$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XUXy8h-WOPhTfoEPWhLxBURaTyY.roa File: XUXy8h-WOPhTfoEPWhLxBURaTyY.roa (raw, json) Hash identifier: MfQRAl6pjh3ohUr0SM8LpfnXd6FQX6F2/jVnhng/ngM= Subject key identifier: 5D:45:F2:F2:1F:96:38:F8:53:7E:81:0F:5A:12:F1:05:44:5A:4F:26 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14B0 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XUXy8h-WOPhTfoEPWhLxBURaTyY.roa Signing time: Fri 22 Aug 2025 08:54:41 +0000 ROA not before: Fri 22 Aug 2025 08:54:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 219.86.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5296 (0x14b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5D45F2F21F9638F8537E810F5A12F105445A4F26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:90:f0:d6:75:c8:9a:64:94:b8:24:02:35:0b: 98:5c:94:19:27:76:e4:7e:75:be:15:62:be:62:a9: f2:4b:6a:cb:6e:42:a2:96:58:2a:51:5b:6f:81:18: 4d:31:2e:3f:b7:72:1d:fe:b0:9e:5a:0d:c0:d7:d9: e7:5d:b7:02:9b:21:7d:fb:7a:ae:11:30:b0:fa:b8: 0b:d3:44:99:50:e2:b4:c7:6e:84:07:b3:12:c0:63: f2:f1:8e:4e:73:75:99:bf:65:31:03:11:9e:8e:01: 62:c4:0c:a6:d1:1d:a3:db:29:51:a2:17:70:27:47: c1:9e:5c:76:fa:d9:4f:e3:d2:3e:ed:69:3d:56:f5: c3:b4:db:03:09:47:e3:95:3e:eb:ac:75:87:9a:66: d8:2a:70:9d:67:23:16:40:ed:b6:ba:ed:27:86:5c: 9d:ed:f1:5f:20:ba:63:28:30:5f:a9:47:c9:90:63: d7:c9:25:9e:e4:3e:8d:2c:e1:94:5c:75:b4:cd:f1: e1:10:a5:0c:0e:73:c2:d3:99:1a:8c:c0:ac:ef:1e: 8f:5e:f9:30:10:79:b7:7c:90:7b:dc:5a:81:25:1a: 29:bb:96:3e:a8:3d:15:03:46:2d:2b:f2:ec:fe:4d: 2a:4e:9d:0b:5f:be:70:3d:9f:c4:8e:0f:d9:23:b6: a1:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:45:F2:F2:1F:96:38:F8:53:7E:81:0F:5A:12:F1:05:44:5A:4F:26 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XUXy8h-WOPhTfoEPWhLxBURaTyY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.86.0.0/15 Signature Algorithm: sha256WithRSAEncryption 31:60:ea:12:12:09:0e:5e:25:34:3e:87:2e:72:5f:0b:27:3e: fc:dd:37:f1:71:b7:9e:64:97:c6:f8:20:5b:dd:af:ff:61:7f: 91:d9:05:7b:7c:43:f5:ce:01:37:ce:e6:59:44:4e:1c:08:88: 5a:0f:78:b5:4e:12:ee:aa:69:9e:10:36:5b:04:53:00:c4:ee: 91:69:5e:f0:e9:e3:03:f1:df:67:f6:37:0b:59:ba:03:dd:c4: 6f:89:f1:17:ea:82:a4:24:bc:af:02:06:68:30:9a:eb:15:8a: be:41:9d:8c:98:13:88:8e:36:a9:a5:76:15:f9:65:75:d9:c4: 38:8f:6d:e9:d8:5a:2c:cf:eb:54:01:71:bd:dd:40:4b:e4:e7: df:d7:1b:58:15:c2:54:e8:e5:b3:67:64:cd:c9:b3:fe:ef:0f: e4:5a:cd:a3:2d:64:c6:8a:fa:b7:87:ed:07:9f:01:91:81:9c: 1b:9a:2e:76:18:90:cb:f3:02:1f:08:f1:95:f6:ec:19:cc:98: 58:10:5a:27:f4:0c:4b:de:af:17:d7:38:c9:85:d8:19:ee:ed: 2a:58:66:b2:b2:16:45:6b:0b:2d:5c:24:ee:0c:72:24:9a:a3: d5:8c:30:6f:f0:f1:ed:f2:b8:df:41:66:e3:c0:f2:0f:52:60: a5:76:e7:67 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICFLAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVENDVGMkYyMUY5NjM4 Rjg1MzdFODEwRjVBMTJGMTA1NDQ1QTRGMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlkPDWdciaZJS4JAI1C5hclBknduR+db4VYr5iqfJLastuQqKW WCpRW2+BGE0xLj+3ch3+sJ5aDcDX2eddtwKbIX37eq4RMLD6uAvTRJlQ4rTHboQH sxLAY/Lxjk5zdZm/ZTEDEZ6OAWLEDKbRHaPbKVGiF3AnR8GeXHb62U/j0j7taT1W 9cO02wMJR+OVPuusdYeaZtgqcJ1nIxZA7ba67SeGXJ3t8V8gumMoMF+pR8mQY9fJ JZ7kPo0s4ZRcdbTN8eEQpQwOc8LTmRqMwKzvHo9e+TAQebd8kHvcWoElGim7lj6o PRUDRi0r8uz+TSpOnQtfvnA9n8SOD9kjtqHfAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUXUXy8h+WOPhTfoEPWhLxBURaTyYwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWFVYeThoLVdPUGhUZm9F UFdoTHhCVVJhVHlZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AdtWMA0GCSqGSIb3DQEBCwUAA4IBAQAxYOoSEgkOXiU0Pocucl8LJz783Tfxcbee ZJfG+CBb3a//YX+R2QV7fEP1zgE3zuZZRE4cCIhaD3i1ThLuqmmeEDZbBFMAxO6R aV7w6eMD8d9n9jcLWboD3cRvifEX6oKkJLyvAgZoMJrrFYq+QZ2MmBOIjjappXYV +WV12cQ4j23p2Fosz+tUAXG93UBL5Off1xtYFcJU6OWzZ2TNybP+7w/kWs2jLWTG ivq3h+0HnwGRgZwbmi52GJDL8wIfCPGV9uwZzJhYEFon9AxL3q8X1zjJhdgZ7u0q WGayshZFawstXCTuDHIkmqPVjDBv8PHt8rjfQWbjwPIPUmCldudn -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:48 2025 by rpki-client