$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MsCjBVUa0P2JdhiydySMe05Ki3M.roa File: MsCjBVUa0P2JdhiydySMe05Ki3M.roa (raw, json) Hash identifier: 4PMudP5UfuNoFGsDoI5L99l9CV7xO9G0KsOQm0zz9FA= Subject key identifier: 32:C0:A3:05:55:1A:D0:FD:89:76:18:B2:77:24:8C:7B:4E:4A:8B:73 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 147E Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MsCjBVUa0P2JdhiydySMe05Ki3M.roa Signing time: Fri 22 Aug 2025 08:54:29 +0000 ROA not before: Fri 22 Aug 2025 08:54:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 61.31.197.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5246 (0x147e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=32C0A305551AD0FD897618B277248C7B4E4A8B73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c0:11:94:ce:f8:8d:fe:72:fd:29:27:20:70: be:1c:20:ad:14:98:15:84:d6:cb:c3:b0:a5:f9:7c: a6:c2:c8:e7:2c:71:5a:e6:1c:16:f0:5a:8a:07:6b: 68:ff:99:3b:c0:89:3a:87:9a:48:2d:92:5a:47:9f: 05:4e:f4:2b:3e:b7:b0:77:2e:23:4e:ae:c6:a5:d6: fc:f4:3c:9d:ce:be:4c:da:6a:df:ff:59:19:9d:2f: 28:a6:13:d5:8a:23:53:4a:58:a3:c3:e1:d8:b2:26: 50:9e:36:08:27:4f:af:39:d4:39:c8:d6:8f:69:f1: d6:48:c6:9a:92:2d:ce:de:e3:47:59:39:4d:83:15: 19:d0:cf:04:7a:35:ea:d9:d2:05:1b:bf:c6:4e:ee: 53:98:5b:24:3a:17:6a:d6:ef:2a:15:d5:c8:d0:38: 0f:24:3a:35:f2:a9:48:f5:9b:9d:d3:cb:5c:e1:b5: 04:cb:5a:00:33:ea:80:22:b3:48:9c:d2:54:c4:46: c3:cb:9f:62:60:e2:45:a0:95:82:1f:a2:72:42:0e: 40:73:b7:d5:a2:f4:35:95:c6:5f:8b:74:2e:a9:1c: e2:29:be:aa:2f:8a:d5:98:c1:ff:5d:b1:22:89:63: 14:70:41:7a:29:3e:90:3d:04:31:12:e8:04:9a:d8: b1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:C0:A3:05:55:1A:D0:FD:89:76:18:B2:77:24:8C:7B:4E:4A:8B:73 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MsCjBVUa0P2JdhiydySMe05Ki3M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.31.197.0/24 Signature Algorithm: sha256WithRSAEncryption 86:4a:c2:34:e3:a7:2c:44:76:28:10:a6:85:e5:f2:74:4b:43: 5b:08:82:af:18:80:c9:b6:cf:e9:71:9a:99:73:fc:07:0d:da: 21:0a:a6:5d:fd:e4:9e:ad:60:15:c2:3d:dc:e6:a4:27:dc:86: 18:66:25:f5:7e:3d:5b:ec:8a:22:a3:b4:22:40:62:fc:92:70: 4b:e8:a8:4c:03:cd:37:18:f9:99:ad:3b:c1:ed:15:23:fc:84: 98:79:55:2c:c0:08:1d:d6:c1:3f:ed:e6:1e:c5:01:35:47:b5: 92:93:25:da:cf:ef:89:a9:05:0b:0c:0c:85:0b:fd:f0:2a:50: 9f:a6:e1:f9:15:3d:3c:73:e4:d6:da:cc:4c:1e:ad:ac:ec:dc: d7:e7:86:39:7c:e9:bf:85:36:b8:de:27:29:46:ff:6e:b1:29: 8e:fa:1e:d5:bb:10:23:1b:4e:23:88:d3:c5:e0:1e:73:70:59: 72:ed:0c:83:32:69:89:19:dd:e5:50:4f:c1:a5:1d:7b:7d:d9: b7:f2:14:9b:42:14:83:71:9e:44:e3:95:80:fe:ec:3a:51:b0: 13:cb:0a:71:70:05:a5:c0:9b:b2:5b:4b:a8:56:ad:ed:50:2c: d8:8e:d3:ff:60:23:a1:23:f4:8b:6e:57:68:1d:23:ed:36:c6: d4:1c:b0:31 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFH4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMyQzBBMzA1NTUxQUQw RkQ4OTc2MThCMjc3MjQ4QzdCNEU0QThCNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpwBGUzviN/nL9KScgcL4cIK0UmBWE1svDsKX5fKbCyOcscVrm HBbwWooHa2j/mTvAiTqHmkgtklpHnwVO9Cs+t7B3LiNOrsal1vz0PJ3Ovkzaat// WRmdLyimE9WKI1NKWKPD4diyJlCeNggnT6851DnI1o9p8dZIxpqSLc7e40dZOU2D FRnQzwR6NerZ0gUbv8ZO7lOYWyQ6F2rW7yoV1cjQOA8kOjXyqUj1m53Ty1zhtQTL WgAz6oAis0ic0lTERsPLn2Jg4kWglYIfonJCDkBzt9Wi9DWVxl+LdC6pHOIpvqov itWYwf9dsSKJYxRwQXopPpA9BDES6ASa2LGjAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUMsCjBVUa0P2JdhiydySMe05Ki3MwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvTXNDakJWVWEwUDJKZGhp eWR5U01lMDVLaTNNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AD0fxTANBgkqhkiG9w0BAQsFAAOCAQEAhkrCNOOnLER2KBCmheXydEtDWwiCrxiA ybbP6XGamXP8Bw3aIQqmXf3knq1gFcI93OakJ9yGGGYl9X49W+yKIqO0IkBi/JJw S+ioTAPNNxj5ma07we0VI/yEmHlVLMAIHdbBP+3mHsUBNUe1kpMl2s/viakFCwwM hQv98CpQn6bh+RU9PHPk1trMTB6trOzc1+eGOXzpv4U2uN4nKUb/brEpjvoe1bsQ IxtOI4jTxeAec3BZcu0MgzJpiRnd5VBPwaUde33Zt/IUm0IUg3GeROOVgP7sOlGw E8sKcXAFpcCbsltLqFat7VAs2I7T/2AjoSP0i25XaB0j7TbG1BywMQ== -----END CERTIFICATE-----Generated at Sun Aug 24 06:50:33 2025 by rpki-client