$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XBgUwCkjiXa_TUWOOubMRZiZNec.roa File: XBgUwCkjiXa_TUWOOubMRZiZNec.roa (raw, json) Hash identifier: 4eOhVagql1DKGfDghaduHr6Q789LKLfSf+sBaueDAvE= Subject key identifier: 5C:18:14:C0:29:23:89:76:BF:4D:45:8E:3A:E6:CC:45:98:99:35:E7 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14D5 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XBgUwCkjiXa_TUWOOubMRZiZNec.roa Signing time: Fri 22 Aug 2025 08:54:50 +0000 ROA not before: Fri 22 Aug 2025 08:54:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24158 IP address blocks: 49.216.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5333 (0x14d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5C1814C029238976BF4D458E3AE6CC45989935E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:63:f3:32:66:c9:e3:2a:af:15:e4:6e:a9:4b: b9:b8:88:09:64:8b:bd:01:7a:36:a8:43:05:e9:4b: a5:5d:84:e7:b2:8c:80:62:a8:e4:20:88:72:d3:03: 77:59:00:fd:ab:82:ae:d1:b1:9d:54:86:79:43:cc: 5e:f9:5c:36:5c:d6:f0:1c:49:bf:69:f1:86:c0:3e: 5c:52:28:ca:ea:17:cc:6f:29:9e:e3:f1:24:4b:89: 6f:b7:2d:89:f8:c9:d2:1c:42:eb:88:fe:be:c1:0f: 67:5c:7c:92:d6:b6:83:b0:62:75:cd:f4:50:ad:c9: e7:29:ae:f8:9e:39:13:58:dd:cd:fb:c9:b4:64:a0: a1:37:e3:3b:f2:d1:fd:d7:de:57:2e:70:56:30:d8: 3b:b8:3f:d8:8c:6f:7d:3f:94:43:e4:98:19:9c:0e: 56:ea:90:6e:52:40:61:1b:5b:66:72:f9:51:4e:f2: 9c:4a:d4:f1:80:77:04:58:45:94:04:90:97:b8:36: 5c:d5:30:11:4e:2a:88:c1:5c:3b:41:f8:31:90:ca: 7c:d2:34:19:e9:04:1d:b6:02:01:45:fe:b6:db:a4: 33:d4:e2:f7:a1:94:2d:61:b6:d3:ac:dd:0b:25:e1: 2f:7c:10:88:8b:84:b2:50:95:2b:52:81:c7:0e:9c: 8a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:18:14:C0:29:23:89:76:BF:4D:45:8E:3A:E6:CC:45:98:99:35:E7 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XBgUwCkjiXa_TUWOOubMRZiZNec.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.216.0.0/14 Signature Algorithm: sha256WithRSAEncryption 79:7f:bb:6f:7b:cd:26:df:0e:72:d8:65:7e:a0:b1:bf:cd:32: cf:b6:9c:bf:31:3f:b0:bc:53:a7:4c:85:b8:04:69:55:9a:63: 73:80:3f:ce:f7:5e:bc:6f:c4:5c:11:c4:80:2a:13:8c:63:8f: f4:30:27:7f:48:02:97:5e:49:6c:e5:75:33:0e:08:0e:f6:d6: 0e:90:7b:d8:7e:b3:a7:8c:74:3f:26:ee:15:99:c2:07:84:31: d5:61:b1:73:ca:9a:f0:20:e3:6e:54:1f:dd:8b:e5:3d:30:e9: 7c:18:85:74:de:31:13:68:6a:b6:d1:1c:90:44:d0:45:5a:a6: df:d4:34:a4:68:3b:a7:8c:83:21:58:47:ee:31:78:76:d0:27: bd:a8:ed:c0:df:0c:4c:f9:1a:89:fe:51:bb:2c:22:61:53:11: e6:46:aa:ea:d9:0b:7b:97:65:30:dd:55:df:78:e4:f9:a2:05: 54:c2:1f:76:73:0d:a0:1e:63:78:12:28:d3:8a:75:d8:3a:28: 6d:dd:a5:05:4e:99:da:56:37:aa:d5:84:a1:0f:a5:ef:ac:d0: 7c:19:a1:f4:a5:25:7a:17:be:5c:3c:3e:9f:bc:b6:51:bd:35: 54:b0:23:04:b0:e2:d8:3b:57:82:79:ef:6e:23:ba:e5:32:0e: 9b:fb:77:dd -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICFNUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVDMTgxNEMwMjkyMzg5 NzZCRjRENDU4RTNBRTZDQzQ1OTg5OTM1RTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrY/MyZsnjKq8V5G6pS7m4iAlki70BejaoQwXpS6VdhOeyjIBi qOQgiHLTA3dZAP2rgq7RsZ1UhnlDzF75XDZc1vAcSb9p8YbAPlxSKMrqF8xvKZ7j 8SRLiW+3LYn4ydIcQuuI/r7BD2dcfJLWtoOwYnXN9FCtyecprvieORNY3c37ybRk oKE34zvy0f3X3lcucFYw2Du4P9iMb30/lEPkmBmcDlbqkG5SQGEbW2Zy+VFO8pxK 1PGAdwRYRZQEkJe4NlzVMBFOKojBXDtB+DGQynzSNBnpBB22AgFF/rbbpDPU4veh lC1httOs3Qsl4S98EIiLhLJQlStSgccOnIpzAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUXBgUwCkjiXa/TUWOOubMRZiZNecwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWEJnVXdDa2ppWGFfVFVX T091Yk1SWmlaTmVjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AjHYMA0GCSqGSIb3DQEBCwUAA4IBAQB5f7tve80m3w5y2GV+oLG/zTLPtpy/MT+w vFOnTIW4BGlVmmNzgD/O9168b8RcEcSAKhOMY4/0MCd/SAKXXkls5XUzDggO9tYO kHvYfrOnjHQ/Ju4VmcIHhDHVYbFzyprwIONuVB/di+U9MOl8GIV03jETaGq20RyQ RNBFWqbf1DSkaDunjIMhWEfuMXh20Ce9qO3A3wxM+RqJ/lG7LCJhUxHmRqrq2Qt7 l2Uw3VXfeOT5ogVUwh92cw2gHmN4EijTinXYOiht3aUFTpnaVjeq1YShD6XvrNB8 GaH0pSV6F75cPD6fvLZRvTVUsCMEsOLYO1eCee9uI7rlMg6b+3fd -----END CERTIFICATE-----Generated at Sun Aug 24 08:54:15 2025 by rpki-client