$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/K2_Bw_GYNG04ozvjnQfal_pYgxs.roa File: K2_Bw_GYNG04ozvjnQfal_pYgxs.roa (raw, json) Hash identifier: U7o9V07kezwrLswxhMuniBWel5mE4moSRx75rVp/lFs= Subject key identifier: 2B:6F:C1:C3:F1:98:34:6D:38:A3:3B:E3:9D:07:DA:97:FA:58:83:1B Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14A5 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/K2_Bw_GYNG04ozvjnQfal_pYgxs.roa Signing time: Fri 22 Aug 2025 08:54:39 +0000 ROA not before: Fri 22 Aug 2025 08:54:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 203.77.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5285 (0x14a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2B6FC1C3F198346D38A33BE39D07DA97FA58831B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:30:8a:d0:72:2b:17:2c:0d:a5:ad:a5:b2:c3: aa:f6:e2:12:25:3f:ec:56:ab:79:74:59:5b:2c:1b: 0c:43:c9:8d:bd:45:e5:f7:f3:a2:f7:c1:18:a1:e2: 1f:2e:51:40:4c:dc:b9:88:0f:17:11:3f:ed:6a:47: e4:10:95:51:05:d9:51:cf:df:79:57:d5:b8:9a:7c: ca:ff:57:90:4a:5d:a0:7f:c4:93:a5:34:9d:e1:e6: f0:32:52:9a:93:61:e1:22:c3:1e:3b:47:3c:9f:1a: 69:44:08:76:59:0c:53:c8:3c:bb:88:88:25:04:c3: ee:63:62:20:a6:2f:07:59:20:cd:55:88:f8:e9:a4: 90:9f:5a:a7:fb:76:6e:9f:a0:70:0a:4b:74:05:45: c0:39:2e:71:f4:79:7d:fb:bd:42:11:45:da:54:26: 4a:c6:89:23:76:e2:e3:d0:78:f4:70:df:bf:4f:3f: 26:97:24:aa:9a:95:56:1b:ec:09:0b:df:b3:67:a8: fc:ff:c6:cb:b9:1d:e5:cd:16:8d:6a:4d:54:ee:ec: 8d:f6:7e:cd:24:eb:68:d3:cf:11:0e:d2:6d:24:27: cf:e3:44:4a:3b:c4:1c:2c:11:31:2e:36:78:0c:c1: 11:08:42:3d:31:f3:33:b9:66:6b:4f:ca:cf:60:fb: e3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:6F:C1:C3:F1:98:34:6D:38:A3:3B:E3:9D:07:DA:97:FA:58:83:1B X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/K2_Bw_GYNG04ozvjnQfal_pYgxs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.40.0/21 Signature Algorithm: sha256WithRSAEncryption 57:42:de:f8:25:ae:49:41:03:a0:7c:0b:39:4b:56:0d:58:22: ab:72:be:13:be:88:91:86:65:a2:74:92:f0:45:fb:66:c8:89: b9:6e:8a:64:a7:b2:46:66:c8:ce:13:c6:57:86:d8:1e:38:fa: b8:33:e6:8c:b6:4a:48:c3:36:c3:ee:fd:f5:b7:91:90:bd:4a: 0a:a5:65:71:27:c8:71:cf:ae:2a:f4:87:03:94:72:99:f6:8a: 28:c7:e7:e0:e5:1c:e8:96:55:17:a2:e6:cc:bd:8a:c9:ab:23: d1:92:95:14:fd:ec:74:fe:2c:3c:26:bd:07:94:87:5a:79:05: 6f:bc:6f:28:b3:df:25:20:0e:12:56:82:3b:0b:1f:05:29:ad: 51:0a:5e:70:f6:ad:07:7b:f9:08:9f:50:12:cf:0e:45:ca:39: 01:0d:e3:d9:18:b6:7d:f9:01:b2:d7:0a:aa:82:ec:e1:07:8c: 78:58:23:2d:17:e4:8f:3c:1b:65:bb:18:e2:f9:d2:6a:1b:a0: 20:15:bf:9c:4a:f1:cd:71:b4:b9:d4:f4:2c:54:b8:62:80:20: 32:41:e5:d2:ae:7b:6a:26:3b:a9:88:e1:79:af:16:ff:80:35: 62:a9:56:1c:9c:e1:5e:95:da:ea:9a:34:11:2f:84:19:23:24: 4e:16:33:18 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFKUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJCNkZDMUMzRjE5ODM0 NkQzOEEzM0JFMzlEMDdEQTk3RkE1ODgzMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQMIrQcisXLA2lraWyw6r24hIlP+xWq3l0WVssGwxDyY29ReX3 86L3wRih4h8uUUBM3LmIDxcRP+1qR+QQlVEF2VHP33lX1biafMr/V5BKXaB/xJOl NJ3h5vAyUpqTYeEiwx47RzyfGmlECHZZDFPIPLuIiCUEw+5jYiCmLwdZIM1ViPjp pJCfWqf7dm6foHAKS3QFRcA5LnH0eX37vUIRRdpUJkrGiSN24uPQePRw379PPyaX JKqalVYb7AkL37NnqPz/xsu5HeXNFo1qTVTu7I32fs0k62jTzxEO0m0kJ8/jREo7 xBwsETEuNngMwREIQj0x8zO5ZmtPys9g++PlAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUK2/Bw/GYNG04ozvjnQfal/pYgxswHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSzJfQndfR1lORzA0b3p2 am5RZmFsX3BZZ3hzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME A8tNKDANBgkqhkiG9w0BAQsFAAOCAQEAV0Le+CWuSUEDoHwLOUtWDVgiq3K+E76I kYZlonSS8EX7ZsiJuW6KZKeyRmbIzhPGV4bYHjj6uDPmjLZKSMM2w+799beRkL1K CqVlcSfIcc+uKvSHA5RymfaKKMfn4OUc6JZVF6LmzL2Kyasj0ZKVFP3sdP4sPCa9 B5SHWnkFb7xvKLPfJSAOElaCOwsfBSmtUQpecPatB3v5CJ9QEs8ORco5AQ3j2Ri2 ffkBstcKqoLs4QeMeFgjLRfkjzwbZbsY4vnSahugIBW/nErxzXG0udT0LFS4YoAg MkHl0q57aiY7qYjhea8W/4A1YqlWHJzhXpXa6po0ES+EGSMkThYzGA== -----END CERTIFICATE-----Generated at Sun Aug 24 06:52:18 2025 by rpki-client