$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IpAXYzvgHQprEXYWSi_PXI_xIW8.roa File: IpAXYzvgHQprEXYWSi_PXI_xIW8.roa (raw, json) Hash identifier: U+GArJTZskRaTAive2UxHq95MlS95nKd6S2N+NRsvk0= Subject key identifier: 22:90:17:63:3B:E0:1D:0A:6B:11:76:16:4A:2F:CF:5C:8F:F1:21:6F Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1499 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IpAXYzvgHQprEXYWSi_PXI_xIW8.roa Signing time: Fri 22 Aug 2025 08:54:36 +0000 ROA not before: Fri 22 Aug 2025 08:54:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 2001:c50::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5273 (0x1499) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=229017633BE01D0A6B1176164A2FCF5C8FF1216F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:33:e9:d4:da:0f:82:45:73:0b:87:fa:6c:64: 50:26:38:e4:4e:69:42:dc:e6:6d:36:48:da:eb:b8: 8f:5a:a8:1e:88:35:c5:58:b4:e9:9a:ce:18:af:a3: 1b:58:a9:8a:d5:0f:ae:d0:f0:a2:90:41:8c:a9:da: 38:11:69:a8:e3:16:ab:92:1b:47:30:8e:3f:65:25: c3:16:61:8d:f0:d1:03:a3:f3:1f:9e:c2:b3:5c:48: 73:bc:32:fa:cf:40:13:b7:27:5f:ed:cd:54:5d:e9: 57:b0:28:0f:bb:8c:07:d1:b8:7c:83:94:8a:f5:72: da:d3:97:d5:eb:8c:ad:93:1f:df:94:89:81:6a:05: 0c:23:93:ce:93:0a:da:df:e5:2b:f8:f5:97:9e:ed: a1:4e:df:51:a2:ce:86:f3:c1:48:68:99:a1:da:e5: 61:1b:5c:a0:33:c7:0b:6d:50:7d:38:93:b6:61:04: 9e:d8:be:72:d7:b1:f4:81:9a:c7:9a:ca:73:b5:8c: 46:f7:50:ea:4c:40:31:48:5c:b2:ab:14:c6:28:a1: e2:e6:9d:7f:24:0c:9d:cb:90:23:9d:d7:32:ac:9d: 2e:a3:56:11:32:d7:da:d0:01:09:c6:ac:bc:69:d6: df:10:cb:a5:56:63:bd:00:2f:8f:1c:ef:7c:a5:31: 55:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:90:17:63:3B:E0:1D:0A:6B:11:76:16:4A:2F:CF:5C:8F:F1:21:6F X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IpAXYzvgHQprEXYWSi_PXI_xIW8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:c50::/32 Signature Algorithm: sha256WithRSAEncryption 6d:d2:38:c8:bf:46:fb:86:6e:b1:5c:52:dd:dc:c1:7d:47:6f: a6:88:d8:a4:60:c5:c1:46:08:22:0f:45:a7:bd:2b:80:2b:08: f2:b0:d2:d7:d9:71:6a:da:53:4e:6c:6a:d1:08:8d:50:c0:f8: b1:e0:09:15:42:62:00:97:c5:11:67:ef:27:29:79:16:0e:08: 28:6e:d1:98:e7:06:ef:36:bb:c0:98:85:1c:c4:d0:45:95:21: fb:7a:f8:c9:ee:b0:b9:81:6f:88:57:4a:dc:7c:76:98:45:cd: fe:33:f3:97:c7:11:48:60:56:48:a5:6e:f7:a3:77:c9:3d:62: c2:12:0d:36:c8:d1:68:5b:3e:92:98:0d:52:26:26:59:9d:4c: 3a:0b:8f:41:86:52:23:27:0d:be:4f:52:65:0c:72:20:4d:c5: c1:09:4b:0e:19:51:07:a1:ef:de:96:50:0f:89:06:2f:60:8d: 58:da:48:22:83:91:e5:ca:a3:b2:17:c8:7a:39:5f:df:f5:28: 96:51:fc:de:49:ad:6e:43:cb:db:4d:65:61:b7:dc:6d:7f:48: 57:01:23:d6:2f:28:48:a6:c7:cd:5a:1e:b1:48:08:2f:5d:66: be:10:31:a1:af:a6:82:83:20:de:24:db:80:60:8e:9b:b8:f7: 3a:a8:a9:50 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFJkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIyOTAxNzYzM0JFMDFE MEE2QjExNzYxNjRBMkZDRjVDOEZGMTIxNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQM+nU2g+CRXMLh/psZFAmOOROaULc5m02SNrruI9aqB6INcVY tOmazhivoxtYqYrVD67Q8KKQQYyp2jgRaajjFquSG0cwjj9lJcMWYY3w0QOj8x+e wrNcSHO8MvrPQBO3J1/tzVRd6VewKA+7jAfRuHyDlIr1ctrTl9XrjK2TH9+UiYFq BQwjk86TCtrf5Sv49Zee7aFO31GizobzwUhomaHa5WEbXKAzxwttUH04k7ZhBJ7Y vnLXsfSBmseaynO1jEb3UOpMQDFIXLKrFMYooeLmnX8kDJ3LkCOd1zKsnS6jVhEy 19rQAQnGrLxp1t8Qy6VWY70AL48c73ylMVXpAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUIpAXYzvgHQprEXYWSi/PXI/xIW8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSXBBWFl6dmdIUXByRVhZ V1NpX1BYSV94SVc4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACABDFAwDQYJKoZIhvcNAQELBQADggEBAG3SOMi/RvuGbrFcUt3cwX1Hb6aI2KRg xcFGCCIPRae9K4ArCPKw0tfZcWraU05satEIjVDA+LHgCRVCYgCXxRFn7ycpeRYO CChu0ZjnBu82u8CYhRzE0EWVIft6+MnusLmBb4hXStx8dphFzf4z85fHEUhgVkil bvejd8k9YsISDTbI0WhbPpKYDVImJlmdTDoLj0GGUiMnDb5PUmUMciBNxcEJSw4Z UQeh796WUA+JBi9gjVjaSCKDkeXKo7IXyHo5X9/1KJZR/N5JrW5Dy9tNZWG33G1/ SFcBI9YvKEimx81aHrFICC9dZr4QMaGvpoKDIN4k24Bgjpu49zqoqVA= -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:29 2025 by rpki-client