$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/fGIdD8gMbLN8HfmLGVP3i7tJ63Q.roa File: fGIdD8gMbLN8HfmLGVP3i7tJ63Q.roa (raw, json) Hash identifier: AZHCO1/tCH1B5e833XYiDSTcswz6o6BVuNGJKw5ULhQ= Subject key identifier: 7C:62:1D:0F:C8:0C:6C:B3:7C:1D:F9:8B:19:53:F7:8B:BB:49:EB:74 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1478 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/fGIdD8gMbLN8HfmLGVP3i7tJ63Q.roa Signing time: Fri 22 Aug 2025 08:54:28 +0000 ROA not before: Fri 22 Aug 2025 08:54:28 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131634 IP address blocks: 124.108.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5240 (0x1478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7C621D0FC80C6CB37C1DF98B1953F78BBB49EB74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b7:1c:a1:a0:7a:d0:85:61:86:8f:02:e7:6a: 4e:e8:05:59:9f:94:26:92:04:50:6f:b4:1b:ff:a0: dc:9b:28:9f:b8:f1:a8:8e:cb:dd:b9:17:7c:7f:39: 6a:3b:9d:e2:79:c4:a7:88:ca:fb:a6:a7:ce:b7:25: 2a:ee:bb:ad:b5:aa:a4:d9:61:51:fa:76:3a:a4:cf: 38:98:f8:76:8e:51:90:99:eb:09:03:72:a4:11:45: d4:13:f7:1d:2d:6e:a3:41:c5:bb:80:89:cf:f3:2d: e5:78:6d:39:fc:01:47:fd:f0:98:5b:ad:d2:6b:d7: 1f:d0:d6:0c:48:cd:c8:66:4b:8e:b3:07:d6:50:99: 03:3b:7e:d8:75:62:02:9d:0c:a0:d6:cf:f4:5b:48: e1:8a:1f:dc:d2:73:21:3a:cd:8d:49:be:e3:40:a5: b7:49:9d:3f:aa:f0:5b:21:43:7b:bc:d1:fc:8e:43: 83:09:ac:46:4b:ca:13:51:44:8d:9b:a1:19:59:e3: b4:32:30:9d:98:c9:e7:88:0d:c3:39:5d:c2:a8:48: 8c:9e:75:c6:74:7a:60:4c:c9:20:a3:45:5d:58:88: af:dd:5d:a7:a9:0a:27:e7:e0:93:04:cb:b8:14:79: 55:e1:5b:0c:9d:c6:ab:4a:ec:38:5c:e6:44:60:33: e1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:62:1D:0F:C8:0C:6C:B3:7C:1D:F9:8B:19:53:F7:8B:BB:49:EB:74 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/fGIdD8gMbLN8HfmLGVP3i7tJ63Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.108.160.0/24 Signature Algorithm: sha256WithRSAEncryption 75:25:e2:8f:5b:a1:b7:27:e2:89:be:3b:05:29:fb:c6:8c:d0: 53:5e:1d:ee:f4:45:1b:40:3f:1c:97:0d:dd:db:62:ce:23:1e: 3a:1e:d6:2d:c3:f1:ec:f3:d8:0f:87:6b:11:45:fc:56:0e:69: 31:6c:4f:09:0a:af:f7:4f:63:fd:72:42:1d:38:c4:b6:70:fe: 11:df:3a:c3:8e:40:94:ab:7d:6e:23:c7:8f:5a:f2:e3:70:e0: eb:26:70:54:ab:6e:85:c6:af:cc:ea:9e:ec:b9:70:6f:15:0d: 2e:e9:a6:1b:5d:99:02:ae:e2:57:12:95:ec:ba:e8:95:2f:94: b6:f7:88:d0:75:42:b7:84:2c:40:16:11:94:f6:10:0a:fc:1a: 4a:41:39:12:12:40:13:12:33:eb:fc:70:9c:2c:51:23:de:6e: 0c:f4:84:9d:91:76:5a:3f:69:90:fb:cb:26:59:6e:5b:c5:75: 47:8b:b3:7a:cf:1c:3a:de:e1:cf:6e:27:06:00:a7:78:5c:28: cd:6e:83:fe:3a:d0:84:ba:b9:35:d3:da:84:0c:8e:a3:74:fd: d7:3a:0c:60:c9:9a:4a:96:d0:41:ca:40:c1:be:8b:45:98:d2: a2:ef:24:8f:a2:c9:20:9f:51:1b:19:a0:0b:56:66:d2:17:02: 41:c0:c4:7c -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFHgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdDNjIxRDBGQzgwQzZD QjM3QzFERjk4QjE5NTNGNzhCQkI0OUVCNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCttxyhoHrQhWGGjwLnak7oBVmflCaSBFBvtBv/oNybKJ+48aiO y925F3x/OWo7neJ5xKeIyvump863JSruu621qqTZYVH6djqkzziY+HaOUZCZ6wkD cqQRRdQT9x0tbqNBxbuAic/zLeV4bTn8AUf98JhbrdJr1x/Q1gxIzchmS46zB9ZQ mQM7fth1YgKdDKDWz/RbSOGKH9zScyE6zY1JvuNApbdJnT+q8FshQ3u80fyOQ4MJ rEZLyhNRRI2boRlZ47QyMJ2YyeeIDcM5XcKoSIyedcZ0emBMySCjRV1YiK/dXaep Cifn4JMEy7gUeVXhWwydxqtK7Dhc5kRgM+GNAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUfGIdD8gMbLN8HfmLGVP3i7tJ63QwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvZkdJZEQ4Z01iTE44SGZt TEdWUDNpN3RKNjNRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AHxsoDANBgkqhkiG9w0BAQsFAAOCAQEAdSXij1uhtyfiib47BSn7xozQU14d7vRF G0A/HJcN3dtiziMeOh7WLcPx7PPYD4drEUX8Vg5pMWxPCQqv909j/XJCHTjEtnD+ Ed86w45AlKt9biPHj1ry43Dg6yZwVKtuhcavzOqe7LlwbxUNLummG12ZAq7iVxKV 7LrolS+UtveI0HVCt4QsQBYRlPYQCvwaSkE5EhJAExIz6/xwnCxRI95uDPSEnZF2 Wj9pkPvLJlluW8V1R4uzes8cOt7hz24nBgCneFwozW6D/jrQhLq5NdPahAyOo3T9 1zoMYMmaSpbQQcpAwb6LRZjSou8kj6LJIJ9RGxmgC1Zm0hcCQcDEfA== -----END CERTIFICATE-----Generated at Sun Aug 24 06:52:29 2025 by rpki-client