$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NoQs1oBbK4ukZDgejMPhxXatI1I.roa File: NoQs1oBbK4ukZDgejMPhxXatI1I.roa (raw, json) Hash identifier: ETUk7PPaIKpaqF6Q9oui86llikE34lrZEnLi4coEHK4= Subject key identifier: 36:84:2C:D6:80:5B:2B:8B:A4:64:38:1E:8C:C3:E1:C5:76:AD:23:52 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14CD Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NoQs1oBbK4ukZDgejMPhxXatI1I.roa Signing time: Fri 22 Aug 2025 08:54:48 +0000 ROA not before: Fri 22 Aug 2025 08:54:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 60.199.235.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5325 (0x14cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=36842CD6805B2B8BA464381E8CC3E1C576AD2352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:24:2d:b0:af:bb:ab:6b:e9:c0:f9:0c:bb:77: 31:3e:7c:d2:48:8b:a5:18:c0:af:41:88:2c:3b:e7: 5e:41:79:e7:93:3d:bf:bc:38:40:f5:51:18:db:a1: eb:7b:31:88:76:43:dd:ab:ff:e0:a5:85:de:c0:f9: 6a:04:8e:3f:0a:c4:65:47:1a:8e:eb:f8:71:53:1c: f6:ed:f8:7c:13:64:3e:cb:98:dd:2f:cf:0e:b9:ec: 52:fc:c8:25:5d:b4:13:9e:1d:e6:8e:06:3a:6b:8b: 74:f5:56:f8:88:32:8c:3f:e0:91:83:fd:6e:dd:4d: d1:72:cd:0b:2f:8c:a7:7a:88:23:66:82:bf:61:69: 10:c6:9a:88:b3:80:bb:cd:67:fa:63:8e:a5:3c:6d: 06:8f:87:b4:03:25:60:89:d5:01:7a:0e:aa:48:7f: 43:f0:ff:f3:71:5b:5a:81:28:98:8b:3f:45:98:a7: 57:8d:42:67:97:82:5d:2d:55:fa:a0:5a:21:20:ca: d4:f6:9d:86:26:ce:3a:a2:83:bd:53:a7:f8:ac:04: 27:15:ac:26:58:18:10:32:7b:0b:bf:e9:dc:d8:a5: 1f:89:5f:bf:39:02:c6:ae:be:c9:9f:b7:a0:6d:c2: f5:c7:b1:2e:2f:af:5b:30:ad:ac:da:e9:87:b2:51: 8a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:84:2C:D6:80:5B:2B:8B:A4:64:38:1E:8C:C3:E1:C5:76:AD:23:52 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NoQs1oBbK4ukZDgejMPhxXatI1I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.235.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:06:0e:13:15:a3:24:27:d7:b1:9d:50:b5:e6:50:4a:09:35: 77:87:8f:cd:93:33:34:3a:4b:3c:60:79:50:09:77:da:f4:66: ed:03:db:ba:02:d4:37:ab:55:b8:5c:e5:5e:59:ca:15:d8:bf: ec:9f:17:8b:12:8e:b3:82:27:fe:41:19:0f:87:0a:4d:ab:5b: 39:e4:76:9f:72:e2:c1:64:b2:35:6c:6b:56:ec:f7:e6:71:22: 5b:a7:56:3e:b4:87:8b:37:b9:87:45:0b:19:6c:f1:f6:be:90: d2:78:e2:3a:17:e8:bd:ac:a7:31:c2:db:c5:b6:c4:45:3a:66: 53:31:a4:70:d8:d0:28:11:ab:03:37:77:3a:10:6d:a1:5b:5a: 38:ec:88:3f:5b:c9:09:7f:22:0b:27:cb:d9:6a:6c:8c:64:a9: 48:81:8e:3f:e5:e8:7e:7f:a6:00:72:7f:e8:68:8f:6d:5e:66: f1:59:16:04:8a:28:f9:26:a1:97:ec:99:a7:cd:d0:43:c2:8c: d3:f1:0e:08:ba:6a:63:a2:13:ca:62:1e:4c:5c:50:a4:da:bf: a0:7c:e1:0b:be:5e:9e:7a:c5:db:e5:6e:a8:28:ad:66:0b:b7: 0b:de:5b:9b:f7:e9:52:22:58:d5:e4:77:8a:0e:87:94:f3:e1: b5:55:ef:98 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFM0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM2ODQyQ0Q2ODA1QjJC OEJBNDY0MzgxRThDQzNFMUM1NzZBRDIzNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjJC2wr7ura+nA+Qy7dzE+fNJIi6UYwK9BiCw7515BeeeTPb+8 OED1URjboet7MYh2Q92r/+Clhd7A+WoEjj8KxGVHGo7r+HFTHPbt+HwTZD7LmN0v zw657FL8yCVdtBOeHeaOBjpri3T1VviIMow/4JGD/W7dTdFyzQsvjKd6iCNmgr9h aRDGmoizgLvNZ/pjjqU8bQaPh7QDJWCJ1QF6DqpIf0Pw//NxW1qBKJiLP0WYp1eN QmeXgl0tVfqgWiEgytT2nYYmzjqig71Tp/isBCcVrCZYGBAyewu/6dzYpR+JX785 Asauvsmft6BtwvXHsS4vr1swraza6YeyUYqXAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUNoQs1oBbK4ukZDgejMPhxXatI1IwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvTm9RczFvQmJLNHVrWkRn ZWpNUGh4WGF0STFJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzH6zANBgkqhkiG9w0BAQsFAAOCAQEAfwYOExWjJCfXsZ1QteZQSgk1d4ePzZMz NDpLPGB5UAl32vRm7QPbugLUN6tVuFzlXlnKFdi/7J8XixKOs4In/kEZD4cKTatb OeR2n3LiwWSyNWxrVuz35nEiW6dWPrSHize5h0ULGWzx9r6Q0njiOhfovaynMcLb xbbERTpmUzGkcNjQKBGrAzd3OhBtoVtaOOyIP1vJCX8iCyfL2WpsjGSpSIGOP+Xo fn+mAHJ/6GiPbV5m8VkWBIoo+Sahl+yZp83QQ8KM0/EOCLpqY6ITymIeTFxQpNq/ oHzhC75ennrF2+VuqCitZgu3C95bm/fpUiJY1eR3ig6HlPPhtVXvmA== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:49 2025 by rpki-client