$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YMXU9JTgai8fbmNmohtA2GXJEjI.roa File: YMXU9JTgai8fbmNmohtA2GXJEjI.roa (raw, json) Hash identifier: s8uos2oCAj4K8nKZbXg/D6mQRG7NImLL6pTujR3HufQ= Subject key identifier: 60:C5:D4:F4:94:E0:6A:2F:1F:6E:63:66:A2:1B:40:D8:65:C9:12:32 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14B3 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YMXU9JTgai8fbmNmohtA2GXJEjI.roa Signing time: Fri 22 Aug 2025 08:54:42 +0000 ROA not before: Fri 22 Aug 2025 08:54:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.17.72.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5299 (0x14b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=60C5D4F494E06A2F1F6E6366A21B40D865C91232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:76:42:e6:e0:13:12:5e:3d:48:fa:df:e6:e6: af:14:52:b6:45:11:5e:85:56:b0:9f:9c:39:d6:1e: d0:79:ba:df:39:e6:04:ea:26:7b:a8:ca:11:ee:f0: c7:0f:cd:f8:b6:99:64:96:74:6e:71:49:26:8b:36: 89:fc:56:26:e2:8c:c1:48:fe:df:71:d7:67:6b:b9: f7:49:a5:00:43:2d:8e:42:6b:5c:e1:3e:85:d7:bb: 0a:6b:f9:7f:59:89:c5:95:97:fe:c8:ef:bd:89:9e: 5e:b3:e6:b3:34:5e:bc:17:d8:82:82:7b:b5:a0:ed: 28:99:65:13:a1:c1:00:59:75:e3:7b:3d:64:75:1b: 39:4a:70:b3:09:2c:23:90:18:a6:61:d3:4a:44:d8: 67:bc:5a:69:fb:2b:a2:af:97:59:a1:b6:a3:a5:da: c0:1e:0e:67:3c:4a:12:29:aa:86:5e:0a:87:fc:ae: 6c:ca:0c:b8:f4:f2:c9:e6:31:f2:76:83:f1:e2:fe: f2:3c:0f:f3:b6:20:d3:66:fe:fd:a6:44:42:97:e9: 87:a4:d4:1a:0d:12:3b:28:7a:ae:5d:7b:f1:2f:8f: e5:f7:c5:cc:00:44:cb:55:ea:28:85:8c:a2:7c:5f: 0e:6e:a5:0f:be:76:4a:7e:2f:75:24:2e:68:7f:b8: 86:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C5:D4:F4:94:E0:6A:2F:1F:6E:63:66:A2:1B:40:D8:65:C9:12:32 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YMXU9JTgai8fbmNmohtA2GXJEjI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.72.0/24 Signature Algorithm: sha256WithRSAEncryption 06:2e:7f:9b:ce:2d:3f:64:5c:2e:58:23:a4:b1:8e:a3:09:bb: 84:0a:ca:a7:15:e7:50:7a:e1:b8:00:e8:e0:c1:6f:8b:98:39: 41:1f:cb:9f:48:b3:90:cf:74:4c:c6:cd:9e:e5:bb:7e:a0:2a: 2c:86:db:62:dd:58:66:ec:a7:e9:45:25:a0:4f:b6:70:fa:87: 42:3c:cf:eb:15:fe:89:02:37:50:8c:b7:98:32:83:97:8d:ad: 14:24:a0:ce:57:94:1a:ec:14:90:4c:46:4a:e3:4b:52:91:07: 0b:2e:3b:cd:b2:d7:79:f8:83:2d:41:7d:94:a5:67:d6:ba:63: 55:ea:2d:96:75:c6:c2:de:8a:4e:71:5f:c4:e4:ec:35:f8:ee: d2:0e:6e:10:42:50:87:df:74:0d:cb:13:90:47:17:bd:8a:10: 8b:19:9a:9e:ef:88:54:f0:fd:5a:5f:53:87:a6:c0:e4:cf:53: ee:38:41:8d:ea:20:7d:6d:85:fd:f3:7c:8f:82:58:f9:38:9b: 84:03:7f:ce:1a:27:97:1a:8a:cf:15:f2:5b:32:b2:e2:36:4e: 42:68:58:da:fe:35:d9:7d:42:a6:68:8c:aa:60:b7:d2:1e:3d: 62:4e:91:63:2a:84:36:ab:b9:ac:c9:70:ce:6f:38:1b:f1:3e: 3c:19:ab:e5 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFLMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYwQzVENEY0OTRFMDZB MkYxRjZFNjM2NkEyMUI0MEQ4NjVDOTEyMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCidkLm4BMSXj1I+t/m5q8UUrZFEV6FVrCfnDnWHtB5ut855gTq JnuoyhHu8McPzfi2mWSWdG5xSSaLNon8VibijMFI/t9x12drufdJpQBDLY5Ca1zh PoXXuwpr+X9ZicWVl/7I772Jnl6z5rM0XrwX2IKCe7Wg7SiZZROhwQBZdeN7PWR1 GzlKcLMJLCOQGKZh00pE2Ge8Wmn7K6Kvl1mhtqOl2sAeDmc8ShIpqoZeCof8rmzK DLj08snmMfJ2g/Hi/vI8D/O2INNm/v2mREKX6Yek1BoNEjsoeq5de/Evj+X3xcwA RMtV6iiFjKJ8Xw5upQ++dkp+L3UkLmh/uIYBAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUYMXU9JTgai8fbmNmohtA2GXJEjIwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWU1YVTlKVGdhaThmYm1O bW9odEEyR1hKRWpJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ANIRSDANBgkqhkiG9w0BAQsFAAOCAQEABi5/m84tP2RcLlgjpLGOowm7hArKpxXn UHrhuADo4MFvi5g5QR/Ln0izkM90TMbNnuW7fqAqLIbbYt1YZuyn6UUloE+2cPqH QjzP6xX+iQI3UIy3mDKDl42tFCSgzleUGuwUkExGSuNLUpEHCy47zbLXefiDLUF9 lKVn1rpjVeotlnXGwt6KTnFfxOTsNfju0g5uEEJQh990DcsTkEcXvYoQixmanu+I VPD9Wl9Th6bA5M9T7jhBjeogfW2F/fN8j4JY+TibhAN/zhonlxqKzxXyWzKy4jZO QmhY2v412X1CpmiMqmC30h49Yk6RYyqENqu5rMlwzm84G/E+PBmr5Q== -----END CERTIFICATE-----Generated at Sun Aug 24 08:53:56 2025 by rpki-client