$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cpHTq6j4ptCjIKoiV571Dnuvu0U.roa File: cpHTq6j4ptCjIKoiV571Dnuvu0U.roa (raw, json) Hash identifier: XamnhO3xT6ZTPexZQPzmaKGwh+9xE2LuxB5qNjuRTko= Subject key identifier: 72:91:D3:AB:A8:F8:A6:D0:A3:20:AA:22:57:9E:F5:0E:7B:AF:BB:45 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1497 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cpHTq6j4ptCjIKoiV571Dnuvu0U.roa Signing time: Fri 22 Aug 2025 08:54:35 +0000 ROA not before: Fri 22 Aug 2025 08:54:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.17.73.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5271 (0x1497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7291D3ABA8F8A6D0A320AA22579EF50E7BAFBB45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:99:5b:78:c3:9b:96:21:15:ab:b9:39:41:6e: c4:e9:1c:2e:a9:54:ad:e5:33:be:e8:a4:77:2a:1f: 7d:22:52:64:c2:87:e6:39:45:eb:39:8b:ae:8a:aa: 40:20:f5:b7:a3:c6:04:c7:39:7a:41:23:bc:c6:c7: ed:d2:bd:dc:f9:3b:bc:fe:26:54:4f:bd:03:20:dc: 43:02:c0:6b:31:f3:9b:54:71:69:6b:78:eb:e0:c3: 2e:21:f0:1e:31:94:96:3d:c9:3e:90:3d:f7:a8:50: c8:d0:ca:3b:70:05:c1:e2:4b:d7:e9:9d:4b:2d:3e: 15:04:0b:d2:ed:ed:9c:0c:0f:24:b0:33:66:7f:f8: 8d:25:f8:89:d0:f9:67:6b:18:dc:25:e2:5f:6b:7f: 4a:47:7f:7e:40:9b:51:39:bf:bf:ea:0b:0e:f6:63: 85:8d:e4:04:db:6d:3b:49:1b:48:db:14:01:06:d9: 67:57:63:9a:d7:63:ed:d6:12:20:9f:2b:52:f4:89: 80:da:10:d3:e1:0d:c0:3a:c5:23:f1:bd:ff:ce:3d: c5:5c:a6:a6:d2:51:3e:f7:0e:ea:17:c4:de:0f:53: 2f:fd:b6:55:e9:a5:7f:f5:82:65:87:cd:3b:c4:6f: 77:ca:52:63:18:8f:1d:9d:32:df:d4:6f:ab:68:4c: bd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:91:D3:AB:A8:F8:A6:D0:A3:20:AA:22:57:9E:F5:0E:7B:AF:BB:45 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cpHTq6j4ptCjIKoiV571Dnuvu0U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.73.0/24 Signature Algorithm: sha256WithRSAEncryption 93:65:6f:2a:dc:96:1f:ba:e6:b5:91:01:ee:56:25:68:3c:34: f2:4b:bd:08:17:c9:44:8f:d4:72:61:1c:03:0d:36:57:7a:2e: 57:37:e6:b8:e9:f4:a2:ed:4f:86:ff:4c:29:bd:b6:2e:c4:d8: c1:f4:c2:db:46:5f:e9:f0:e6:94:05:ab:d4:f1:34:8c:09:07: 61:1d:cf:e1:41:ae:c9:f1:28:74:25:0a:2e:97:bd:e0:f4:d9: 80:91:40:ab:f1:a5:81:7e:28:6c:24:ba:0b:ae:27:e5:00:8f: bf:65:ea:0e:6f:a5:8d:99:7d:7c:b1:06:ec:32:f6:29:0c:6f: b7:a9:1e:49:88:63:0d:6a:1e:72:ee:72:fb:3b:79:b2:9a:55: 10:08:7b:2a:c8:59:b3:0f:a6:a6:4a:1f:2f:87:0d:cd:18:3e: fd:ab:71:54:f4:07:5b:4b:70:98:ab:12:8c:69:0f:09:89:c7: 7b:c5:ef:5c:3a:17:84:b0:e2:81:a8:61:59:b3:4d:0c:f8:05: 30:25:b2:e9:87:2c:58:23:ce:88:63:08:ed:fc:3c:f0:d8:f6: 3d:78:ad:11:ca:1e:32:8f:72:05:a7:51:5c:2c:ea:d2:e8:76: 43:9b:57:d3:08:98:e4:3e:92:39:7a:55:89:2d:11:c9:d2:df: 79:df:74:e2 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFJcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcyOTFEM0FCQThGOEE2 RDBBMzIwQUEyMjU3OUVGNTBFN0JBRkJCNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKmVt4w5uWIRWruTlBbsTpHC6pVK3lM77opHcqH30iUmTCh+Y5 Res5i66KqkAg9bejxgTHOXpBI7zGx+3Svdz5O7z+JlRPvQMg3EMCwGsx85tUcWlr eOvgwy4h8B4xlJY9yT6QPfeoUMjQyjtwBcHiS9fpnUstPhUEC9Lt7ZwMDySwM2Z/ +I0l+InQ+WdrGNwl4l9rf0pHf35Am1E5v7/qCw72Y4WN5ATbbTtJG0jbFAEG2WdX Y5rXY+3WEiCfK1L0iYDaENPhDcA6xSPxvf/OPcVcpqbSUT73DuoXxN4PUy/9tlXp pX/1gmWHzTvEb3fKUmMYjx2dMt/Ub6toTL0vAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUcpHTq6j4ptCjIKoiV571Dnuvu0UwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvY3BIVHE2ajRwdENqSUtv aVY1NzFEbnV2dTBVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ANIRSTANBgkqhkiG9w0BAQsFAAOCAQEAk2VvKtyWH7rmtZEB7lYlaDw08ku9CBfJ RI/UcmEcAw02V3ouVzfmuOn0ou1Phv9MKb22LsTYwfTC20Zf6fDmlAWr1PE0jAkH YR3P4UGuyfEodCUKLpe94PTZgJFAq/GlgX4obCS6C64n5QCPv2XqDm+ljZl9fLEG 7DL2KQxvt6keSYhjDWoecu5y+zt5sppVEAh7KshZsw+mpkofL4cNzRg+/atxVPQH W0twmKsSjGkPCYnHe8XvXDoXhLDigahhWbNNDPgFMCWy6YcsWCPOiGMI7fw88Nj2 PXitEcoeMo9yBadRXCzq0uh2Q5tX0wiY5D6SOXpViS0RydLfed904g== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:25 2025 by rpki-client