$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_ReNA80txwkYLzAly4UMwWz07Tc.roa File: _ReNA80txwkYLzAly4UMwWz07Tc.roa (raw, json) Hash identifier: 9incE0/GHZjJYyyZjFVjaNDwbdOmkz/B4amrrdvnbUA= Subject key identifier: FD:17:8D:03:CD:2D:C7:09:18:2F:30:25:CB:85:0C:C1:6C:F4:ED:37 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14EC Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_ReNA80txwkYLzAly4UMwWz07Tc.roa Signing time: Fri 22 Aug 2025 08:54:56 +0000 ROA not before: Fri 22 Aug 2025 08:54:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.17.16.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5356 (0x14ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FD178D03CD2DC709182F3025CB850CC16CF4ED37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4e:98:54:53:81:66:68:9d:09:f0:95:fe:94: 74:ff:6e:9a:01:ac:f2:2f:2d:19:b1:e9:e7:d4:0f: 31:31:eb:91:61:a2:bb:4f:c1:77:f2:b2:8a:e9:9c: ef:8a:d3:1d:f9:9c:15:64:80:2f:62:14:71:e9:d8: 23:2b:a4:85:ba:ab:f8:f5:53:85:13:28:1a:e8:f3: c7:41:9e:b3:e6:2d:c7:81:4d:3f:4c:b0:8c:3b:5b: e8:d5:b5:72:29:e4:28:4f:50:b8:eb:ae:93:1c:8b: d6:0c:d7:e6:9c:f9:80:ba:db:f7:cb:67:63:07:ee: 95:a1:b9:f2:79:10:63:c1:21:d9:36:9e:4b:e0:4d: 52:b8:8b:58:2b:55:5b:4a:53:80:f0:ac:3e:ef:e8: 6d:6d:f7:e5:92:38:93:19:23:f2:cf:9f:f8:5b:6f: 35:6a:0a:81:e9:8f:b1:9b:d8:12:4b:23:28:ef:92: fd:9c:28:9d:be:69:32:67:6b:69:b8:82:09:5b:20: 0a:9b:49:bb:f8:da:88:1e:a3:41:55:8c:99:82:9e: fc:c1:4a:09:1e:fe:20:9a:fb:c8:91:d3:b1:17:e7: 56:07:93:db:54:83:df:fd:81:54:bd:af:27:6c:f1: d6:f2:40:60:47:4c:bc:21:04:b6:cd:36:1b:a9:99: fe:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:17:8D:03:CD:2D:C7:09:18:2F:30:25:CB:85:0C:C1:6C:F4:ED:37 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_ReNA80txwkYLzAly4UMwWz07Tc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.16.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:9b:aa:38:4a:60:07:61:39:29:ba:39:63:e9:17:6f:2f:e8: 90:0d:31:f9:f6:12:d2:8a:01:b2:85:53:c0:50:b4:8e:f6:9a: d1:86:5f:1f:57:ff:96:68:1c:66:9c:55:a5:39:dc:66:81:48: f9:d1:57:8d:27:ac:d7:d0:3d:a9:3e:74:2f:a3:42:94:35:f8: 84:0c:c6:32:79:e8:94:2b:1a:94:b4:38:dd:68:cf:8e:16:b0: ca:03:ac:3d:6a:b3:a9:a2:b0:d6:1e:0a:f5:79:74:e4:98:62: 03:4f:8f:b9:3c:e8:90:98:b3:c2:21:e4:84:bd:2e:3f:60:53: 79:47:90:7a:05:7e:92:32:6e:31:4b:d5:ee:a8:00:e9:1a:3d: 10:90:c5:41:84:7b:d9:9b:a4:79:6a:78:9c:54:57:89:85:d4: d6:e8:b7:ba:91:ab:81:a4:17:2a:f8:d0:06:d4:6b:35:71:31: df:ec:af:1d:43:d9:8f:c6:79:b3:d3:fe:c6:6d:9b:4a:46:d0: 55:00:96:e5:94:e7:44:70:a4:c9:28:80:a4:ef:7c:0c:72:be: f1:4a:51:42:48:d4:b1:fc:05:e1:13:e9:48:aa:fc:44:b2:5a: 8b:53:35:1d:37:f7:ec:b0:0f:0a:9d:2d:39:b4:ff:62:28:04: 62:45:bb:45 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFOwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZEMTc4RDAzQ0QyREM3 MDkxODJGMzAyNUNCODUwQ0MxNkNGNEVEMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1TphUU4FmaJ0J8JX+lHT/bpoBrPIvLRmx6efUDzEx65FhortP wXfysorpnO+K0x35nBVkgC9iFHHp2CMrpIW6q/j1U4UTKBro88dBnrPmLceBTT9M sIw7W+jVtXIp5ChPULjrrpMci9YM1+ac+YC62/fLZ2MH7pWhufJ5EGPBIdk2nkvg TVK4i1grVVtKU4DwrD7v6G1t9+WSOJMZI/LPn/hbbzVqCoHpj7Gb2BJLIyjvkv2c KJ2+aTJna2m4gglbIAqbSbv42ogeo0FVjJmCnvzBSgke/iCa+8iR07EX51YHk9tU g9/9gVS9ryds8dbyQGBHTLwhBLbNNhupmf5BAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU/ReNA80txwkYLzAly4UMwWz07TcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvX1JlTkE4MHR4d2tZTHpB bHk0VU13V3owN1RjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ANIREDANBgkqhkiG9w0BAQsFAAOCAQEAT5uqOEpgB2E5Kbo5Y+kXby/okA0x+fYS 0ooBsoVTwFC0jvaa0YZfH1f/lmgcZpxVpTncZoFI+dFXjSes19A9qT50L6NClDX4 hAzGMnnolCsalLQ43WjPjhawygOsPWqzqaKw1h4K9Xl05JhiA0+PuTzokJizwiHk hL0uP2BTeUeQegV+kjJuMUvV7qgA6Ro9EJDFQYR72ZukeWp4nFRXiYXU1ui3upGr gaQXKvjQBtRrNXEx3+yvHUPZj8Z5s9P+xm2bSkbQVQCW5ZTnRHCkySiApO98DHK+ 8UpRQkjUsfwF4RPpSKr8RLJai1M1HTf37LAPCp0tObT/YigEYkW7RQ== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:58 2025 by rpki-client