$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/xmibA62BymBt7wX5o7lRrvBjV18.roa File: xmibA62BymBt7wX5o7lRrvBjV18.roa (raw, json) Hash identifier: lzYfomuIVHSlGweB/XXyap56Dsg4Nkcv/hSCeT0Y5fs= Subject key identifier: C6:68:9B:03:AD:81:CA:60:6D:EF:05:F9:A3:B9:51:AE:F0:63:57:5F Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1476 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/xmibA62BymBt7wX5o7lRrvBjV18.roa Signing time: Fri 22 Aug 2025 08:54:27 +0000 ROA not before: Fri 22 Aug 2025 08:54:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131634 IP address blocks: 210.17.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5238 (0x1476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C6689B03AD81CA606DEF05F9A3B951AEF063575F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b4:ce:11:82:fb:83:ba:f7:32:f8:41:71:e0: cb:41:5d:eb:18:67:5f:d9:92:96:47:55:45:cc:8a: ee:e3:f6:8e:6d:be:8a:e5:a0:84:b6:99:99:87:86: f1:1a:8e:c6:93:74:0e:a8:9d:7a:14:f7:73:21:ea: 98:5d:a0:45:27:8d:2c:6e:e6:83:23:4d:5c:f1:b6: 76:45:43:09:03:1b:07:28:66:ca:8f:49:81:2b:a8: ee:b6:b1:c2:b5:ef:0b:f6:3e:ee:2b:02:5a:c7:dc: 23:93:99:9c:ef:32:c9:ea:42:42:21:0c:56:d7:b6: 3d:2e:33:68:0e:00:72:5a:5b:01:21:48:6e:8f:65: 86:4e:cf:a1:d9:f1:b8:cb:0c:fe:43:dd:4c:87:3f: 96:6b:09:b8:d9:67:0d:7a:22:7d:34:d9:d3:a0:4e: a4:81:ba:ba:56:bf:68:a4:2c:dd:fe:89:47:f3:18: d5:52:74:d3:8d:46:6b:6c:c1:5c:e7:69:0f:39:f1: 91:09:c2:3b:5b:e0:99:c1:29:4c:49:a1:73:06:47: 13:70:29:c0:6f:17:23:6f:e7:a3:13:3b:1e:0c:2f: c2:78:e2:a2:72:2a:ca:e4:d9:ef:43:bc:82:18:1a: fc:db:37:11:b2:45:da:91:81:e2:9d:60:04:20:69: 86:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:68:9B:03:AD:81:CA:60:6D:EF:05:F9:A3:B9:51:AE:F0:63:57:5F X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/xmibA62BymBt7wX5o7lRrvBjV18.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.80.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:82:a5:5a:a1:c9:d6:c9:17:7a:e2:cf:1f:f7:29:66:2a:de: 4f:ed:0c:2f:52:62:43:f2:a6:e4:fd:c0:88:94:42:a4:6a:e5: 51:e6:18:d5:d0:13:a1:52:7a:9b:61:f2:cf:df:49:94:31:07: 05:4b:56:1d:85:c8:81:34:24:86:c6:94:47:cd:80:b5:7e:a6: b7:d6:cb:bf:cd:07:75:b0:c9:04:90:e9:3a:83:b3:01:26:6d: 44:c2:a5:95:5d:f3:9b:8d:2f:fd:31:4e:db:7f:f2:da:b2:cd: d4:eb:9c:92:c6:ca:64:76:03:e6:75:e9:82:74:0c:22:f3:1c: 55:d2:20:01:6c:c5:f1:3b:c7:d6:3b:93:92:27:1b:c5:7a:49: 8d:76:d9:96:0d:a5:62:b1:dc:bc:d2:2b:ee:69:4c:50:79:eb: e2:0f:0f:f2:eb:16:d3:8b:ab:5f:61:73:d7:0d:fb:e8:f9:cc: 7c:be:a9:9b:58:15:2c:4d:04:8f:52:29:9c:50:88:25:7c:95: 5f:bd:1c:2c:ff:f1:ff:75:dd:9c:9a:5a:a2:6c:6c:06:34:a9: 9e:c6:88:93:98:2b:85:30:e1:26:1a:db:96:de:a8:9c:da:75: c3:22:54:69:12:7a:10:c6:bf:33:d8:a6:18:a9:0b:00:3c:9e: 9c:d9:3a:21 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFHYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM2Njg5QjAzQUQ4MUNB NjA2REVGMDVGOUEzQjk1MUFFRjA2MzU3NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCatM4RgvuDuvcy+EFx4MtBXesYZ1/ZkpZHVUXMiu7j9o5tvorl oIS2mZmHhvEajsaTdA6onXoU93Mh6phdoEUnjSxu5oMjTVzxtnZFQwkDGwcoZsqP SYErqO62scK17wv2Pu4rAlrH3COTmZzvMsnqQkIhDFbXtj0uM2gOAHJaWwEhSG6P ZYZOz6HZ8bjLDP5D3UyHP5ZrCbjZZw16In002dOgTqSBurpWv2ikLN3+iUfzGNVS dNONRmtswVznaQ858ZEJwjtb4JnBKUxJoXMGRxNwKcBvFyNv56MTOx4ML8J44qJy Ksrk2e9DvIIYGvzbNxGyRdqRgeKdYAQgaYaFAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUxmibA62BymBt7wX5o7lRrvBjV18wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQveG1pYkE2MkJ5bUJ0N3dY NW83bFJydkJqVjE4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ANIRUDANBgkqhkiG9w0BAQsFAAOCAQEAW4KlWqHJ1skXeuLPH/cpZireT+0ML1Ji Q/Km5P3AiJRCpGrlUeYY1dAToVJ6m2Hyz99JlDEHBUtWHYXIgTQkhsaUR82AtX6m t9bLv80HdbDJBJDpOoOzASZtRMKllV3zm40v/TFO23/y2rLN1OucksbKZHYD5nXp gnQMIvMcVdIgAWzF8TvH1juTkicbxXpJjXbZlg2lYrHcvNIr7mlMUHnr4g8P8usW 04urX2Fz1w376PnMfL6pm1gVLE0Ej1IpnFCIJXyVX70cLP/x/3XdnJpaomxsBjSp nsaIk5grhTDhJhrblt6onNp1wyJUaRJ6EMa/M9imGKkLADyenNk6IQ== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:44 2025 by rpki-client