$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/n820QyTglQqR7OSSyxnUW41ksrM.roa File: n820QyTglQqR7OSSyxnUW41ksrM.roa (raw, json) Hash identifier: BNT/M7/6vHz30SJFm6MPqtaMi+KC814iTjnqaHfdUvE= Subject key identifier: 9F:CD:B4:43:24:E0:95:0A:91:EC:E4:92:CB:19:D4:5B:8D:64:B2:B3 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14D3 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/n820QyTglQqR7OSSyxnUW41ksrM.roa Signing time: Fri 22 Aug 2025 08:54:49 +0000 ROA not before: Fri 22 Aug 2025 08:54:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131628 IP address blocks: 175.97.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5331 (0x14d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9FCDB44324E0950A91ECE492CB19D45B8D64B2B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:19:9b:af:a7:71:6b:07:04:b4:c8:88:30:89: c1:4d:00:3c:11:47:f2:45:ad:d0:31:91:20:fd:5b: d1:43:d7:35:92:f2:a1:7a:4a:b6:54:b0:83:04:e9: 22:0d:cb:82:1c:72:63:14:f9:ad:a2:95:77:b4:02: f5:08:5d:d5:b3:69:32:d6:64:62:a9:07:08:20:4b: 3a:10:e4:d0:9c:7a:a3:23:c6:2f:0d:c7:c5:63:55: fb:21:57:07:83:3a:ad:65:7c:84:c1:a7:36:85:ce: dc:8f:5f:14:31:af:12:a6:9e:78:23:6e:4a:16:3c: d4:bc:8b:39:ce:fe:d2:48:8c:37:76:ea:f9:12:b3: b4:51:50:c2:12:d4:d3:39:7f:e3:22:b8:e6:93:27: 38:c0:12:e4:a0:8e:c3:d9:49:18:4f:e8:9b:ab:5e: 24:c4:3a:35:e0:8d:9b:e0:a3:02:ea:cc:0b:b5:97: 9d:24:58:4e:b7:10:43:b0:70:fe:f7:b1:55:4f:60: 54:12:4b:cb:3f:5e:40:6b:8c:e0:3c:97:51:5d:07: 32:cf:eb:fd:cc:98:af:72:d4:11:00:dd:f8:6e:5e: e3:11:8c:cc:51:a9:ce:c0:fd:95:83:e1:08:47:18: aa:9b:87:e3:dd:de:aa:12:08:b1:87:43:16:7b:96: 0e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:CD:B4:43:24:E0:95:0A:91:EC:E4:92:CB:19:D4:5B:8D:64:B2:B3 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/n820QyTglQqR7OSSyxnUW41ksrM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.97.192.0/20 Signature Algorithm: sha256WithRSAEncryption 7d:f3:20:8b:c7:16:52:f7:79:30:62:0e:bd:4f:22:0c:49:b1: c2:dc:e8:57:2b:de:7f:b8:29:8d:d8:b2:69:bc:d5:7f:5b:2c: aa:64:e6:dc:14:a0:fe:56:c3:a6:32:5b:78:1b:d3:e7:89:0f: 1d:c4:77:32:a1:6d:0f:67:73:a1:61:86:55:1e:ca:d4:8b:93: 66:36:70:61:0a:0d:da:99:8c:40:7a:34:3c:72:54:44:b9:fd: 9c:03:25:d6:75:f6:5f:42:7d:1f:90:f2:fb:54:35:2f:e8:a1: 48:6b:bb:70:78:9e:e4:ae:a8:c6:6d:24:28:8a:a5:be:20:b4: e8:20:e8:3f:d4:e1:72:58:40:c6:f8:d7:94:ab:89:02:b1:15: a5:51:d5:2b:86:09:cc:55:8d:0e:8a:77:a9:db:1f:4d:cd:f6: 51:7d:96:a9:f4:41:db:75:e4:ef:01:ac:d6:0d:a2:7d:15:b9: a4:dc:d0:37:80:73:ad:2c:24:f2:37:d0:55:f6:9a:2e:ee:bc: 84:66:eb:85:3d:e5:4a:a3:38:a6:6f:29:a8:1c:10:ab:25:f3: c4:8c:0c:9b:b6:31:47:be:9f:1b:d6:a3:67:1a:46:ce:f6:1e: 9a:2c:ea:59:62:85:7b:19:cd:c3:cb:9f:49:91:4b:2f:b7:cc: 7d:b5:6c:95 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFNMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlGQ0RCNDQzMjRFMDk1 MEE5MUVDRTQ5MkNCMTlENDVCOEQ2NEIyQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXGZuvp3FrBwS0yIgwicFNADwRR/JFrdAxkSD9W9FD1zWS8qF6 SrZUsIME6SINy4IccmMU+a2ilXe0AvUIXdWzaTLWZGKpBwggSzoQ5NCceqMjxi8N x8VjVfshVweDOq1lfITBpzaFztyPXxQxrxKmnngjbkoWPNS8iznO/tJIjDd26vkS s7RRUMIS1NM5f+MiuOaTJzjAEuSgjsPZSRhP6JurXiTEOjXgjZvgowLqzAu1l50k WE63EEOwcP73sVVPYFQSS8s/XkBrjOA8l1FdBzLP6/3MmK9y1BEA3fhuXuMRjMxR qc7A/ZWD4QhHGKqbh+Pd3qoSCLGHQxZ7lg6bAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUn820QyTglQqR7OSSyxnUW41ksrMwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbjgyMFF5VGdsUXFSN09T U3l4blVXNDFrc3JNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BK9hwDANBgkqhkiG9w0BAQsFAAOCAQEAffMgi8cWUvd5MGIOvU8iDEmxwtzoVyve f7gpjdiyabzVf1ssqmTm3BSg/lbDpjJbeBvT54kPHcR3MqFtD2dzoWGGVR7K1IuT ZjZwYQoN2pmMQHo0PHJURLn9nAMl1nX2X0J9H5Dy+1Q1L+ihSGu7cHie5K6oxm0k KIqlviC06CDoP9ThclhAxvjXlKuJArEVpVHVK4YJzFWNDop3qdsfTc32UX2WqfRB 23Xk7wGs1g2ifRW5pNzQN4BzrSwk8jfQVfaaLu68hGbrhT3lSqM4pm8pqBwQqyXz xIwMm7YxR76fG9ajZxpGzvYemizqWWKFexnNw8ufSZFLL7fMfbVslQ== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:31 2025 by rpki-client