$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_ORexcVEsjodfw_VAvTFpvaIFao.roa File: _ORexcVEsjodfw_VAvTFpvaIFao.roa (raw, json) Hash identifier: bPzMoxHg/VQrhbG42gJM8hxs+JH8GI65a0lWIsreoZg= Subject key identifier: FC:E4:5E:C5:C5:44:B2:3A:1D:7F:0F:D5:02:F4:C5:A6:F6:88:15:AA Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14AB Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_ORexcVEsjodfw_VAvTFpvaIFao.roa Signing time: Fri 22 Aug 2025 08:54:40 +0000 ROA not before: Fri 22 Aug 2025 08:54:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 135596 IP address blocks: 60.198.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5291 (0x14ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FCE45EC5C544B23A1D7F0FD502F4C5A6F68815AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:87:55:53:a5:bd:5f:aa:a1:ed:3a:8f:2a:ed: 80:29:29:8d:6d:f7:cb:3b:b3:7d:82:25:f4:7e:5e: 3c:93:67:d8:7c:98:20:12:57:64:ec:7b:1e:39:19: 51:f5:69:23:4b:eb:d8:bd:e8:e1:21:f9:31:2a:94: 51:b9:32:53:54:e4:47:aa:7b:03:74:0f:6b:4e:9b: 04:f2:3e:5b:33:1d:2f:a0:11:49:ef:72:24:bd:ba: 9e:51:10:96:44:38:5a:64:cd:31:4a:70:ee:85:4a: 84:9b:6e:02:7d:19:c3:5f:cc:69:d5:a8:a2:44:29: 23:ff:44:61:08:08:cf:10:94:0d:b1:f1:e1:9c:9f: b9:1e:34:15:bc:2b:f8:f2:aa:f1:58:7c:e6:92:0d: 5b:0a:5f:3e:db:92:1b:04:b5:a8:c1:38:1f:07:a5: 36:c5:aa:ea:55:09:79:95:91:4e:25:bc:31:1d:34: dd:57:15:d4:b8:36:c5:03:07:dd:7f:14:06:94:ca: 20:b4:7c:fc:a5:f2:f3:b6:87:f9:1b:c0:0f:1a:db: 7b:61:09:33:04:49:91:44:fb:a5:11:e3:26:fb:4c: 69:89:04:31:1b:57:a1:13:d4:df:5f:2b:d7:6d:46: 16:c7:2b:f2:5a:a9:91:a6:8d:07:22:05:a0:c5:b6: 98:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E4:5E:C5:C5:44:B2:3A:1D:7F:0F:D5:02:F4:C5:A6:F6:88:15:AA X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_ORexcVEsjodfw_VAvTFpvaIFao.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.198.152.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:63:9c:3d:59:8d:c1:d2:85:88:e5:9d:74:f6:32:65:5e:d5: bf:44:a9:6f:54:fe:8d:34:dd:c6:b0:a0:ee:88:cf:22:94:6c: 12:83:6d:a2:87:a9:4e:8b:36:5c:13:3b:90:21:b2:c5:ee:5a: db:8d:ae:fa:f1:5f:ea:dd:42:20:62:87:cb:89:a4:a8:1f:3e: 33:f3:51:c1:86:ff:a5:71:1c:83:0c:af:b5:66:02:5c:41:ce: 91:42:e7:e5:f2:c8:62:f5:7e:89:06:20:42:9b:7e:8e:ba:be: 3f:68:70:ca:c9:3f:67:84:5e:c4:6d:bf:8c:37:02:90:78:ee: 6b:da:49:ba:b1:34:bf:7d:a1:6b:a8:bc:2a:6d:ec:60:37:d3: 85:12:63:2e:46:95:a4:2c:4b:dd:b1:1d:c1:3b:a6:ed:bd:e9: 76:16:27:9e:15:b9:48:e7:f4:8b:35:42:fd:ce:ba:0a:c3:63: 43:0f:15:a0:11:1f:44:d0:df:8d:3b:83:b4:bd:1b:33:0d:7a: 3b:ca:6e:2f:e8:93:7a:78:ec:cf:9d:25:64:98:72:29:bc:b6: c7:25:b6:a2:a4:1b:0e:bb:57:da:e8:7d:65:e1:e2:c4:95:e2: e9:94:20:27:63:07:92:6f:00:7b:db:4b:94:b9:b8:c1:c4:28: 69:45:68:f4 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFKswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZDRTQ1RUM1QzU0NEIy M0ExRDdGMEZENTAyRjRDNUE2RjY4ODE1QUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFh1VTpb1fqqHtOo8q7YApKY1t98s7s32CJfR+XjyTZ9h8mCAS V2Tsex45GVH1aSNL69i96OEh+TEqlFG5MlNU5EeqewN0D2tOmwTyPlszHS+gEUnv ciS9up5REJZEOFpkzTFKcO6FSoSbbgJ9GcNfzGnVqKJEKSP/RGEICM8QlA2x8eGc n7keNBW8K/jyqvFYfOaSDVsKXz7bkhsEtajBOB8HpTbFqupVCXmVkU4lvDEdNN1X FdS4NsUDB91/FAaUyiC0fPyl8vO2h/kbwA8a23thCTMESZFE+6UR4yb7TGmJBDEb V6ET1N9fK9dtRhbHK/JaqZGmjQciBaDFtph3AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU/ORexcVEsjodfw/VAvTFpvaIFaowHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvX09SZXhjVkVzam9kZndf VkF2VEZwdmFJRmFvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzGmDANBgkqhkiG9w0BAQsFAAOCAQEAPGOcPVmNwdKFiOWddPYyZV7Vv0Spb1T+ jTTdxrCg7ojPIpRsEoNtooepTos2XBM7kCGyxe5a242u+vFf6t1CIGKHy4mkqB8+ M/NRwYb/pXEcgwyvtWYCXEHOkULn5fLIYvV+iQYgQpt+jrq+P2hwysk/Z4RexG2/ jDcCkHjua9pJurE0v32ha6i8Km3sYDfThRJjLkaVpCxL3bEdwTum7b3pdhYnnhW5 SOf0izVC/c66CsNjQw8VoBEfRNDfjTuDtL0bMw16O8puL+iTenjsz50lZJhyKby2 xyW2oqQbDrtX2uh9ZeHixJXi6ZQgJ2MHkm8Ae9tLlLm4wcQoaUVo9A== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:55 2025 by rpki-client