$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Qv58pUyr4Kp_c4ih57CIwxhqDXk.roa File: Qv58pUyr4Kp_c4ih57CIwxhqDXk.roa (raw, json) Hash identifier: Avez0xwLhjC3MdvtJvzhmWxTS+aZpo5EPjMP690T+rQ= Subject key identifier: 42:FE:7C:A5:4C:AB:E0:AA:7F:73:88:A1:E7:B0:88:C3:18:6A:0D:79 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14E9 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Qv58pUyr4Kp_c4ih57CIwxhqDXk.roa Signing time: Fri 22 Aug 2025 08:54:55 +0000 ROA not before: Fri 22 Aug 2025 08:54:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24158 IP address blocks: 2001:4546:1000:da00::/56 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5353 (0x14e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=42FE7CA54CABE0AA7F7388A1E7B088C3186A0D79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d6:6e:3c:8c:e6:bf:95:0d:08:5b:a6:4a:11: 38:af:44:2a:4f:5e:a9:af:8c:f9:2d:02:ff:69:1f: bb:c1:e4:da:1f:0c:0b:06:40:62:00:7d:2b:e6:69: 18:27:96:09:cf:c5:d7:77:71:7b:4a:63:a3:b7:79: 7f:2c:d3:b3:f6:6a:2b:f9:8d:8f:72:29:78:35:3b: c5:63:28:68:a9:94:44:03:ef:d4:b1:3c:39:ca:c4: a2:d8:17:b4:2c:5c:5a:fc:1e:16:cf:aa:94:11:aa: fd:7f:bb:e6:64:22:a2:f9:f4:af:4b:09:64:5a:bf: 77:51:0e:2f:0b:08:60:71:47:18:aa:a1:20:33:f7: 44:1d:a2:fd:98:55:d3:2b:34:4c:3a:6b:a2:9e:3a: b8:3e:66:3e:e4:db:ce:8a:a2:53:87:54:77:e9:88: 55:21:5b:50:e1:63:17:d0:c0:20:bc:34:66:da:5d: 6e:a3:ba:39:b1:54:49:9c:e2:b8:fc:9f:f8:e8:c6: d3:d5:3f:92:ed:c9:69:c2:d7:bf:ab:fc:01:04:bc: 56:b7:be:6a:bc:5f:f6:ac:30:9e:bb:9e:71:50:68: 0a:c4:b4:97:85:b5:ba:6d:42:af:cf:86:99:26:22: 18:ec:71:8e:a2:cf:38:99:03:df:69:44:d4:6b:63: 20:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:FE:7C:A5:4C:AB:E0:AA:7F:73:88:A1:E7:B0:88:C3:18:6A:0D:79 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Qv58pUyr4Kp_c4ih57CIwxhqDXk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:4546:1000:da00::/56 Signature Algorithm: sha256WithRSAEncryption 92:a5:69:17:f1:f9:55:0a:f8:44:8e:27:74:8e:d3:26:1c:58: 02:4e:65:9d:79:59:f0:58:5a:e3:9a:b0:6f:7e:1c:f9:1f:f1: 2e:40:1f:5b:80:f9:12:bf:80:17:a0:a6:6f:2a:4d:b8:25:a7: f3:6d:54:1b:24:81:58:ae:f2:24:ef:44:3e:7a:0c:bc:fc:e4: 45:d7:de:04:8c:32:15:35:5e:b2:20:77:cb:36:05:ea:88:7d: 00:55:4b:38:c1:97:f9:6e:69:a9:70:52:31:32:f2:d0:9a:88: 00:10:22:68:2f:02:f9:fd:51:37:5b:35:f7:4b:88:68:ac:c7: 36:82:70:d4:a2:62:64:39:b8:c4:14:0c:49:56:5f:da:6d:37: 7f:9a:e9:2f:b9:29:5f:a7:c7:40:ab:21:53:c7:11:5a:e4:ae: e2:aa:66:73:4b:7e:76:6d:0d:36:10:f1:9a:70:3b:4e:c6:4c: ea:61:cd:c7:a4:e6:a7:4f:51:c3:c4:0e:fb:e7:fd:f3:61:d7: 74:bb:34:44:88:30:8c:2e:76:ed:4a:08:ae:4a:5d:9c:40:94: 3e:37:ce:27:38:60:de:d2:30:20:8f:63:be:fc:e6:e1:a8:be: 11:a7:41:ef:ec:f1:58:af:f3:a0:45:56:e8:b1:1a:74:1d:a8: 69:59:4e:da -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICFOkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQyRkU3Q0E1NENBQkUw QUE3RjczODhBMUU3QjA4OEMzMTg2QTBENzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDV1m48jOa/lQ0IW6ZKETivRCpPXqmvjPktAv9pH7vB5NofDAsG QGIAfSvmaRgnlgnPxdd3cXtKY6O3eX8s07P2aiv5jY9yKXg1O8VjKGiplEQD79Sx PDnKxKLYF7QsXFr8HhbPqpQRqv1/u+ZkIqL59K9LCWRav3dRDi8LCGBxRxiqoSAz 90Qdov2YVdMrNEw6a6KeOrg+Zj7k286KolOHVHfpiFUhW1DhYxfQwCC8NGbaXW6j ujmxVEmc4rj8n/joxtPVP5LtyWnC17+r/AEEvFa3vmq8X/asMJ67nnFQaArEtJeF tbptQq/PhpkmIhjscY6izziZA99pRNRrYyD9AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUQv58pUyr4Kp/c4ih57CIwxhqDXkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvUXY1OHBVeXI0S3BfYzRp aDU3Q0l3eGhxRFhrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAjBggrBgEFBQcBBwEB/wQUMBIwEAQCAAIwCgMI ACABRUYQANowDQYJKoZIhvcNAQELBQADggEBAJKlaRfx+VUK+ESOJ3SO0yYcWAJO ZZ15WfBYWuOasG9+HPkf8S5AH1uA+RK/gBegpm8qTbglp/NtVBskgViu8iTvRD56 DLz85EXX3gSMMhU1XrIgd8s2BeqIfQBVSzjBl/luaalwUjEy8tCaiAAQImgvAvn9 UTdbNfdLiGisxzaCcNSiYmQ5uMQUDElWX9ptN3+a6S+5KV+nx0CrIVPHEVrkruKq ZnNLfnZtDTYQ8ZpwO07GTOphzcek5qdPUcPEDvvn/fNh13S7NESIMIwudu1KCK5K XZxAlD43zic4YN7SMCCPY7785uGovhGnQe/s8Viv86BFVuixGnQdqGlZTto= -----END CERTIFICATE-----Generated at Sun Aug 24 06:48:37 2025 by rpki-client