$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nKgWbNk7aY_49vA9olPQQBkfLrE.roa File: nKgWbNk7aY_49vA9olPQQBkfLrE.roa (raw, json) Hash identifier: QhvKpUNjmDRgj8FugCQnAZLl+zzaGOC7NCjYNlJMkRg= Subject key identifier: 9C:A8:16:6C:D9:3B:69:8F:F8:F6:F0:3D:A2:53:D0:40:19:1F:2E:B1 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1480 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nKgWbNk7aY_49vA9olPQQBkfLrE.roa Signing time: Fri 22 Aug 2025 08:54:30 +0000 ROA not before: Fri 22 Aug 2025 08:54:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131628 IP address blocks: 175.99.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5248 (0x1480) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9CA8166CD93B698FF8F6F03DA253D040191F2EB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3f:92:91:03:22:68:a4:e5:10:26:7c:98:af: 4f:de:98:84:0c:4b:f7:0e:41:f3:31:d8:7c:e7:67: 83:82:2a:f3:17:a1:89:9d:29:9c:6d:e9:c0:5a:dc: 77:b7:45:36:23:05:11:0f:93:7d:bf:1b:29:3d:b4: 17:53:76:01:41:21:8e:30:6c:f2:0c:e2:c0:60:ff: 94:30:33:42:15:d0:d6:87:42:8e:9f:ac:85:bf:de: 1f:ca:77:15:b5:8a:e1:13:1a:81:55:d2:a3:d6:cb: d4:f8:56:73:c1:fc:40:e8:23:6a:96:58:37:c4:81: ad:84:e9:78:f7:64:43:d4:03:88:64:f2:1e:68:8e: ba:63:ab:b6:23:b5:3b:8d:eb:0e:4c:fd:e1:88:cb: 93:0d:ed:c9:c0:5c:cc:b2:63:a6:5b:f8:d5:b5:4d: 79:4d:35:82:bb:01:54:7c:98:f6:d4:3d:ee:da:8c: 53:0e:a9:77:78:04:71:ff:b5:15:38:98:5f:23:82: 61:38:8d:d5:4d:bb:62:2a:ef:e3:04:82:ab:89:6e: 3f:75:cd:1c:53:e4:37:08:b7:42:42:29:59:a1:6d: 1f:8e:3a:08:66:8a:9c:7f:96:06:d9:02:7f:b5:ad: 7e:21:20:33:7a:ca:48:08:da:aa:58:ca:9c:81:cc: 16:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:A8:16:6C:D9:3B:69:8F:F8:F6:F0:3D:A2:53:D0:40:19:1F:2E:B1 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nKgWbNk7aY_49vA9olPQQBkfLrE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.99.226.0/24 Signature Algorithm: sha256WithRSAEncryption 11:dd:ad:17:0b:bf:e8:8a:10:52:2a:02:fe:ae:e2:6f:36:47: d9:eb:6d:4c:d3:40:0e:18:c1:eb:a5:23:f1:9a:15:e2:94:a5: be:1a:0b:65:47:cd:a7:90:ff:ac:a4:e6:01:46:35:82:43:9b: 0c:19:73:21:4d:fb:97:39:ba:85:e1:82:77:f2:b5:f8:38:91: d3:a5:48:3b:05:3b:17:ba:1f:65:09:54:bd:c1:81:02:83:f1: 0a:f3:ba:9e:2c:b8:77:6a:ec:d2:f7:05:ce:2b:b2:68:68:79: ae:6e:8f:4a:41:00:95:b0:52:03:0c:bc:e4:58:ae:91:7f:e6: 82:d1:83:d0:01:3e:6b:ff:79:0a:67:02:d0:cf:7f:9e:33:ef: 72:29:74:e1:71:76:65:79:92:35:02:88:64:13:73:d4:a9:90: 09:f6:be:1e:0a:cf:75:fc:d5:1f:84:14:3b:75:e4:06:b0:20: b7:5d:b2:15:80:9c:dc:fd:ad:ee:40:50:95:49:40:a2:a1:4f: 86:5d:fc:62:b5:92:a6:19:c4:40:cb:b5:c1:c9:8c:e6:d4:a9: f1:ac:39:94:56:2c:26:ba:37:8b:b2:d4:7f:bb:44:94:d7:63: ee:16:eb:fe:25:79:86:4b:ea:ed:20:40:51:18:c1:ae:61:58: 9c:66:e5:0b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFIAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlDQTgxNjZDRDkzQjY5 OEZGOEY2RjAzREEyNTNEMDQwMTkxRjJFQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLP5KRAyJopOUQJnyYr0/emIQMS/cOQfMx2HznZ4OCKvMXoYmd KZxt6cBa3He3RTYjBREPk32/Gyk9tBdTdgFBIY4wbPIM4sBg/5QwM0IV0NaHQo6f rIW/3h/KdxW1iuETGoFV0qPWy9T4VnPB/EDoI2qWWDfEga2E6Xj3ZEPUA4hk8h5o jrpjq7YjtTuN6w5M/eGIy5MN7cnAXMyyY6Zb+NW1TXlNNYK7AVR8mPbUPe7ajFMO qXd4BHH/tRU4mF8jgmE4jdVNu2Iq7+MEgquJbj91zRxT5DcIt0JCKVmhbR+OOghm ipx/lgbZAn+1rX4hIDN6ykgI2qpYypyBzBa1AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUnKgWbNk7aY/49vA9olPQQBkfLrEwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbktnV2JOazdhWV80OXZB OW9sUFFRQmtmTHJFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AK9j4jANBgkqhkiG9w0BAQsFAAOCAQEAEd2tFwu/6IoQUioC/q7ibzZH2ettTNNA DhjB66Uj8ZoV4pSlvhoLZUfNp5D/rKTmAUY1gkObDBlzIU37lzm6heGCd/K1+DiR 06VIOwU7F7ofZQlUvcGBAoPxCvO6niy4d2rs0vcFziuyaGh5rm6PSkEAlbBSAwy8 5FiukX/mgtGD0AE+a/95CmcC0M9/njPvcil04XF2ZXmSNQKIZBNz1KmQCfa+HgrP dfzVH4QUO3XkBrAgt12yFYCc3P2t7kBQlUlAoqFPhl38YrWSphnEQMu1wcmM5tSp 8aw5lFYsJro3i7LUf7tElNdj7hbr/iV5hkvq7SBAURjBrmFYnGblCw== -----END CERTIFICATE-----Generated at Sun Aug 24 08:54:05 2025 by rpki-client