$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Rwx44dgfY31KFY5RZJpPiOLXQ5c.roa File: Rwx44dgfY31KFY5RZJpPiOLXQ5c.roa (raw, json) Hash identifier: +5HrR2ipcUUh8j/7Z4m0MP7DKnkaKhwRkHSFJaPvf9c= Subject key identifier: 47:0C:78:E1:D8:1F:63:7D:4A:15:8E:51:64:9A:4F:88:E2:D7:43:97 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14CF Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Rwx44dgfY31KFY5RZJpPiOLXQ5c.roa Signing time: Fri 22 Aug 2025 08:54:48 +0000 ROA not before: Fri 22 Aug 2025 08:54:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 124.12.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5327 (0x14cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=470C78E1D81F637D4A158E51649A4F88E2D74397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:17:33:fb:cb:f2:65:73:4a:39:b4:19:ab:52: de:a9:ee:b5:09:63:1e:d7:f6:7b:86:cf:d6:da:af: 15:99:1b:69:4a:9f:67:f3:62:8b:e3:e5:3c:cc:9d: a1:ed:80:70:21:21:f7:70:94:4b:c6:6a:39:b1:4b: b9:11:d6:61:1c:1d:53:68:7c:8b:6c:22:d3:d3:96: a3:68:2a:f8:1d:02:1b:b8:b5:71:1d:51:89:11:17: c8:20:36:07:be:5f:f1:4e:c3:4f:c9:15:22:d1:5c: 7c:3a:f2:99:55:ee:15:f1:c9:e9:ce:f6:5f:d3:40: b2:26:8b:5f:2f:70:48:56:1e:98:0b:d9:34:7d:5b: f6:d8:ed:89:05:34:a6:ed:7a:f3:aa:36:89:36:1a: 60:6f:88:85:87:aa:67:a1:fa:bc:be:7a:e0:61:ed: fe:bb:5f:92:f2:67:e3:4e:9e:ff:0f:6f:4b:92:dc: a9:ed:10:40:27:69:46:67:6d:08:9b:0f:a7:ec:25: 76:39:3f:01:74:a4:40:63:19:bc:70:ad:28:7c:2f: 70:01:a7:24:51:16:e2:04:09:36:f0:bc:16:0e:0c: 21:1a:5f:c0:f6:4f:2c:ff:6c:2c:54:a1:67:e0:48: 69:5e:e7:9b:30:72:a0:85:a9:b3:bd:f2:85:4c:44: 39:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:0C:78:E1:D8:1F:63:7D:4A:15:8E:51:64:9A:4F:88:E2:D7:43:97 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Rwx44dgfY31KFY5RZJpPiOLXQ5c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.12.0.0/16 Signature Algorithm: sha256WithRSAEncryption 00:1e:a7:32:76:94:ba:02:83:4d:f9:ab:ad:bb:3f:ed:6d:24: 48:c6:8d:1d:8a:42:47:f7:6e:0c:a3:a6:f3:df:cf:63:9a:f0: 5a:fd:7e:d6:fe:5e:3f:24:76:df:ec:f0:a5:13:17:40:45:e8: a2:ba:52:1a:14:88:24:99:18:43:6e:56:de:82:98:f8:3f:cb: e7:98:c8:4f:f0:b5:f9:cc:fa:8d:a9:ab:7e:dc:e2:7d:20:91: e5:93:71:b3:33:1d:87:20:75:7c:15:2d:12:d7:ac:79:93:99: 76:1b:c8:1c:2d:3a:7b:3c:34:40:c3:df:46:06:d4:a4:f0:4f: 43:b9:a1:26:2a:37:5a:cb:33:95:4d:34:bb:32:06:55:45:ea: 7f:e4:20:da:be:c8:d5:92:bc:26:c0:ab:08:96:ff:c9:31:22: b3:ef:c2:d9:44:9b:4f:22:21:bc:59:f3:cc:48:80:4a:1b:20: 12:88:35:c6:51:39:36:99:1d:7c:b3:e9:0d:1e:07:df:a0:13: 08:0a:c6:a9:3c:b7:b1:03:5a:06:51:e8:ac:9d:5e:7e:1b:e7: d9:e1:2f:6b:ff:73:3e:9e:6e:a7:7e:dd:04:f3:73:cf:62:5d: 2b:6c:10:a9:b9:42:51:4d:6f:24:49:f4:45:17:db:3b:85:9a: 56:f4:3b:90 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICFM8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ3MEM3OEUxRDgxRjYz N0Q0QTE1OEU1MTY0OUE0Rjg4RTJENzQzOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoFzP7y/Jlc0o5tBmrUt6p7rUJYx7X9nuGz9barxWZG2lKn2fz Yovj5TzMnaHtgHAhIfdwlEvGajmxS7kR1mEcHVNofItsItPTlqNoKvgdAhu4tXEd UYkRF8ggNge+X/FOw0/JFSLRXHw68plV7hXxyenO9l/TQLImi18vcEhWHpgL2TR9 W/bY7YkFNKbtevOqNok2GmBviIWHqmeh+ry+euBh7f67X5LyZ+NOnv8Pb0uS3Knt EEAnaUZnbQibD6fsJXY5PwF0pEBjGbxwrSh8L3ABpyRRFuIECTbwvBYODCEaX8D2 Tyz/bCxUoWfgSGle55swcqCFqbO98oVMRDlpAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQURwx44dgfY31KFY5RZJpPiOLXQ5cwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvUnd4NDRkZ2ZZMzFLRlk1 UlpKcFBpT0xYUTVjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AHwMMA0GCSqGSIb3DQEBCwUAA4IBAQAAHqcydpS6AoNN+autuz/tbSRIxo0dikJH 924Mo6bz389jmvBa/X7W/l4/JHbf7PClExdAReiiulIaFIgkmRhDblbegpj4P8vn mMhP8LX5zPqNqat+3OJ9IJHlk3GzMx2HIHV8FS0S16x5k5l2G8gcLTp7PDRAw99G BtSk8E9DuaEmKjdayzOVTTS7MgZVRep/5CDavsjVkrwmwKsIlv/JMSKz78LZRJtP IiG8WfPMSIBKGyASiDXGUTk2mR18s+kNHgffoBMICsapPLexA1oGUeisnV5+G+fZ 4S9r/3M+nm6nft0E83PPYl0rbBCpuUJRTW8kSfRFF9s7hZpW9DuQ -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:45 2025 by rpki-client