$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aedpS_krY2bXVHsGhT0mdL62oG0.roa File: aedpS_krY2bXVHsGhT0mdL62oG0.roa (raw, json) Hash identifier: iJmwttmdyA2nc9JOXA/NoMsHuA3I7RBtSMxjE4iNp4M= Subject key identifier: 69:E7:69:4B:F9:2B:63:66:D7:54:7B:06:85:3D:26:74:BE:B6:A0:6D Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1493 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aedpS_krY2bXVHsGhT0mdL62oG0.roa Signing time: Fri 22 Aug 2025 08:54:34 +0000 ROA not before: Fri 22 Aug 2025 08:54:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 219.81.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5267 (0x1493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=69E7694BF92B6366D7547B06853D2674BEB6A06D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:49:74:b7:e1:2c:6a:dc:0a:51:54:ac:30:cb: 67:d9:1a:e4:6d:0d:79:0f:26:40:3a:fb:d4:05:20: 4d:38:d6:28:b0:c2:9d:b4:79:b9:f3:2a:05:bc:39: 8d:1f:27:25:a2:ff:5d:1b:81:92:27:7d:49:5d:d7: d1:48:33:73:18:7d:0f:0b:e8:c0:e3:fe:31:6e:7a: c0:a5:fb:a3:fd:8c:be:dd:4f:a5:9f:ab:ff:72:ec: 74:d3:34:69:c6:a7:54:e5:a9:fc:12:2c:53:31:d9: 6a:a2:cb:c9:3f:4f:68:cb:d7:16:f7:3e:3d:f9:0e: 4e:d1:bd:27:9c:df:6c:81:43:ad:0f:d2:6f:8e:bd: b3:42:16:4b:d3:b8:e4:c0:27:3d:d5:1f:c4:cc:b4: 1a:37:72:9e:fb:4a:77:ef:39:b7:fa:1a:82:02:3c: 97:2e:68:ea:e1:7b:74:0e:29:ca:be:5b:66:61:d0: 10:7a:5b:29:78:d2:52:96:8f:40:30:b2:66:c2:48: 3d:37:f3:9f:cb:b3:79:3b:fa:5a:80:bc:ae:06:fe: b1:fc:d9:5a:7c:18:0c:d7:df:71:3b:b0:da:d5:c7: b2:52:d8:f6:ac:7d:24:38:3b:ce:37:f6:46:82:19: 9e:ff:f4:78:82:c7:9c:0d:1e:c4:64:82:41:35:89: b8:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E7:69:4B:F9:2B:63:66:D7:54:7B:06:85:3D:26:74:BE:B6:A0:6D X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aedpS_krY2bXVHsGhT0mdL62oG0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.81.0.0/16 Signature Algorithm: sha256WithRSAEncryption 85:a4:7b:bd:e8:11:8e:1c:34:b2:89:3d:26:0a:7e:d2:e9:32: f8:c7:fb:4f:48:68:b5:03:d6:d5:2b:e3:63:c3:03:7e:27:40: bf:24:d3:aa:bb:d7:d0:00:4b:28:2d:97:94:d8:61:6c:a1:2d: 75:29:ec:2d:52:e4:d0:70:91:51:3e:0b:a4:88:c9:53:0c:4c: 5f:80:ee:1a:da:73:58:d9:d2:88:33:53:dd:ee:59:4a:9c:df: ec:91:ef:c4:2e:f8:24:02:8d:cc:51:75:65:69:7a:80:19:31: 8a:a5:2e:57:f5:cb:e9:da:a8:02:ba:38:19:9f:5f:01:5b:cc: f7:c1:13:b9:06:56:cb:e0:e0:25:d1:b9:60:bf:a2:97:f6:ce: 1b:3d:e0:8a:a8:24:80:a0:52:e4:7a:4f:38:38:b8:ba:9e:51: 1e:78:d6:38:0a:b0:de:57:56:e9:32:c7:0c:53:39:71:67:2f: 16:45:d5:ce:08:ff:46:a8:a5:a0:7b:6f:d9:74:a9:72:6f:94: f8:65:bb:07:8a:b9:53:c7:e2:57:d2:5c:a2:6c:3e:3e:69:29: 1c:82:d1:02:41:e7:28:cc:06:e0:13:1a:06:46:41:7c:13:e0: 2f:42:3b:dc:a0:2c:1a:b6:2d:14:76:d7:2f:3d:40:d1:b4:34: 94:3f:a3:78 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICFJMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY5RTc2OTRCRjkyQjYz NjZENzU0N0IwNjg1M0QyNjc0QkVCNkEwNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQSXS34Sxq3ApRVKwwy2fZGuRtDXkPJkA6+9QFIE041iiwwp20 ebnzKgW8OY0fJyWi/10bgZInfUld19FIM3MYfQ8L6MDj/jFuesCl+6P9jL7dT6Wf q/9y7HTTNGnGp1TlqfwSLFMx2Wqiy8k/T2jL1xb3Pj35Dk7RvSec32yBQ60P0m+O vbNCFkvTuOTAJz3VH8TMtBo3cp77SnfvObf6GoICPJcuaOrhe3QOKcq+W2Zh0BB6 Wyl40lKWj0AwsmbCSD0385/Ls3k7+lqAvK4G/rH82Vp8GAzX33E7sNrVx7JS2Pas fSQ4O8439kaCGZ7/9HiCx5wNHsRkgkE1ibhpAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUaedpS/krY2bXVHsGhT0mdL62oG0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvYWVkcFNfa3JZMmJYVkhz R2hUMG1kTDYyb0cwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD ANtRMA0GCSqGSIb3DQEBCwUAA4IBAQCFpHu96BGOHDSyiT0mCn7S6TL4x/tPSGi1 A9bVK+NjwwN+J0C/JNOqu9fQAEsoLZeU2GFsoS11KewtUuTQcJFRPgukiMlTDExf gO4a2nNY2dKIM1Pd7llKnN/ske/ELvgkAo3MUXVlaXqAGTGKpS5X9cvp2qgCujgZ n18BW8z3wRO5BlbL4OAl0blgv6KX9s4bPeCKqCSAoFLkek84OLi6nlEeeNY4CrDe V1bpMscMUzlxZy8WRdXOCP9GqKWge2/ZdKlyb5T4ZbsHirlTx+JX0lyibD4+aSkc gtECQecozAbgExoGRkF8E+AvQjvcoCwati0UdtcvPUDRtDSUP6N4 -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:41 2025 by rpki-client