$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eUGhvAocQY7SocxnJaTbWJBkTDQ.roa File: eUGhvAocQY7SocxnJaTbWJBkTDQ.roa (raw, json) Hash identifier: jBt5tPIAUe3K7uD7ovCjGggl2Qv8B/BqapgMByiobKA= Subject key identifier: 79:41:A1:BC:0A:1C:41:8E:D2:A1:CC:67:25:A4:DB:58:90:64:4C:34 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14C0 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eUGhvAocQY7SocxnJaTbWJBkTDQ.roa Signing time: Fri 22 Aug 2025 08:54:45 +0000 ROA not before: Fri 22 Aug 2025 08:54:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 175.96.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5312 (0x14c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7941A1BC0A1C418ED2A1CC6725A4DB5890644C34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:30:e3:39:9c:b9:17:92:09:43:6c:42:4b:37: 74:6e:2a:3f:df:fe:6f:dd:0c:1f:a5:71:05:21:0e: 6c:bb:4e:5f:a1:04:90:61:6f:2e:fa:6f:32:19:61: 92:c3:ba:31:ba:27:2b:4e:02:ce:8e:b9:6a:a1:00: 20:1a:a9:3b:ac:f7:2d:0f:d2:a1:73:1f:5b:4f:77: 92:77:67:da:da:8b:13:29:2c:9e:7d:6d:d0:a5:0e: 97:a8:3b:cb:49:d2:61:63:1c:50:e0:0e:66:0e:91: fc:bd:b2:02:27:c5:23:2a:85:8f:62:de:ff:de:ce: 79:8d:da:d4:fe:b9:5c:8d:3c:3c:fe:cc:13:21:48: ab:b9:5f:4b:f2:9d:78:96:1a:bf:44:62:65:3e:dc: 9b:08:d5:65:1a:1d:bd:9e:95:13:f9:ab:d2:89:94: 65:da:2a:34:5b:59:19:b8:12:c6:c4:12:47:9a:b7: bd:4f:ac:be:52:ef:8b:bf:4d:3d:21:cc:cf:a0:3f: da:e7:23:15:91:28:19:95:44:7f:1b:98:9c:e3:c3: c3:9a:c9:5c:15:5f:fb:42:81:ea:c3:1b:d4:34:19: f5:96:56:d3:2a:9c:b6:52:78:83:97:fe:51:c6:cd: b5:31:82:b9:6a:95:11:0d:c2:c4:15:b5:a7:1d:21: a1:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:41:A1:BC:0A:1C:41:8E:D2:A1:CC:67:25:A4:DB:58:90:64:4C:34 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eUGhvAocQY7SocxnJaTbWJBkTDQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.96.0.0/14 Signature Algorithm: sha256WithRSAEncryption 42:23:07:23:8d:06:ef:9e:b2:e2:29:f1:c7:dc:2e:e4:db:6a: c0:d7:29:7c:1d:b9:b8:58:e5:60:2e:3f:f9:0d:75:bc:b2:06: c3:24:1f:35:63:69:52:f5:ea:ef:3d:1b:89:ac:63:38:15:0b: 0b:ec:f0:0f:68:3c:1c:34:71:a0:c5:57:92:7d:6b:7b:f9:75: 09:74:f9:6c:35:41:a0:0c:50:84:4c:5a:78:c2:5b:d2:5a:2b: c3:b5:43:ae:d6:a9:e7:b1:7e:5e:42:cc:64:58:bb:19:25:8f: ab:b4:53:35:74:cd:bc:c3:9e:84:c8:24:1c:a3:53:1f:54:da: 47:46:fc:55:77:d3:83:60:3f:4b:48:df:44:b7:ac:50:73:03: 89:c6:fa:24:60:bc:bb:b9:09:b6:ba:2b:a5:eb:53:cf:8e:44: 1f:73:93:3d:dd:a7:2b:1e:05:3b:8b:8b:95:07:a6:d2:43:5d: fc:71:67:ba:3d:d9:7d:89:05:0f:75:00:ac:47:7d:00:37:df: 42:6c:7d:27:2f:3f:30:6d:b4:d2:f7:79:78:62:94:55:66:28: 03:6b:4e:37:b8:83:4c:c9:6b:c2:90:7e:bf:bf:18:5e:41:78: 65:b7:9b:26:a5:d9:0b:e3:ec:b4:3a:5b:45:89:ae:22:5b:74: 08:55:84:55 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICFMAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc5NDFBMUJDMEExQzQx OEVEMkExQ0M2NzI1QTREQjU4OTA2NDRDMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZMOM5nLkXkglDbEJLN3RuKj/f/m/dDB+lcQUhDmy7Tl+hBJBh by76bzIZYZLDujG6JytOAs6OuWqhACAaqTus9y0P0qFzH1tPd5J3Z9raixMpLJ59 bdClDpeoO8tJ0mFjHFDgDmYOkfy9sgInxSMqhY9i3v/eznmN2tT+uVyNPDz+zBMh SKu5X0vynXiWGr9EYmU+3JsI1WUaHb2elRP5q9KJlGXaKjRbWRm4EsbEEkeat71P rL5S74u/TT0hzM+gP9rnIxWRKBmVRH8bmJzjw8OayVwVX/tCgerDG9Q0GfWWVtMq nLZSeIOX/lHGzbUxgrlqlRENwsQVtacdIaEXAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUeUGhvAocQY7SocxnJaTbWJBkTDQwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvZVVHaHZBb2NRWTdTb2N4 bkphVGJXSkJrVERRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD Aq9gMA0GCSqGSIb3DQEBCwUAA4IBAQBCIwcjjQbvnrLiKfHH3C7k22rA1yl8Hbm4 WOVgLj/5DXW8sgbDJB81Y2lS9ervPRuJrGM4FQsL7PAPaDwcNHGgxVeSfWt7+XUJ dPlsNUGgDFCETFp4wlvSWivDtUOu1qnnsX5eQsxkWLsZJY+rtFM1dM28w56EyCQc o1MfVNpHRvxVd9ODYD9LSN9Et6xQcwOJxvokYLy7uQm2uiul61PPjkQfc5M93acr HgU7i4uVB6bSQ138cWe6Pdl9iQUPdQCsR30AN99CbH0nLz8wbbTS93l4YpRVZigD a043uINMyWvCkH6/vxheQXhlt5smpdkL4+y0OltFia4iW3QIVYRV -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:57 2025 by rpki-client