$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MQde7YsmS26To97c9rHGViEfkKk.roa File: MQde7YsmS26To97c9rHGViEfkKk.roa (raw, json) Hash identifier: Qh02iAzXPGZRChH51VcR9txvXRuwlthu7ELctpdEWMA= Subject key identifier: 31:07:5E:ED:8B:26:4B:6E:93:A3:DE:DC:F6:B1:C6:56:21:1F:90:A9 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 148B Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MQde7YsmS26To97c9rHGViEfkKk.roa Signing time: Fri 22 Aug 2025 08:54:33 +0000 ROA not before: Fri 22 Aug 2025 08:54:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 60.199.176.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5259 (0x148b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=31075EED8B264B6E93A3DEDCF6B1C656211F90A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:85:19:ef:0f:f1:e0:cc:b3:8c:2b:8f:7e:11: 2e:29:8e:80:01:5a:98:fd:93:e5:89:a2:3b:58:5b: b9:f3:5b:11:e5:8c:ec:35:74:da:d0:a4:9a:8d:1a: 9a:ce:c1:2c:43:11:fe:66:81:62:48:0d:94:46:b4: 0b:ec:1e:a4:4a:30:3f:f0:11:99:c2:b2:91:b5:41: 38:b3:11:96:34:a2:48:5e:61:bd:77:41:35:5f:58: d1:b3:13:d7:4c:52:32:79:c5:76:74:63:be:ca:6d: ff:a9:44:c2:45:b6:1e:fb:50:4e:8b:7b:2d:ea:e4: 55:dd:a6:5f:a2:9c:d7:b2:02:f2:89:d7:91:4e:f7: b4:a1:47:f7:f0:7d:5d:ca:84:b9:74:24:3a:14:dc: f4:04:7e:f9:29:51:2c:e3:0d:2b:9b:1e:b0:b1:68: 58:9f:bd:d4:66:55:eb:6f:ae:a3:e1:f2:5f:ac:86: 4e:95:6e:04:c3:10:8f:9b:18:ca:e2:88:26:bf:4d: 24:3c:69:ba:da:cd:32:dc:64:8e:1e:3c:e6:a9:c9: a6:8c:90:96:1c:7b:91:a5:8e:6c:74:ac:02:a2:78: e1:ed:dc:28:fc:8f:3b:c1:e7:60:17:d3:06:5c:77: 61:d4:7c:24:09:64:f0:45:94:34:c0:c8:57:cd:a8: 70:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:07:5E:ED:8B:26:4B:6E:93:A3:DE:DC:F6:B1:C6:56:21:1F:90:A9 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MQde7YsmS26To97c9rHGViEfkKk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.176.0/24 Signature Algorithm: sha256WithRSAEncryption 81:b1:fd:ee:bd:6c:b1:e8:8c:c6:4e:d7:1c:cd:94:d7:2e:bb: 79:2a:0e:43:f2:21:69:96:38:57:71:cb:0b:b7:d7:cd:e0:3e: 8e:d0:b8:7b:6e:b2:1d:b4:ff:6c:6a:de:f6:ca:d2:83:64:b1: 00:06:fc:a8:3f:fe:1c:9a:54:84:0a:62:d8:25:7c:06:d0:c6: c5:c8:4d:05:c3:5e:60:ff:ac:a9:aa:38:a9:40:9f:20:e6:24: 52:1c:4f:bc:61:81:11:c7:b4:49:11:f7:26:02:dc:2c:29:65: 14:7b:e5:f7:0f:6b:66:35:37:29:e5:35:97:bc:09:7a:c1:6e: c6:22:3c:12:05:ba:f4:2f:e2:cc:9d:10:5d:52:96:34:1f:e5: 5b:b8:ab:18:a5:30:eb:73:ba:1f:fd:cd:31:d9:d5:fc:42:44: f8:11:cb:5c:05:14:4e:50:46:3d:b1:37:91:fc:3b:c8:10:24: c1:96:60:46:10:89:6f:09:fe:a1:10:9d:55:3c:b9:1f:ca:c5: f6:7e:fa:97:23:de:ac:0e:c3:b8:18:ba:57:ba:a7:00:73:a6: 8f:e3:13:92:12:a3:ff:19:0e:3a:f2:82:da:84:4f:e7:73:00: f1:2f:bb:3d:28:c5:f3:e8:d1:4b:ca:d8:2f:23:81:a1:4d:63: 95:40:4a:20 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMxMDc1RUVEOEIyNjRC NkU5M0EzREVEQ0Y2QjFDNjU2MjExRjkwQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4hRnvD/HgzLOMK49+ES4pjoABWpj9k+WJojtYW7nzWxHljOw1 dNrQpJqNGprOwSxDEf5mgWJIDZRGtAvsHqRKMD/wEZnCspG1QTizEZY0okheYb13 QTVfWNGzE9dMUjJ5xXZ0Y77Kbf+pRMJFth77UE6Ley3q5FXdpl+inNeyAvKJ15FO 97ShR/fwfV3KhLl0JDoU3PQEfvkpUSzjDSubHrCxaFifvdRmVetvrqPh8l+shk6V bgTDEI+bGMriiCa/TSQ8abrazTLcZI4ePOapyaaMkJYce5Gljmx0rAKieOHt3Cj8 jzvB52AX0wZcd2HUfCQJZPBFlDTAyFfNqHA1AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUMQde7YsmS26To97c9rHGViEfkKkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvTVFkZTdZc21TMjZUbzk3 YzlySEdWaUVma0trLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHsDANBgkqhkiG9w0BAQsFAAOCAQEAgbH97r1sseiMxk7XHM2U1y67eSoOQ/Ih aZY4V3HLC7fXzeA+jtC4e26yHbT/bGre9srSg2SxAAb8qD/+HJpUhApi2CV8BtDG xchNBcNeYP+sqao4qUCfIOYkUhxPvGGBEce0SRH3JgLcLCllFHvl9w9rZjU3KeU1 l7wJesFuxiI8EgW69C/izJ0QXVKWNB/lW7irGKUw63O6H/3NMdnV/EJE+BHLXAUU TlBGPbE3kfw7yBAkwZZgRhCJbwn+oRCdVTy5H8rF9n76lyPerA7DuBi6V7qnAHOm j+MTkhKj/xkOOvKC2oRP53MA8S+7PSjF8+jRS8rYLyOBoU1jlUBKIA== -----END CERTIFICATE-----Generated at Sun Aug 24 06:47:02 2025 by rpki-client