$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/lTpk9UPRaEW1b73WcYJbBzXe8T0.roa File: lTpk9UPRaEW1b73WcYJbBzXe8T0.roa (raw, json) Hash identifier: yQtQ6afgjU6hpSS0H9WTxBJSWru3//pUDeNrqziSupo= Subject key identifier: 95:3A:64:F5:43:D1:68:45:B5:6F:BD:D6:71:82:5B:07:35:DE:F1:3D Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 148E Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/lTpk9UPRaEW1b73WcYJbBzXe8T0.roa Signing time: Fri 22 Aug 2025 08:54:33 +0000 ROA not before: Fri 22 Aug 2025 08:54:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24158 IP address blocks: 175.97.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5262 (0x148e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=953A64F543D16845B56FBDD671825B0735DEF13D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2a:b9:e0:59:5e:a8:a4:a9:76:a2:22:21:06: c5:57:c6:3e:76:32:bb:75:8b:dc:50:c7:cb:0e:bf: 31:18:08:8f:d7:ec:88:b5:cf:ec:15:ee:3d:9c:db: fc:ff:92:04:b4:d4:00:90:68:3c:74:12:ca:e1:e7: 70:9b:11:c9:bc:8f:35:3f:b2:b5:fa:f0:48:85:c3: e8:62:fc:4d:f0:e3:08:88:a1:ac:16:0a:aa:b9:06: dc:4b:c8:e4:81:c8:f4:87:a3:51:c7:37:f7:c7:d3: 60:fe:8b:ab:b4:99:d9:f0:a8:36:ec:b3:ee:66:c7: c9:06:b5:63:a2:c8:2e:1f:c0:c1:87:0e:ee:da:b2: 72:71:26:5b:d6:45:77:f2:70:12:04:02:ef:bf:a2: 89:ef:12:14:be:d3:e7:7c:50:01:41:65:e5:9e:cd: 20:99:9d:1b:50:63:7e:7a:89:43:be:8e:24:d7:e7: cb:2d:91:ce:95:f4:e8:3f:73:9f:9a:21:09:8b:f3: b4:f4:fb:96:cd:5d:6b:27:1e:91:cf:90:76:31:7e: 45:ac:29:9e:ac:54:ee:cc:2f:0d:29:8b:83:cb:2c: f4:91:4e:9b:df:57:09:78:68:d8:58:a4:96:15:40: b8:13:43:c0:47:f7:94:b5:bf:71:33:c2:13:bf:a9: 61:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:3A:64:F5:43:D1:68:45:B5:6F:BD:D6:71:82:5B:07:35:DE:F1:3D X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/lTpk9UPRaEW1b73WcYJbBzXe8T0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.97.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7f:ef:45:3b:8e:3f:86:d4:d7:a1:97:43:1f:03:7c:2e:14:cd: f3:3f:57:4e:83:ba:2f:b3:a3:e2:68:a9:91:5c:2f:7a:d2:e9: 57:4d:2d:81:23:f0:a2:b5:fb:e1:6b:36:0b:f4:fd:c0:3a:a0: b2:ff:e6:01:ff:da:2b:46:9b:33:b7:7d:bc:ca:d0:0b:4a:d5: 42:f9:a2:50:b8:3d:80:6a:34:d1:7b:42:3a:56:97:4e:56:68: f1:ee:4a:06:98:d1:fc:30:c6:9d:ee:5b:39:7b:a7:3c:36:48: 20:40:da:ca:ed:ac:8a:4d:ac:c7:0a:bb:a8:c2:c1:5c:a9:ac: ea:60:f4:a8:34:db:a9:2e:15:ff:f7:08:6b:ea:b6:0d:5f:63: 94:1a:19:3f:77:7f:d4:17:91:e5:7e:41:0d:3f:74:e2:0f:11: 76:49:48:33:87:d0:27:53:78:91:90:28:5a:b0:8f:14:50:da: cf:8e:4c:27:fe:7e:d8:73:5e:f9:d4:ad:fe:4d:c4:16:f0:52: 4e:95:d9:5f:79:d7:19:67:a6:5a:07:9a:f1:9d:53:75:76:03: 20:90:9b:06:c7:b8:b5:c0:5d:da:ad:05:ba:83:79:07:5f:c5: 33:95:35:c7:39:f8:a1:91:1d:f8:76:ac:06:eb:7a:35:fe:90: 51:cf:39:fe -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICFI4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk1M0E2NEY1NDNEMTY4 NDVCNTZGQkRENjcxODI1QjA3MzVERUYxM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBKrngWV6opKl2oiIhBsVXxj52Mrt1i9xQx8sOvzEYCI/X7Ii1 z+wV7j2c2/z/kgS01ACQaDx0Esrh53CbEcm8jzU/srX68EiFw+hi/E3w4wiIoawW Cqq5BtxLyOSByPSHo1HHN/fH02D+i6u0mdnwqDbss+5mx8kGtWOiyC4fwMGHDu7a snJxJlvWRXfycBIEAu+/oonvEhS+0+d8UAFBZeWezSCZnRtQY356iUO+jiTX58st kc6V9Og/c5+aIQmL87T0+5bNXWsnHpHPkHYxfkWsKZ6sVO7MLw0pi4PLLPSRTpvf Vwl4aNhYpJYVQLgTQ8BH95S1v3EzwhO/qWF1AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUlTpk9UPRaEW1b73WcYJbBzXe8T0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbFRwazlVUFJhRVcxYjcz V2NZSmJCelhlOFQwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AK9hMA0GCSqGSIb3DQEBCwUAA4IBAQB/70U7jj+G1Nehl0MfA3wuFM3zP1dOg7ov s6PiaKmRXC960ulXTS2BI/CitfvhazYL9P3AOqCy/+YB/9orRpszt328ytALStVC +aJQuD2AajTRe0I6VpdOVmjx7koGmNH8MMad7ls5e6c8NkggQNrK7ayKTazHCruo wsFcqazqYPSoNNupLhX/9whr6rYNX2OUGhk/d3/UF5HlfkENP3TiDxF2SUgzh9An U3iRkChasI8UUNrPjkwn/n7Yc1751K3+TcQW8FJOldlfedcZZ6ZaB5rxnVN1dgMg kJsGx7i1wF3arQW6g3kHX8UzlTXHOfihkR34dqwG63o1/pBRzzn+ -----END CERTIFICATE-----Generated at Sun Aug 24 08:53:58 2025 by rpki-client