$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Uo_XCDLGeBh0ZzFz-UzEf6WYKQk.roa File: Uo_XCDLGeBh0ZzFz-UzEf6WYKQk.roa (raw, json) Hash identifier: zSAnf7y8JV+3rIZouuFV4aU32LGn6yRkbEkizg71UAI= Subject key identifier: 52:8F:D7:08:32:C6:78:18:74:67:31:73:F9:4C:C4:7F:A5:98:29:09 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1498 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Uo_XCDLGeBh0ZzFz-UzEf6WYKQk.roa Signing time: Fri 22 Aug 2025 08:54:36 +0000 ROA not before: Fri 22 Aug 2025 08:54:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 60.199.147.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5272 (0x1498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=528FD70832C6781874673173F94CC47FA5982909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0b:cf:5d:6c:6c:95:4c:0c:bc:4a:14:9f:47: 65:28:ad:e8:c1:32:2e:3e:73:7d:c8:da:6f:41:d5: 17:2b:2b:5e:82:9a:11:f0:12:3e:ef:d5:38:6c:a5: 6d:0c:c7:c7:b9:5c:79:ce:9a:99:fc:0f:bc:fe:d8: 44:fb:f7:5f:c3:8c:d6:a2:cf:9a:11:8b:20:0b:f2: b2:60:7f:5a:4f:9f:c3:e2:cf:c0:6b:82:0d:09:76: ef:6d:59:0b:9d:1e:ce:11:ce:6f:eb:88:89:a7:8b: 70:b2:e6:67:e3:58:b1:3f:75:44:08:2d:29:14:5e: c2:44:18:e6:91:aa:90:9e:35:65:d8:ac:83:be:e3: fe:76:06:b6:bc:6d:3f:00:77:3a:d2:1b:43:03:cd: 73:ae:5e:34:74:e3:ad:77:a2:11:e2:cd:0c:a0:31: d3:6d:ef:07:dd:c1:3f:ad:30:e9:5c:be:37:aa:a8: 51:b4:04:ba:78:3e:c5:d6:e3:8a:02:e5:48:e4:a4: 5c:9e:69:a5:55:34:7e:76:c3:4b:60:fc:96:e6:c7: 8b:18:ad:1b:f3:cd:7e:df:6d:33:0b:7c:24:4e:12: fc:47:d4:62:c5:bc:8e:4d:ae:32:49:2a:58:79:f1: b4:c5:b5:b7:78:ff:5b:b0:88:f5:bb:cf:29:fa:cf: 6e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:8F:D7:08:32:C6:78:18:74:67:31:73:F9:4C:C4:7F:A5:98:29:09 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Uo_XCDLGeBh0ZzFz-UzEf6WYKQk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.147.0/24 Signature Algorithm: sha256WithRSAEncryption 84:1d:0f:44:b1:49:da:a6:9d:aa:cf:8c:e3:1c:3f:46:ca:b2: 3b:5b:5a:b8:87:90:9c:b7:1a:5e:ac:72:95:6d:2e:ce:25:e6: 2a:c3:1e:1c:fb:27:15:8c:4f:6f:c3:49:3f:b7:70:3d:5a:c5: 85:71:f1:a6:8d:2f:7e:73:65:e8:c6:de:04:3e:dd:76:44:82: 9e:58:e2:3d:8d:66:dd:84:4b:0f:52:d0:2a:2b:4e:b1:7c:cc: 20:5e:48:99:fb:7a:ac:0e:98:ff:28:33:d0:ad:a7:33:9d:ee: 94:4c:da:a3:e4:cc:6c:94:ae:07:c0:40:d3:63:28:73:9b:4f: 56:8a:18:19:19:99:c6:a1:9b:98:5a:96:32:b9:2a:10:a8:4f: 6d:a2:38:b1:87:6c:16:fc:7c:c7:a3:35:d4:02:2d:8b:b5:cf: 2c:1e:d0:88:d8:bd:bf:8f:3f:c3:9c:c8:f8:0d:5b:96:90:b1: 47:d4:c7:db:9f:27:e8:b1:3c:be:94:6b:2b:65:64:7f:d0:0a: 6f:2f:50:4e:73:9f:71:4f:6b:03:ec:ed:e2:1e:7d:ca:7f:a0: c7:2e:20:85:32:6c:4d:56:26:33:09:a3:fd:ad:de:0c:cb:1c: b7:26:23:87:b9:47:bd:73:f0:64:7b:79:fc:c0:dd:c3:03:1d: 71:b6:e7:99 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFJgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUyOEZENzA4MzJDNjc4 MTg3NDY3MzE3M0Y5NENDNDdGQTU5ODI5MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5C89dbGyVTAy8ShSfR2UorejBMi4+c33I2m9B1RcrK16CmhHw Ej7v1ThspW0Mx8e5XHnOmpn8D7z+2ET791/DjNaiz5oRiyAL8rJgf1pPn8Piz8Br gg0Jdu9tWQudHs4Rzm/riImni3Cy5mfjWLE/dUQILSkUXsJEGOaRqpCeNWXYrIO+ 4/52Bra8bT8AdzrSG0MDzXOuXjR04613ohHizQygMdNt7wfdwT+tMOlcvjeqqFG0 BLp4PsXW44oC5UjkpFyeaaVVNH52w0tg/Jbmx4sYrRvzzX7fbTMLfCROEvxH1GLF vI5NrjJJKlh58bTFtbd4/1uwiPW7zyn6z26HAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUUo/XCDLGeBh0ZzFz+UzEf6WYKQkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvVW9fWENETEdlQmgwWnpG ei1VekVmNldZS1FrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHkzANBgkqhkiG9w0BAQsFAAOCAQEAhB0PRLFJ2qadqs+M4xw/RsqyO1tauIeQ nLcaXqxylW0uziXmKsMeHPsnFYxPb8NJP7dwPVrFhXHxpo0vfnNl6MbeBD7ddkSC nljiPY1m3YRLD1LQKitOsXzMIF5Imft6rA6Y/ygz0K2nM53ulEzao+TMbJSuB8BA 02Moc5tPVooYGRmZxqGbmFqWMrkqEKhPbaI4sYdsFvx8x6M11AIti7XPLB7QiNi9 v48/w5zI+A1blpCxR9TH258n6LE8vpRrK2Vkf9AKby9QTnOfcU9rA+zt4h59yn+g xy4ghTJsTVYmMwmj/a3eDMsctyYjh7lHvXPwZHt5/MDdwwMdcbbnmQ== -----END CERTIFICATE-----Generated at Sun Aug 24 06:48:55 2025 by rpki-client