$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Q6XlIXF8AWb_Y5Y46ViTV6KIQmY.roa File: Q6XlIXF8AWb_Y5Y46ViTV6KIQmY.roa (raw, json) Hash identifier: jRhl/z2OpdmBXzW1yzJebmgk0hcpD9prX03HJEHIs6Y= Subject key identifier: 43:A5:E5:21:71:7C:01:66:FF:63:96:38:E9:58:93:57:A2:88:42:66 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14CE Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Q6XlIXF8AWb_Y5Y46ViTV6KIQmY.roa Signing time: Fri 22 Aug 2025 08:54:48 +0000 ROA not before: Fri 22 Aug 2025 08:54:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131634 IP address blocks: 124.108.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5326 (0x14ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=43A5E521717C0166FF639638E9589357A2884266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ab:c5:0a:1a:ce:b8:75:2b:10:7e:a7:f7:61: df:dc:39:8e:9f:ba:7c:1a:f5:3a:77:2a:b1:0e:01: 9b:c7:e2:e9:cf:6a:b2:e4:4c:91:ad:32:a7:26:5c: f4:86:43:65:ea:a0:9b:ff:57:a4:70:31:ce:be:e5: 2f:bf:1a:fc:be:9a:d0:7b:c9:8b:23:d0:59:b0:28: 0a:83:8d:4f:aa:13:1e:ef:af:0e:55:2b:17:3a:fd: 3d:e1:ad:af:cf:2d:90:fa:2b:bc:3a:cc:00:2d:96: 09:dc:b2:91:5e:05:95:25:94:78:98:24:60:a9:5c: 8d:b9:a7:d5:57:07:3f:80:4c:4a:a1:97:b2:f0:a9: 03:cd:fb:71:0b:07:94:e9:c1:a9:2f:dc:2a:00:d7: 73:82:e3:aa:a2:a2:0f:f5:e2:f9:49:f9:d2:54:2e: 34:d4:01:65:47:9d:5d:43:f7:cb:2b:48:8c:2e:c9: 33:0a:d4:da:6f:47:db:19:4b:72:6b:e4:c5:d4:a3: 3e:a7:c2:cd:a1:74:c7:6c:69:6a:33:e4:18:6e:3b: 56:7c:ed:14:27:52:30:f5:e1:f1:1b:f6:a5:55:a3: ad:7b:21:1f:75:2b:25:89:e0:ec:76:95:44:3f:fe: 81:1a:37:7a:03:de:0b:c4:0e:a1:38:fb:54:90:94: 8a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A5:E5:21:71:7C:01:66:FF:63:96:38:E9:58:93:57:A2:88:42:66 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Q6XlIXF8AWb_Y5Y46ViTV6KIQmY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.108.172.0/22 Signature Algorithm: sha256WithRSAEncryption 61:7d:fc:3b:da:04:9f:81:d8:a6:cb:9e:29:e6:f4:ed:4f:b4: be:7a:2a:78:b3:84:1b:b2:b5:a2:02:e4:d6:c9:16:a3:1d:2a: c1:e4:ea:e4:b6:c3:60:fa:a4:0f:8b:7c:a3:1f:de:99:a2:5b: 52:49:fe:6f:fe:5c:06:1e:ce:de:8f:c7:e1:72:05:70:3c:0e: 1c:15:77:73:c9:04:29:69:9b:ed:12:59:be:5d:4b:51:c8:af: a7:35:43:31:ad:f0:3b:3a:a5:d6:d6:a3:5b:22:e2:dc:f4:94: 8a:05:7b:69:64:90:d8:0f:94:f1:e2:24:96:67:17:c4:c4:59: fe:d9:6a:4f:c7:c5:96:a8:9c:0e:51:f0:59:d0:c4:6d:4e:4e: d5:48:a5:e1:d7:01:5f:1b:8d:b5:ba:d7:12:fa:b9:a2:8b:c2: 1d:f4:72:24:3c:9c:6e:36:21:86:e4:b1:84:7c:8e:03:d3:2b: 28:12:bf:f0:38:f1:1f:35:83:a6:53:dd:84:0e:f3:98:4b:f1: 50:87:34:76:3b:93:78:d6:da:e1:62:2c:90:bb:37:d0:1c:aa: 8f:cc:21:8d:c6:fd:55:9e:a6:d5:81:72:1f:04:82:5c:0a:6a: 55:c8:41:36:fa:eb:a8:f7:2e:61:2b:79:e7:0b:5a:58:68:73: 14:e0:b0:55 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFM4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQzQTVFNTIxNzE3QzAx NjZGRjYzOTYzOEU5NTg5MzU3QTI4ODQyNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdq8UKGs64dSsQfqf3Yd/cOY6funwa9Tp3KrEOAZvH4unParLk TJGtMqcmXPSGQ2XqoJv/V6RwMc6+5S+/Gvy+mtB7yYsj0FmwKAqDjU+qEx7vrw5V Kxc6/T3hra/PLZD6K7w6zAAtlgncspFeBZUllHiYJGCpXI25p9VXBz+ATEqhl7Lw qQPN+3ELB5Tpwakv3CoA13OC46qiog/14vlJ+dJULjTUAWVHnV1D98srSIwuyTMK 1NpvR9sZS3Jr5MXUoz6nws2hdMdsaWoz5BhuO1Z87RQnUjD14fEb9qVVo617IR91 KyWJ4Ox2lUQ//oEaN3oD3gvEDqE4+1SQlIqNAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUQ6XlIXF8AWb/Y5Y46ViTV6KIQmYwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvUTZYbElYRjhBV2JfWTVZ NDZWaVRWNktJUW1ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AnxsrDANBgkqhkiG9w0BAQsFAAOCAQEAYX38O9oEn4HYpsueKeb07U+0vnoqeLOE G7K1ogLk1skWox0qweTq5LbDYPqkD4t8ox/emaJbUkn+b/5cBh7O3o/H4XIFcDwO HBV3c8kEKWmb7RJZvl1LUcivpzVDMa3wOzql1tajWyLi3PSUigV7aWSQ2A+U8eIk lmcXxMRZ/tlqT8fFlqicDlHwWdDEbU5O1Uil4dcBXxuNtbrXEvq5oovCHfRyJDyc bjYhhuSxhHyOA9MrKBK/8DjxHzWDplPdhA7zmEvxUIc0djuTeNba4WIskLs30Byq j8whjcb9VZ6m1YFyHwSCXApqVchBNvrrqPcuYSt55wtaWGhzFOCwVQ== -----END CERTIFICATE-----Generated at Sun Aug 24 08:53:58 2025 by rpki-client