$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rDZk4UN4u0ND9aRUbYeNVDdowXI.roa File: rDZk4UN4u0ND9aRUbYeNVDdowXI.roa (raw, json) Hash identifier: alu6tfuHqFHbeIJq9XS5WDJnITeMp1Dh+eCa94LnZZU= Subject key identifier: AC:36:64:E1:43:78:BB:43:43:F5:A4:54:6D:87:8D:54:37:68:C1:72 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1492 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rDZk4UN4u0ND9aRUbYeNVDdowXI.roa Signing time: Fri 22 Aug 2025 08:54:34 +0000 ROA not before: Fri 22 Aug 2025 08:54:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.67.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5266 (0x1492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AC3664E14378BB4343F5A4546D878D543768C172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d6:80:06:c4:60:67:4f:44:b1:3a:09:85:c8: fa:c5:e7:5c:63:63:b4:6d:dc:85:60:e3:70:f3:21: 97:b0:90:76:b1:3e:ba:b5:48:80:37:80:ad:b0:a2: 31:8d:08:d4:c2:90:5e:72:8e:33:b2:84:59:aa:0b: 46:46:6d:8e:98:08:6f:e2:79:15:74:a1:f5:35:0b: 9a:b1:f6:81:92:b9:a7:ec:c8:42:96:ea:64:43:a8: ee:db:72:b1:f0:03:41:6e:28:d6:20:b7:d6:84:86: 9f:1c:dc:19:30:7a:db:94:3b:ac:e9:8a:d8:19:79: 56:fa:65:7b:e7:b3:a4:16:39:c6:ac:6b:bb:90:33: 92:56:4d:47:e7:46:eb:e5:72:85:1c:95:4d:46:7c: 71:c5:18:2b:90:cd:c6:75:59:31:7f:ff:8d:ab:f8: e7:7e:07:1a:6b:08:ba:a3:fa:72:be:98:c9:da:47: d9:ee:49:70:dc:f4:a9:9b:87:f5:0d:36:1c:ca:77: 4b:57:91:28:4f:11:78:ec:6b:b4:8e:72:c1:a2:e0: 0a:3d:0d:22:c4:8b:77:3a:c6:83:dc:85:4d:a1:40: b9:51:93:24:40:fc:f4:cc:c5:e6:d0:aa:3d:54:c2: 59:9e:39:18:9f:74:f0:aa:e8:01:71:1b:8a:2d:d5: 42:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:36:64:E1:43:78:BB:43:43:F5:A4:54:6D:87:8D:54:37:68:C1:72 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rDZk4UN4u0ND9aRUbYeNVDdowXI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.144.0/20 Signature Algorithm: sha256WithRSAEncryption 12:2e:43:09:43:dc:2a:4e:67:33:bf:23:cd:1d:ec:fa:18:cd: 0f:7f:2b:79:08:0e:51:a3:8f:7c:ef:f4:d1:23:b3:21:e0:95: 86:28:68:9d:d3:c9:58:21:f1:92:de:e9:c9:c8:8b:c0:ca:c3: 7c:a4:8f:c8:1c:08:dc:c8:8a:e8:b3:0a:43:4c:10:6d:dc:d9: a4:10:f8:cf:b6:7c:45:52:b7:71:e0:d1:70:1f:06:2e:48:05: 62:3a:3b:1a:34:8a:09:29:d8:ed:51:25:2e:ba:1f:80:26:ef: 7e:dd:14:f5:e2:da:ed:0c:59:44:87:8c:7f:00:5d:7c:d5:a0: 5d:cf:6c:92:2f:3d:19:22:38:13:08:2b:9c:1f:54:8f:df:fc: 08:58:c8:81:e9:51:80:c5:c1:a9:49:03:41:d4:25:48:5c:1e: 44:db:00:cc:96:f7:77:2c:b3:11:d1:7f:ba:ff:bf:65:f6:55: 0e:e1:24:6c:26:0f:3f:6f:71:fb:de:62:b3:91:59:10:97:b6: 4d:2d:d2:19:ae:27:6c:fe:cf:6f:ae:6c:45:24:b8:5f:f4:12: b8:80:91:60:63:aa:77:57:25:c3:ba:cd:85:75:61:a4:0f:3e: 6f:c2:ed:03:64:5f:4a:9c:9b:c8:6d:bf:81:9f:d8:77:d3:69: 1c:eb:bd:fb -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFJIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFDMzY2NEUxNDM3OEJC NDM0M0Y1QTQ1NDZEODc4RDU0Mzc2OEMxNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC71oAGxGBnT0SxOgmFyPrF51xjY7Rt3IVg43DzIZewkHaxPrq1 SIA3gK2wojGNCNTCkF5yjjOyhFmqC0ZGbY6YCG/ieRV0ofU1C5qx9oGSuafsyEKW 6mRDqO7bcrHwA0FuKNYgt9aEhp8c3BkwetuUO6zpitgZeVb6ZXvns6QWOcasa7uQ M5JWTUfnRuvlcoUclU1GfHHFGCuQzcZ1WTF//42r+Od+BxprCLqj+nK+mMnaR9nu SXDc9Kmbh/UNNhzKd0tXkShPEXjsa7SOcsGi4Ao9DSLEi3c6xoPchU2hQLlRkyRA /PTMxebQqj1UwlmeORifdPCq6AFxG4ot1UJxAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUrDZk4UN4u0ND9aRUbYeNVDdowXIwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvckRaazRVTjR1ME5EOWFS VWJZZU5WRGRvd1hJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNJDkDANBgkqhkiG9w0BAQsFAAOCAQEAEi5DCUPcKk5nM78jzR3s+hjND38reQgO UaOPfO/00SOzIeCVhihondPJWCHxkt7pyciLwMrDfKSPyBwI3MiK6LMKQ0wQbdzZ pBD4z7Z8RVK3ceDRcB8GLkgFYjo7GjSKCSnY7VElLrofgCbvft0U9eLa7QxZRIeM fwBdfNWgXc9ski89GSI4EwgrnB9Uj9/8CFjIgelRgMXBqUkDQdQlSFweRNsAzJb3 dyyzEdF/uv+/ZfZVDuEkbCYPP29x+95is5FZEJe2TS3SGa4nbP7Pb65sRSS4X/QS uICRYGOqd1clw7rNhXVhpA8+b8LtA2RfSpybyG2/gZ/Yd9NpHOu9+w== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:41 2025 by rpki-client