$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rqzrqRR71axXSwtobKhM7GXJ3_E.roa File: rqzrqRR71axXSwtobKhM7GXJ3_E.roa (raw, json) Hash identifier: Q1BpaMoZEqX7RCgheJy9HFYTOZZPDoClmU3/WNGyF3k= Subject key identifier: AE:AC:EB:A9:14:7B:D5:AC:57:4B:0B:68:6C:A8:4C:EC:65:C9:DF:F1 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1501 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rqzrqRR71axXSwtobKhM7GXJ3_E.roa Signing time: Fri 22 Aug 2025 08:55:02 +0000 ROA not before: Fri 22 Aug 2025 08:55:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131602 IP address blocks: 210.62.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5377 (0x1501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:55:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AEACEBA9147BD5AC574B0B686CA84CEC65C9DFF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9a:67:e5:98:d6:07:ee:4a:a3:cb:8f:58:b7: c5:93:c5:01:15:aa:ce:db:0f:a1:53:2e:b5:5e:b2: e0:bf:a1:f8:07:d6:1d:ac:5a:11:31:66:89:d5:47: 58:53:39:6b:0d:ef:45:0d:7d:e0:29:1b:0b:ba:16: 20:54:45:27:d0:38:ee:d6:58:17:90:82:cd:97:e1: 18:36:e0:13:b0:f8:c9:f5:b9:d0:e1:68:35:a8:c4: 35:b2:2d:19:a4:b5:02:d7:ab:20:fa:40:0c:8b:92: 0b:d6:63:33:a7:47:0b:33:2c:eb:5d:9d:f9:26:8e: b0:7e:b8:f4:dc:d3:45:d6:bf:05:54:fb:7d:b6:c7: f5:09:30:83:13:95:87:3f:4f:f8:82:31:3f:3c:6a: c7:79:6e:99:85:42:8a:0d:49:17:de:25:61:17:6b: a1:85:6e:cf:bb:28:30:f0:e7:8a:1c:3a:94:1f:c4: 55:7b:43:ab:eb:37:b8:24:13:62:c5:90:d8:80:e8: 4c:36:a7:74:33:86:0c:8b:5c:c4:ab:87:f9:66:cd: 22:23:a2:41:e5:0f:19:38:94:be:b2:8c:c4:77:2e: bb:30:55:6e:59:6e:d6:99:24:f6:f3:46:75:a8:9e: b7:5a:ca:4f:0a:e6:98:ed:2f:eb:c4:4a:54:c2:71: ab:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:AC:EB:A9:14:7B:D5:AC:57:4B:0B:68:6C:A8:4C:EC:65:C9:DF:F1 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rqzrqRR71axXSwtobKhM7GXJ3_E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.32.0/20 Signature Algorithm: sha256WithRSAEncryption 8c:c7:5a:1f:1e:0e:5d:68:b4:66:a7:c7:a7:3f:ae:0e:21:7c: be:1a:35:3b:c8:a9:85:31:36:37:fa:61:f8:7f:05:72:c7:1a: 28:17:82:72:d0:bb:04:d5:d2:39:bd:af:a2:f1:83:36:c3:04: a8:bf:0b:c8:83:7b:37:24:11:26:8d:56:eb:ce:27:31:26:be: fd:c1:eb:60:6f:cd:1d:76:9f:09:42:d8:b5:49:69:53:cd:e6: 0e:dc:b5:f7:cd:43:e0:ee:ed:59:0b:85:ce:07:a9:a9:86:ec: 8a:b2:24:3e:4b:c2:2b:89:75:10:0d:49:48:dd:11:c5:21:62: 8b:2d:10:18:7f:12:f5:8f:d5:21:0f:0f:a6:90:01:79:ee:71: cc:70:2c:dc:0a:57:24:cb:12:e6:0b:0f:91:4c:7b:62:e1:54: 71:31:fb:10:ab:0e:16:72:35:d5:20:ed:30:47:9a:91:a3:85: 9c:df:8b:6f:8b:31:03:94:14:57:74:4e:8e:24:58:d0:a3:4b: 30:4d:51:d9:50:73:c6:d6:9f:a4:f2:24:50:3c:af:83:41:82: 5f:81:10:a4:a7:a9:6b:36:61:17:3e:35:57:0f:e6:48:ce:ec: 6d:5a:db:23:1b:45:23:28:7c:60:52:fa:7a:74:71:b2:d7:26: d0:56:b6:eb -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFQEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU1MDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFFQUNFQkE5MTQ3QkQ1 QUM1NzRCMEI2ODZDQTg0Q0VDNjVDOURGRjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDmmflmNYH7kqjy49Yt8WTxQEVqs7bD6FTLrVesuC/ofgH1h2s WhExZonVR1hTOWsN70UNfeApGwu6FiBURSfQOO7WWBeQgs2X4Rg24BOw+Mn1udDh aDWoxDWyLRmktQLXqyD6QAyLkgvWYzOnRwszLOtdnfkmjrB+uPTc00XWvwVU+322 x/UJMIMTlYc/T/iCMT88asd5bpmFQooNSRfeJWEXa6GFbs+7KDDw54ocOpQfxFV7 Q6vrN7gkE2LFkNiA6Ew2p3QzhgyLXMSrh/lmzSIjokHlDxk4lL6yjMR3LrswVW5Z btaZJPbzRnWonrdayk8K5pjtL+vESlTCcavJAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUrqzrqRR71axXSwtobKhM7GXJ3/EwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvcnF6cnFSUjcxYXhYU3d0 b2JLaE03R1hKM19FLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNI+IDANBgkqhkiG9w0BAQsFAAOCAQEAjMdaHx4OXWi0ZqfHpz+uDiF8vho1O8ip hTE2N/ph+H8FcscaKBeCctC7BNXSOb2vovGDNsMEqL8LyIN7NyQRJo1W684nMSa+ /cHrYG/NHXafCULYtUlpU83mDty1981D4O7tWQuFzgepqYbsirIkPkvCK4l1EA1J SN0RxSFiiy0QGH8S9Y/VIQ8PppABee5xzHAs3ApXJMsS5gsPkUx7YuFUcTH7EKsO FnI11SDtMEeakaOFnN+Lb4sxA5QUV3ROjiRY0KNLME1R2VBzxtafpPIkUDyvg0GC X4EQpKepazZhFz41Vw/mSM7sbVrbIxtFIyh8YFL6enRxstcm0Fa26w== -----END CERTIFICATE-----Generated at Sun Aug 24 06:48:41 2025 by rpki-client