$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/RoSEWUEU3xBWaC4wFF7etNvTdjo.roa File: RoSEWUEU3xBWaC4wFF7etNvTdjo.roa (raw, json) Hash identifier: V413auhsyTE/EmbXR5BDBkKLWqVwDB46NW3357EtWMQ= Subject key identifier: 46:84:84:59:41:14:DF:10:56:68:2E:30:14:5E:DE:B4:DB:D3:76:3A Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14CC Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/RoSEWUEU3xBWaC4wFF7etNvTdjo.roa Signing time: Fri 22 Aug 2025 08:54:48 +0000 ROA not before: Fri 22 Aug 2025 08:54:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131634 IP address blocks: 124.108.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5324 (0x14cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=468484594114DF1056682E30145EDEB4DBD3763A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:57:7b:2d:d4:57:f5:b7:c9:b5:b9:27:c0:4a: e9:74:b3:7e:5d:78:9f:a1:8d:9a:df:6e:c3:b0:1a: 8b:c7:23:dd:de:62:9d:8b:9c:ed:be:db:df:4a:35: 64:4e:87:9c:0d:62:3a:2f:b8:6e:3a:ec:e9:fa:db: 84:3a:b3:c2:62:84:86:4c:d0:e9:72:e2:b5:71:3e: 66:dd:77:be:6b:e5:a0:99:46:95:36:19:3d:90:d0: 9c:cf:11:05:d3:1f:65:58:78:3b:83:e1:c4:f9:b7: b9:e8:d1:d7:2e:06:de:d0:c9:d5:46:dd:b5:3b:75: fc:65:1c:8e:25:04:48:92:e0:e0:ea:21:bf:7e:68: 91:71:8f:1c:87:1f:ff:e9:8e:49:0b:88:b9:6a:61: 2c:61:86:a4:61:ae:f1:3e:9d:76:f2:00:38:7d:90: 4a:84:12:73:d3:fc:e4:ed:68:32:36:b8:9c:89:62: 06:a3:0e:56:7f:6b:78:d7:f3:b9:c0:d9:28:b2:ac: e5:78:8d:df:2b:07:f3:92:77:93:44:5a:39:22:68: af:a6:8c:69:a4:57:e8:b7:ce:32:f1:ad:c5:90:39: fe:81:ed:57:63:56:a4:a8:1a:36:7d:1e:ff:25:70: be:a7:90:95:a4:13:c4:2f:62:c1:c8:8f:0f:9a:88: 21:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:84:84:59:41:14:DF:10:56:68:2E:30:14:5E:DE:B4:DB:D3:76:3A X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/RoSEWUEU3xBWaC4wFF7etNvTdjo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.108.152.0/21 Signature Algorithm: sha256WithRSAEncryption 3d:c3:f4:fc:d4:e0:8b:90:67:70:d5:94:c5:71:ab:b8:42:30: 6e:b8:03:bf:6b:c1:06:50:da:0c:53:e2:48:1c:ce:11:1f:f6: 74:64:65:58:52:d2:a2:72:c9:7b:25:fc:3d:9e:d0:96:fa:45: cb:37:38:39:14:37:f4:19:bb:56:62:87:6d:4e:13:c1:a5:c8: 5c:87:fd:10:87:9d:6a:c8:86:f1:93:0e:9c:b9:ac:f8:f6:be: 44:83:56:98:c4:9e:47:9b:36:be:61:f7:69:bf:11:6e:d5:ed: 1b:49:ed:31:f8:3b:c8:9a:e5:b1:10:bf:7e:4f:9e:0f:ca:80: 8c:0d:90:a7:9b:3b:ae:e4:65:7e:55:73:8a:4e:28:fb:c3:15: a1:72:bd:6d:69:2b:f2:4a:91:a3:0a:b0:49:b2:64:60:1b:bd: c2:a1:30:5c:51:b9:65:4f:2f:c0:4e:d6:14:48:b3:9b:d5:54: 3a:9e:1e:a1:dd:4f:e4:fe:93:f3:27:df:ff:2e:d6:51:45:e9: 6a:66:47:0b:30:70:61:cd:db:dc:fd:13:43:f8:62:68:8d:4b: 74:27:ee:32:d5:f1:3f:83:c9:f6:26:28:6c:5f:4d:7e:42:d4: 22:7a:96:7b:74:33:e4:72:02:e1:3d:42:fe:e1:fd:a4:24:89: 90:58:3f:2a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFMwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ2ODQ4NDU5NDExNERG MTA1NjY4MkUzMDE0NUVERUI0REJEMzc2M0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBV3st1Ff1t8m1uSfASul0s35deJ+hjZrfbsOwGovHI93eYp2L nO2+299KNWROh5wNYjovuG467On624Q6s8JihIZM0Oly4rVxPmbdd75r5aCZRpU2 GT2Q0JzPEQXTH2VYeDuD4cT5t7no0dcuBt7QydVG3bU7dfxlHI4lBEiS4ODqIb9+ aJFxjxyHH//pjkkLiLlqYSxhhqRhrvE+nXbyADh9kEqEEnPT/OTtaDI2uJyJYgaj DlZ/a3jX87nA2SiyrOV4jd8rB/OSd5NEWjkiaK+mjGmkV+i3zjLxrcWQOf6B7Vdj VqSoGjZ9Hv8lcL6nkJWkE8QvYsHIjw+aiCF5AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQURoSEWUEU3xBWaC4wFF7etNvTdjowHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvUm9TRVdVRVUzeEJXYUM0 d0ZGN2V0TnZUZGpvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME A3xsmDANBgkqhkiG9w0BAQsFAAOCAQEAPcP0/NTgi5BncNWUxXGruEIwbrgDv2vB BlDaDFPiSBzOER/2dGRlWFLSonLJeyX8PZ7QlvpFyzc4ORQ39Bm7VmKHbU4TwaXI XIf9EIedasiG8ZMOnLms+Pa+RINWmMSeR5s2vmH3ab8RbtXtG0ntMfg7yJrlsRC/ fk+eD8qAjA2Qp5s7ruRlflVzik4o+8MVoXK9bWkr8kqRowqwSbJkYBu9wqEwXFG5 ZU8vwE7WFEizm9VUOp4eod1P5P6T8yff/y7WUUXpamZHCzBwYc3b3P0TQ/hiaI1L dCfuMtXxP4PJ9iYobF9NfkLUInqWe3Qz5HIC4T1C/uH9pCSJkFg/Kg== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:26 2025 by rpki-client