$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Y8itgoVlpo-Y9Yhwxdwx5hbfk-g.roa File: Y8itgoVlpo-Y9Yhwxdwx5hbfk-g.roa (raw, json) Hash identifier: VbcyZ/1ttNjFYI14rgfAcRpweV+FludIvdzl++a5HEo= Subject key identifier: 63:C8:AD:82:85:65:A6:8F:98:F5:88:70:C5:DC:31:E6:16:DF:93:E8 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14DE Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Y8itgoVlpo-Y9Yhwxdwx5hbfk-g.roa Signing time: Fri 22 Aug 2025 08:54:52 +0000 ROA not before: Fri 22 Aug 2025 08:54:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.67.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5342 (0x14de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=63C8AD828565A68F98F58870C5DC31E616DF93E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:80:cc:40:84:ff:27:f2:19:94:8b:a9:6b:85: 97:db:c4:1b:3f:0f:d1:b1:f2:1d:1b:c1:09:da:1b: 24:13:53:70:94:ec:63:a0:32:ad:e3:e6:4c:9a:cf: d5:40:a2:b3:a1:a3:37:0c:e7:b1:8d:3d:cf:bd:03: ff:24:f1:6c:c2:98:e8:e8:42:49:55:70:84:2b:ac: 0f:4a:bf:61:2a:54:13:2b:9e:8d:99:ca:14:40:57: e3:53:27:86:19:cf:d6:1a:b6:26:3f:cf:4d:ab:56: 54:8d:d7:47:aa:27:35:b3:f7:a3:20:9d:74:01:e8: 9f:40:0e:e6:b6:8c:a2:2c:52:44:ea:00:23:b8:16: 6f:6d:81:f5:3d:25:56:6b:ea:e0:0f:14:01:28:13: 6e:da:53:6e:58:26:2f:9c:c0:86:e9:41:81:17:0b: 06:68:4d:c0:d9:4f:7c:d2:2d:d8:ab:3d:83:24:6d: cc:3e:8b:bb:99:c0:26:98:b2:74:95:1c:e9:d5:cd: 6b:ac:78:2e:70:c9:fc:15:aa:4b:9f:7c:41:55:6c: e6:a4:06:59:dd:90:c2:cc:aa:6f:1e:2c:63:89:a2: ee:2c:1f:b9:af:5f:09:0b:cb:4e:68:24:ed:cc:33: dd:aa:3e:2d:f3:fb:1e:69:9a:6f:fd:b0:cc:b3:b7: 92:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C8:AD:82:85:65:A6:8F:98:F5:88:70:C5:DC:31:E6:16:DF:93:E8 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Y8itgoVlpo-Y9Yhwxdwx5hbfk-g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.160.0/19 Signature Algorithm: sha256WithRSAEncryption 94:31:a1:ca:ed:09:ad:42:b7:6d:cf:34:cc:50:7b:ab:c8:8a: df:3d:dc:28:ea:e0:16:20:0d:94:07:4e:f3:10:f0:1a:81:43: 68:7e:9a:aa:f3:5e:3f:c4:ba:2d:12:38:1e:ef:ea:65:7b:d7: 83:df:ad:13:72:34:9f:b2:89:a5:f4:0f:d9:02:8a:0f:26:d1: e3:93:d1:51:2d:9d:5a:46:1c:70:a2:1b:61:11:86:c0:90:0a: 93:7d:f7:84:98:3f:2f:df:22:11:09:99:65:a5:b1:ef:ad:bc: d4:18:e0:d4:97:06:65:9e:1f:ff:77:af:5d:da:10:60:c4:4c: 16:85:1f:4e:67:96:9e:f5:e3:2b:c1:81:55:25:04:33:2a:ac: be:be:1b:95:3c:f8:b5:af:01:2a:05:73:72:9f:5e:a5:14:17: 9e:44:48:0d:56:5a:7f:7c:33:93:42:50:02:56:76:d6:1c:0c: c4:0c:fb:59:64:0f:67:71:f7:43:74:7e:66:60:0b:17:35:4f: 56:84:cf:c5:d8:5b:53:c0:58:3f:72:0a:59:7c:24:f9:d3:9d: cd:82:4a:ec:d2:9e:48:95:08:06:49:53:38:45:c5:bd:68:dc: 5c:b5:56:02:d8:04:5b:c5:8b:4b:5d:e5:83:91:7f:41:28:13: 9e:83:25:3f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFN4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYzQzhBRDgyODU2NUE2 OEY5OEY1ODg3MEM1REMzMUU2MTZERjkzRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRgMxAhP8n8hmUi6lrhZfbxBs/D9Gx8h0bwQnaGyQTU3CU7GOg Mq3j5kyaz9VAorOhozcM57GNPc+9A/8k8WzCmOjoQklVcIQrrA9Kv2EqVBMrno2Z yhRAV+NTJ4YZz9YatiY/z02rVlSN10eqJzWz96MgnXQB6J9ADua2jKIsUkTqACO4 Fm9tgfU9JVZr6uAPFAEoE27aU25YJi+cwIbpQYEXCwZoTcDZT3zSLdirPYMkbcw+ i7uZwCaYsnSVHOnVzWuseC5wyfwVqkuffEFVbOakBlndkMLMqm8eLGOJou4sH7mv XwkLy05oJO3MM92qPi3z+x5pmm/9sMyzt5J1AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUY8itgoVlpo+Y9Yhwxdwx5hbfk+gwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWThpdGdvVmxwby1ZOVlo d3hkd3g1aGJmay1nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdJDoDANBgkqhkiG9w0BAQsFAAOCAQEAlDGhyu0JrUK3bc80zFB7q8iK3z3cKOrg FiANlAdO8xDwGoFDaH6aqvNeP8S6LRI4Hu/qZXvXg9+tE3I0n7KJpfQP2QKKDybR 45PRUS2dWkYccKIbYRGGwJAKk333hJg/L98iEQmZZaWx76281Bjg1JcGZZ4f/3ev XdoQYMRMFoUfTmeWnvXjK8GBVSUEMyqsvr4blTz4ta8BKgVzcp9epRQXnkRIDVZa f3wzk0JQAlZ21hwMxAz7WWQPZ3H3Q3R+ZmALFzVPVoTPxdhbU8BYP3IKWXwk+dOd zYJK7NKeSJUIBklTOEXFvWjcXLVWAtgEW8WLS13lg5F/QSgTnoMlPw== -----END CERTIFICATE-----Generated at Sun Aug 24 06:52:17 2025 by rpki-client