$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ooIev1fndaFlTGVjgXBeV8b2dGo.roa File: ooIev1fndaFlTGVjgXBeV8b2dGo.roa (raw, json) Hash identifier: uj5TWm8bZzCNTkKbcPzl0Wf7zi/7/+1h9PN+xuAWsD0= Subject key identifier: A2:82:1E:BF:57:E7:75:A1:65:4C:65:63:81:70:5E:57:C6:F6:74:6A Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1481 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ooIev1fndaFlTGVjgXBeV8b2dGo.roa Signing time: Fri 22 Aug 2025 08:54:30 +0000 ROA not before: Fri 22 Aug 2025 08:54:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 203.77.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5249 (0x1481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A2821EBF57E775A1654C656381705E57C6F6746A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:03:09:49:ba:00:56:d3:a4:7b:50:14:a0:1d: 6b:c3:8a:44:f8:93:f2:15:18:f8:92:f4:2c:03:14: 66:66:46:e2:ac:18:43:e3:a8:1a:e4:88:dc:3d:7f: 71:90:28:64:23:88:bb:c4:ff:c5:6e:10:7b:ab:9a: 10:ee:ef:af:58:1d:98:e8:22:3a:ee:f5:e3:e4:f9: c4:c8:d2:ae:d3:4b:51:71:c0:03:b1:b8:55:22:cc: cc:0f:fc:15:9a:c2:70:8e:6d:93:2f:9e:57:f5:f4: 5e:a7:91:e7:eb:36:12:c0:c9:c6:63:ef:b2:14:fc: 89:3a:c3:d1:59:19:81:93:e3:71:00:2e:a7:6a:b0: ba:64:75:a1:e7:f4:f0:b7:78:30:2e:28:86:d8:5f: 1b:65:a2:82:c9:8e:a5:85:60:c1:a1:6d:d7:11:d1: 1c:77:00:a6:e0:49:74:be:aa:db:6d:65:1f:e2:77: b4:cc:ef:e8:f3:76:25:6a:3f:c4:a3:9b:b9:a8:c0: 07:a6:4f:7a:df:ca:fb:cb:ac:11:d7:d7:13:ce:8a: 61:7a:de:3d:14:ee:a9:0d:32:bb:9d:bb:cf:e4:d6: 1c:58:85:3b:35:53:06:20:ff:51:ce:37:8d:25:5c: aa:89:f2:0e:6d:e0:be:ad:f4:9d:43:50:35:88:75: 73:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:82:1E:BF:57:E7:75:A1:65:4C:65:63:81:70:5E:57:C6:F6:74:6A X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ooIev1fndaFlTGVjgXBeV8b2dGo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.48.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:0d:c6:14:20:89:d7:cb:04:3e:e4:b2:58:0d:bb:b7:eb:01: 9f:68:67:fb:05:04:c3:aa:b0:ce:01:c0:eb:61:d5:eb:81:ae: 1b:83:45:15:d7:66:16:b2:e8:d0:c4:58:20:a5:07:38:63:b2: f3:11:77:97:19:9f:cf:07:e8:a5:7e:bb:4a:c9:c3:51:6d:df: b7:44:d3:1c:5b:91:f8:ed:9b:ca:ff:a6:b1:7d:39:25:f1:21: dd:e7:57:7b:88:bc:10:fe:c3:c2:80:92:79:1b:e5:03:58:1a: f3:d7:de:63:18:ec:e5:92:aa:3f:d1:44:de:79:fc:99:85:90: 6e:57:46:df:1e:04:e5:4f:76:53:c5:fb:cc:ab:bc:5a:f8:0f: 01:b0:bc:1e:4c:30:a4:3f:67:85:03:2e:22:36:01:0f:6b:af: 12:2a:fc:13:79:04:33:f6:cb:0d:a6:46:09:ad:30:bf:38:a9: 58:31:fd:67:66:e2:4f:e7:f9:c7:7e:f9:35:7a:1a:38:f3:1b: 8a:c6:91:67:9b:a4:0d:ec:b5:84:79:6e:0c:79:a1:e1:fc:ea: 06:2b:a8:95:e9:8f:fc:51:67:04:b1:be:e8:cb:97:bb:be:97: 4c:40:50:84:75:74:68:4d:e0:a1:95:f9:81:b6:63:76:57:8d: 86:ba:5c:76 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFIEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEyODIxRUJGNTdFNzc1 QTE2NTRDNjU2MzgxNzA1RTU3QzZGNjc0NkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzAwlJugBW06R7UBSgHWvDikT4k/IVGPiS9CwDFGZmRuKsGEPj qBrkiNw9f3GQKGQjiLvE/8VuEHurmhDu769YHZjoIjru9ePk+cTI0q7TS1FxwAOx uFUizMwP/BWawnCObZMvnlf19F6nkefrNhLAycZj77IU/Ik6w9FZGYGT43EALqdq sLpkdaHn9PC3eDAuKIbYXxtlooLJjqWFYMGhbdcR0Rx3AKbgSXS+qtttZR/id7TM 7+jzdiVqP8Sjm7mowAemT3rfyvvLrBHX1xPOimF63j0U7qkNMrudu8/k1hxYhTs1 UwYg/1HON40lXKqJ8g5t4L6t9J1DUDWIdXMhAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUooIev1fndaFlTGVjgXBeV8b2dGowHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvb29JZXYxZm5kYUZsVEdW amdYQmVWOGIyZEdvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ActNMDANBgkqhkiG9w0BAQsFAAOCAQEAPQ3GFCCJ18sEPuSyWA27t+sBn2hn+wUE w6qwzgHA62HV64GuG4NFFddmFrLo0MRYIKUHOGOy8xF3lxmfzwfopX67SsnDUW3f t0TTHFuR+O2byv+msX05JfEh3edXe4i8EP7DwoCSeRvlA1ga89feYxjs5ZKqP9FE 3nn8mYWQbldG3x4E5U92U8X7zKu8WvgPAbC8HkwwpD9nhQMuIjYBD2uvEir8E3kE M/bLDaZGCa0wvzipWDH9Z2biT+f5x375NXoaOPMbisaRZ5ukDey1hHluDHmh4fzq BiuolemP/FFnBLG+6MuXu76XTEBQhHV0aE3goZX5gbZjdleNhrpcdg== -----END CERTIFICATE-----Generated at Sun Aug 24 06:47:04 2025 by rpki-client