$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UvCMM0fGL7FIrnzJSH6bsmVgLkQ.roa File: UvCMM0fGL7FIrnzJSH6bsmVgLkQ.roa (raw, json) Hash identifier: hzjp/PVR8lW3uv1n6ZK6BSYzrZrVPBW4UMNC0th2cu8= Subject key identifier: 52:F0:8C:33:47:C6:2F:B1:48:AE:7C:C9:48:7E:9B:B2:65:60:2E:44 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1475 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UvCMM0fGL7FIrnzJSH6bsmVgLkQ.roa Signing time: Fri 22 Aug 2025 08:54:27 +0000 ROA not before: Fri 22 Aug 2025 08:54:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.17.112.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5237 (0x1475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=52F08C3347C62FB148AE7CC9487E9BB265602E44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6a:2d:76:54:2b:e2:e8:e8:ef:d4:8c:ea:00: a6:3b:79:c8:2a:70:4d:e6:03:a5:9b:68:ef:79:0e: 00:86:59:fe:9c:b7:b0:ed:89:2a:ea:3c:74:0c:0f: 0f:c0:1d:22:90:45:be:9f:4b:50:5c:25:60:d0:02: 4e:de:58:f1:f5:b3:70:7b:fc:62:2e:71:1f:9c:8d: 94:68:56:cc:4b:6e:3a:4b:b0:34:67:45:2d:f8:dc: a6:36:8e:6e:da:9a:11:af:e5:7f:1f:c6:ab:8f:31: ed:6b:11:6d:27:03:03:ca:26:bc:ce:03:36:05:31: a4:36:ab:c4:67:43:fb:88:8b:f6:b1:f8:35:30:53: dc:15:74:0c:81:e8:fa:77:87:9b:c9:93:07:cf:db: 9b:c2:cd:f5:cc:61:90:a6:80:bb:dc:86:64:3a:22: 4a:17:f4:69:4c:7a:f2:3e:a7:cc:98:89:af:a6:d9: 1e:ff:52:de:8f:0d:42:92:04:4b:38:24:8c:e3:db: 57:47:f1:d9:85:d1:69:f3:31:3f:7e:69:8f:09:07: cb:be:db:b0:ca:b1:87:77:c0:e7:9f:fd:3b:01:b5: 24:10:11:5d:39:9f:7a:9a:b7:2a:ce:5e:26:33:ef: 7c:d5:3c:fd:40:c5:9e:2c:57:2a:24:37:d4:a2:cf: 3c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F0:8C:33:47:C6:2F:B1:48:AE:7C:C9:48:7E:9B:B2:65:60:2E:44 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UvCMM0fGL7FIrnzJSH6bsmVgLkQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.112.0/20 Signature Algorithm: sha256WithRSAEncryption 5b:40:8a:f3:59:d8:fd:ab:d2:f4:67:e2:a0:41:48:90:fd:55: 25:45:a7:f6:87:3a:07:91:33:2e:f9:b9:9a:2e:e8:3d:df:04: 57:cf:3e:c6:95:81:e8:f5:84:92:c5:8b:02:c0:96:2b:c2:17: 16:ea:9d:47:9a:13:38:79:1d:9f:b3:ea:0a:84:f4:91:06:99: 40:93:3a:16:6c:91:42:89:58:a8:56:f8:f6:3d:8e:cd:b3:1f: 2b:31:b9:1e:71:2b:8e:63:b9:f7:fd:f1:46:ef:e6:6a:b0:29: fd:1b:2e:ea:cf:54:3d:27:7e:f4:fe:5a:5d:53:e8:aa:67:93: e2:dc:df:58:87:4a:d6:f4:70:b5:6c:f0:77:0c:c0:59:b1:f8: 7d:55:34:ee:bd:a1:70:e9:a4:d2:91:a7:8a:f8:df:7a:ae:1f: 3c:2f:4b:cc:a2:b6:25:b8:69:20:66:16:3c:60:59:7b:3c:a1: 1b:1e:4b:d7:d3:b8:e7:d6:0e:dc:72:56:1a:39:6d:fb:e2:d3: 5b:85:fb:85:0e:fc:bc:b1:b8:3b:e4:db:76:bc:36:f6:c9:8c: 87:99:4b:71:37:db:ed:59:d1:ae:c5:4f:26:7b:a2:2e:83:69: a5:47:62:05:c3:e8:cb:6a:32:8e:2e:bd:44:e2:5f:0d:b6:89: 68:ac:7f:66 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFHUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUyRjA4QzMzNDdDNjJG QjE0OEFFN0NDOTQ4N0U5QkIyNjU2MDJFNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxai12VCvi6Ojv1IzqAKY7ecgqcE3mA6WbaO95DgCGWf6ct7Dt iSrqPHQMDw/AHSKQRb6fS1BcJWDQAk7eWPH1s3B7/GIucR+cjZRoVsxLbjpLsDRn RS343KY2jm7amhGv5X8fxquPMe1rEW0nAwPKJrzOAzYFMaQ2q8RnQ/uIi/ax+DUw U9wVdAyB6Pp3h5vJkwfP25vCzfXMYZCmgLvchmQ6IkoX9GlMevI+p8yYia+m2R7/ Ut6PDUKSBEs4JIzj21dH8dmF0WnzMT9+aY8JB8u+27DKsYd3wOef/TsBtSQQEV05 n3qatyrOXiYz73zVPP1AxZ4sVyokN9SizzznAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUUvCMM0fGL7FIrnzJSH6bsmVgLkQwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvVXZDTU0wZkdMN0ZJcm56 SlNINmJzbVZnTGtRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNIRcDANBgkqhkiG9w0BAQsFAAOCAQEAW0CK81nY/avS9GfioEFIkP1VJUWn9oc6 B5EzLvm5mi7oPd8EV88+xpWB6PWEksWLAsCWK8IXFuqdR5oTOHkdn7PqCoT0kQaZ QJM6FmyRQolYqFb49j2OzbMfKzG5HnErjmO59/3xRu/marAp/Rsu6s9UPSd+9P5a XVPoqmeT4tzfWIdK1vRwtWzwdwzAWbH4fVU07r2hcOmk0pGnivjfeq4fPC9LzKK2 JbhpIGYWPGBZezyhGx5L19O459YO3HJWGjlt++LTW4X7hQ78vLG4O+Tbdrw29smM h5lLcTfb7VnRrsVPJnuiLoNppUdiBcPoy2oyji69ROJfDbaJaKx/Zg== -----END CERTIFICATE-----Generated at Sun Aug 24 08:54:14 2025 by rpki-client