1d:be:93:10:3c:f9:ef: 32:0f:0f:8a:52:16:4d:32:d5:74:09:53:45:a7:6b: 37:59:08:8b:87:5a:4d:c3:24:e2:c5:19:58:7d:ca: 2a:bd:e9:ab:fd:f8:4c:45:c8:1e:8f:aa:82:90:3a: 91:e3:9f:f0:40:11:2b:e3:20:db:62:1f:74:44:95: 5c:9c:b8:fc:e1:42:f0:3c:c5:3f:3a:f2:97:8e:d4: 22:8d:50:1c:dd:e0:68:68:52:bf:23:34:8c:77:44: cb:04:24:42:6e:97:8e:50:30:da:30:3c:4f:f7:9b: c4:9e:82:ac:12:97:6a:de:b3:83:4f:f8:1b:6c:b1: c9:91:b4:38:a6:1e:49:cf:ed:03:cb:df:71:6d:84: 3e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:2B:DD:D1:21:A9:A4:5B:5C:A0:8A:23:5A:D7:C4:2C:D3:17:3F:D9 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ESvd0SGppFtcoIojWtfELNMXP9k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.108.160.0/21 Signature Algorithm: sha256WithRSAEncryption 10:24:77:58:31:73:d8:e7:29:82:da:31:15:ab:0a:49:24:6e: 61:ee:09:26:61:53:96:66:f9:21:7c:11:d7:ff:5b:48:f7:33: 2e:69:c1:36:d7:81:14:35:91:2d:da:4b:85:21:c5:a3:cd:77: 7d:69:12:9e:e8:6c:68:de:45:2d:0d:db:5b:35:34:fb:c0:7f: 96:11:8b:fa:c3:8e:19:c8:3a:fc:c1:cd:60:2a:92:3b:31:80: 57:06:30:60:c7:96:7e:53:e1:fd:88:47:09:40:b1:8a:8f:26: f1:04:7f:56:cc:8d:75:45:aa:a8:52:ac:5c:cb:89:26:50:a0: 49:ac:2e:a2:ba:6d:a7:fc:d3:49:62:22:42:e8:e5:c9:0c:0e: 6f:1b:c4:b1:2e:22:a2:f0:22:90:48:a7:a1:c3:cb:e7:a1:1e: 54:35:b2:26:31:2d:76:53:57:f9:3b:18:27:92:b4:9a:f2:26: 4c:bc:20:04:47:f4:fd:96:b0:bc:a2:19:82:91:41:9d:40:a5: 02:48:56:38:47:66:79:b6:46:de:cb:de:71:3e:93:c7:00:78: 95:e8:c2:83:69:54:f0:65:cb:81:08:65:91:03:29:95:a4:1d: 33:61:4b:e5:b1:19:60:1f:11:ca:36:8b:8a:76:ca:5d:39:de: d2:db:f7:1e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFLcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDExMkJEREQxMjFBOUE0 NUI1Q0EwOEEyMzVBRDdDNDJDRDMxNzNGRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgdOCMW68F+/h/bOS/5W2Eads3QoqiI5MIpp/w/FgUzQ4LoCBd AxrvAeS38Tg7kfxCg9rUZn69RCECIumiQ3V7hiK/oMYCIa2iU2Q1DeqepDFLimaX FvbrPPC3P0RbhLnPnQCoHaj5/f9dpXedwCfuHb6TEDz57zIPD4pSFk0y1XQJU0Wn azdZCIuHWk3DJOLFGVh9yiq96av9+ExFyB6PqoKQOpHjn/BAESvjINtiH3RElVyc uPzhQvA8xT868peO1CKNUBzd4GhoUr8jNIx3RMsEJEJul45QMNowPE/3m8SegqwS l2res4NP+BtsscmRtDimHknP7QPL33FthD5dAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUESvd0SGppFtcoIojWtfELNMXP9kwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvRVN2ZDBTR3BwRnRjb0lv ald0ZkVMTk1YUDlrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME A3xsoDANBgkqhkiG9w0BAQsFAAOCAQEAECR3WDFz2OcpgtoxFasKSSRuYe4JJmFT lmb5IXwR1/9bSPczLmnBNteBFDWRLdpLhSHFo813fWkSnuhsaN5FLQ3bWzU0+8B/ lhGL+sOOGcg6/MHNYCqSOzGAVwYwYMeWflPh/YhHCUCxio8m8QR/VsyNdUWqqFKs XMuJJlCgSawuorptp/zTSWIiQujlyQwObxvEsS4iovAikEinocPL56EeVDWyJjEt dlNX+TsYJ5K0mvImTLwgBEf0/ZawvKIZgpFBnUClAkhWOEdmebZG3svecT6TxwB4 lejCg2lU8GXLgQhlkQMplaQdM2FL5bEZYB8RyjaLinbKXTne0tv3Hg== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:37 2025 by rpki-client