$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_m13Gkr9Hq40Ur-4L5nrEJepzGI.roa File: _m13Gkr9Hq40Ur-4L5nrEJepzGI.roa (raw, json) Hash identifier: sN28A0wbWsVxQ/Ymql8H7snamFFJG3KiPr45kzA5PKM= Subject key identifier: FE:6D:77:1A:4A:FD:1E:AE:34:52:BF:B8:2F:99:EB:10:97:A9:CC:62 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14E8 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_m13Gkr9Hq40Ur-4L5nrEJepzGI.roa Signing time: Fri 22 Aug 2025 08:54:55 +0000 ROA not before: Fri 22 Aug 2025 08:54:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 60.199.212.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5352 (0x14e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FE6D771A4AFD1EAE3452BFB82F99EB1097A9CC62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:92:52:39:50:c5:cc:b4:dd:3a:c3:cf:b0:60: c8:b4:3f:ac:54:dd:4b:ee:94:8d:87:7a:fe:8a:19: 3e:20:e8:9f:17:79:fb:50:f4:6e:53:ed:41:23:c3: c9:cf:40:5e:1f:e3:55:7c:c3:e0:5a:0d:5d:89:d1: a6:a5:d4:0c:9c:f7:65:c0:45:91:3b:68:a5:e2:2d: a1:2b:44:93:cf:2d:96:18:0c:25:8e:d1:8d:ae:95: e4:b2:7b:bc:79:77:9d:04:01:3a:33:49:f7:74:62: d9:98:62:c3:9c:19:b0:31:66:1f:1d:f9:b5:03:5d: 3b:60:13:e3:28:59:3a:31:37:8c:91:f6:64:94:28: 2c:08:f8:5e:58:b2:d1:f2:ef:26:a9:ad:82:73:34: 84:14:89:c8:78:2a:a7:06:28:75:56:b4:fd:e1:dc: 61:6a:f9:17:e8:a7:a5:ca:b5:d2:bf:b0:01:b2:e7: 9d:eb:9b:fe:84:0c:77:f3:55:56:58:32:19:1c:41: 8a:16:1d:5c:fa:85:fa:1e:44:08:db:2b:9a:6a:bc: 2d:a7:96:78:93:9e:85:66:ea:8e:c4:a6:6f:27:d2: 5e:62:7b:09:ae:a7:fe:76:88:6b:51:82:9d:f5:67: c8:85:b0:f6:52:c6:fc:fd:9a:df:b7:f1:43:43:57: 0b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:6D:77:1A:4A:FD:1E:AE:34:52:BF:B8:2F:99:EB:10:97:A9:CC:62 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_m13Gkr9Hq40Ur-4L5nrEJepzGI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.212.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:d0:07:83:99:fc:3f:93:f2:02:34:4c:f6:28:13:72:a3:22: 42:1a:ba:cd:ba:9c:24:ec:2b:35:3b:03:23:a4:8b:5e:3a:ec: 67:76:f7:54:a7:d9:67:59:cf:d7:18:f1:1e:f7:2a:f0:04:6b: 94:4e:99:5f:42:73:b1:b0:0f:14:a6:fd:e4:06:1a:35:a8:65: 36:ba:dc:0a:fa:6a:c1:9a:99:b6:ae:e8:19:23:f8:8c:35:dd: d9:6f:23:32:a6:23:a3:e2:7e:27:23:fc:37:9b:a8:dd:ec:20: 85:0f:9c:dd:40:03:07:dd:55:0a:d9:91:30:9f:a1:10:c5:f9: f9:a0:c4:14:04:f0:c3:73:d9:97:6b:78:a4:92:9e:e9:96:63: 67:3a:03:b5:ba:ed:ef:22:14:39:c2:14:cc:ce:0b:da:ac:29: d2:1d:96:c3:67:e5:a7:a8:ee:07:b9:df:b3:29:f0:15:84:9e: f2:8a:85:e7:f9:40:aa:6d:6d:29:a2:a1:16:40:dc:99:a0:69: f7:b4:7b:83:3b:75:70:11:76:97:08:6a:a2:7d:cc:a7:d4:a7: 7a:5f:91:cc:32:6a:23:8b:e9:39:d5:1b:41:4b:7b:78:68:62: d9:3c:e9:b9:7f:08:0e:c6:b4:dd:7e:cf:1d:4d:dc:20:67:87: 91:ca:56:bb -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFOgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZFNkQ3NzFBNEFGRDFF QUUzNDUyQkZCODJGOTlFQjEwOTdBOUNDNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLklI5UMXMtN06w8+wYMi0P6xU3UvulI2Hev6KGT4g6J8XeftQ 9G5T7UEjw8nPQF4f41V8w+BaDV2J0aal1Ayc92XARZE7aKXiLaErRJPPLZYYDCWO 0Y2uleSye7x5d50EATozSfd0YtmYYsOcGbAxZh8d+bUDXTtgE+MoWToxN4yR9mSU KCwI+F5YstHy7yaprYJzNIQUich4KqcGKHVWtP3h3GFq+Rfop6XKtdK/sAGy553r m/6EDHfzVVZYMhkcQYoWHVz6hfoeRAjbK5pqvC2nlniTnoVm6o7Epm8n0l5iewmu p/52iGtRgp31Z8iFsPZSxvz9mt+38UNDVwt9AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU/m13Gkr9Hq40Ur+4L5nrEJepzGIwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvX20xM0drcjlIcTQwVXIt NEw1bnJFSmVwekdJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzH1DANBgkqhkiG9w0BAQsFAAOCAQEAXdAHg5n8P5PyAjRM9igTcqMiQhq6zbqc JOwrNTsDI6SLXjrsZ3b3VKfZZ1nP1xjxHvcq8ARrlE6ZX0JzsbAPFKb95AYaNahl NrrcCvpqwZqZtq7oGSP4jDXd2W8jMqYjo+J+JyP8N5uo3ewghQ+c3UADB91VCtmR MJ+hEMX5+aDEFATww3PZl2t4pJKe6ZZjZzoDtbrt7yIUOcIUzM4L2qwp0h2Ww2fl p6juB7nfsynwFYSe8oqF5/lAqm1tKaKhFkDcmaBp97R7gzt1cBF2lwhqon3Mp9Sn el+RzDJqI4vpOdUbQUt7eGhi2TzpuX8IDsa03X7PHU3cIGeHkcpWuw== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:41 2025 by rpki-client