$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gSNffmUDmMe4hnNVYmquhh1aRW8.roa File: gSNffmUDmMe4hnNVYmquhh1aRW8.roa (raw, json) Hash identifier: 4GRlGxruLWEcCnWX4FCQFbU9Zpzi/zW5K5eg3eg20o8= Subject key identifier: 81:23:5F:7E:65:03:98:C7:B8:86:73:55:62:6A:AE:86:1D:5A:45:6F Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14AD Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gSNffmUDmMe4hnNVYmquhh1aRW8.roa Signing time: Fri 22 Aug 2025 08:54:40 +0000 ROA not before: Fri 22 Aug 2025 08:54:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24158 IP address blocks: 61.30.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5293 (0x14ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=81235F7E650398C7B8867355626AAE861D5A456F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bd:5f:53:3d:0c:ee:68:a2:4b:04:96:ad:95: 1e:75:5e:17:cb:a4:c4:46:0b:f7:fc:c8:12:92:57: 79:0e:f6:eb:54:05:b4:73:82:b0:72:ac:b0:cb:e8: b0:ff:c5:c6:5d:97:32:b0:29:14:21:8e:5b:6d:86: 42:c9:13:28:ed:bb:dc:6f:9f:b2:47:e7:6f:ba:aa: 74:b6:98:85:09:eb:48:e0:f2:94:c7:26:2e:d6:00: f0:0d:7a:64:4e:4d:2f:16:9c:a3:d3:ef:2a:20:08: 88:ec:a8:be:30:f9:a9:08:40:e5:19:c7:5a:39:cb: e8:53:8c:fe:79:3b:b4:be:5a:fb:0e:a4:e7:c3:05: b8:55:2b:21:ea:10:1c:59:e0:c6:f0:d9:86:d8:1c: a0:ba:25:12:d0:1e:16:37:2b:8e:09:f9:fe:e7:1c: 90:e2:f4:1e:65:22:6f:3f:41:23:41:ca:84:a5:58: 4b:1c:a2:fc:4f:09:c9:aa:9e:e5:ee:78:25:a5:60: 43:84:e8:57:5e:f0:11:6d:60:95:f4:fa:d1:17:e0: ab:9b:dd:47:6d:57:08:8b:5f:91:aa:5f:d8:2e:ad: eb:5d:5f:be:ce:ab:72:69:ef:43:44:da:27:8e:4e: f7:06:da:f0:dd:e3:88:4d:c1:89:40:f1:6b:10:3d: f7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:23:5F:7E:65:03:98:C7:B8:86:73:55:62:6A:AE:86:1D:5A:45:6F X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gSNffmUDmMe4hnNVYmquhh1aRW8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.30.25.0/24 Signature Algorithm: sha256WithRSAEncryption 59:6a:c1:b3:5c:b5:12:4b:b2:25:f0:e0:f6:80:94:62:5a:0d: 92:9b:e9:6a:dd:4e:f6:79:cf:c6:c9:34:9a:98:69:6e:12:30: 97:86:d8:f3:4d:af:b6:4c:62:1b:36:03:90:d0:fe:d2:d0:b3: 65:f2:16:c1:85:82:eb:6f:4e:61:d1:b2:b9:75:32:f4:5a:3f: 4d:c3:9d:d0:a0:94:92:38:50:fb:66:4d:13:bb:7a:92:c0:66: df:5d:54:78:05:2a:0f:aa:68:00:92:f9:04:f0:12:92:db:ad: 7b:e2:a6:4c:c2:08:15:58:e8:0d:2e:c5:92:24:2f:95:50:55: bf:de:41:28:f5:72:65:ae:87:8b:91:2e:3f:c4:21:65:2b:25: 52:7b:b4:d2:52:33:82:f0:98:e8:7a:5a:9a:e7:c3:43:6a:5c: dc:1c:b7:d7:5a:38:4f:86:c9:5b:7d:81:4d:8a:68:3f:b1:2c: f4:c2:1a:61:48:40:9e:03:3d:92:64:72:79:9a:0f:0e:c4:c7: ce:67:dd:e0:90:d5:43:36:16:bf:68:90:60:5f:87:db:da:57: c4:51:c3:8f:02:95:ec:49:67:8d:56:99:a0:e0:d0:65:88:a3: 4c:7d:64:b9:54:fa:41:0e:28:79:50:2c:a1:14:7d:9c:c1:e8: ca:f8:c5:60 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFK0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgxMjM1RjdFNjUwMzk4 QzdCODg2NzM1NTYyNkFBRTg2MUQ1QTQ1NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8vV9TPQzuaKJLBJatlR51XhfLpMRGC/f8yBKSV3kO9utUBbRz grByrLDL6LD/xcZdlzKwKRQhjltthkLJEyjtu9xvn7JH52+6qnS2mIUJ60jg8pTH Ji7WAPANemROTS8WnKPT7yogCIjsqL4w+akIQOUZx1o5y+hTjP55O7S+WvsOpOfD BbhVKyHqEBxZ4Mbw2YbYHKC6JRLQHhY3K44J+f7nHJDi9B5lIm8/QSNByoSlWEsc ovxPCcmqnuXueCWlYEOE6Fde8BFtYJX0+tEX4Kub3UdtVwiLX5GqX9guretdX77O q3Jp70NE2ieOTvcG2vDd44hNwYlA8WsQPffDAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUgSNffmUDmMe4hnNVYmquhh1aRW8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvZ1NOZmZtVURtTWU0aG5O VlltcXVoaDFhUlc4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AD0eGTANBgkqhkiG9w0BAQsFAAOCAQEAWWrBs1y1EkuyJfDg9oCUYloNkpvpat1O 9nnPxsk0mphpbhIwl4bY802vtkxiGzYDkND+0tCzZfIWwYWC629OYdGyuXUy9Fo/ TcOd0KCUkjhQ+2ZNE7t6ksBm311UeAUqD6poAJL5BPASktute+KmTMIIFVjoDS7F kiQvlVBVv95BKPVyZa6Hi5EuP8QhZSslUnu00lIzgvCY6HpamufDQ2pc3By311o4 T4bJW32BTYpoP7Es9MIaYUhAngM9kmRyeZoPDsTHzmfd4JDVQzYWv2iQYF+H29pX xFHDjwKV7ElnjVaZoODQZYijTH1kuVT6QQ4oeVAsoRR9nMHoyvjFYA== -----END CERTIFICATE-----Generated at Sun Aug 24 06:50:47 2025 by rpki-client