$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/y5rOxga93Fv1iu-3x7myxXo3h4I.roa File: y5rOxga93Fv1iu-3x7myxXo3h4I.roa (raw, json) Hash identifier: c8qTbYLT1QorRF1FYOM02IpfBQ5PL/8edGhs4K0wWEw= Subject key identifier: CB:9A:CE:C6:06:BD:DC:5B:F5:8A:EF:B7:C7:B9:B2:C5:7A:37:87:82 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1479 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/y5rOxga93Fv1iu-3x7myxXo3h4I.roa Signing time: Fri 22 Aug 2025 08:54:29 +0000 ROA not before: Fri 22 Aug 2025 08:54:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 60.199.171.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5241 (0x1479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CB9ACEC606BDDC5BF58AEFB7C7B9B2C57A378782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0a:f4:15:e9:1b:db:33:90:48:ae:71:30:7e: 82:66:d2:bf:58:fa:f2:99:43:88:7f:49:0e:79:3c: 6f:b6:77:e9:f2:2a:f0:58:6e:b6:17:fe:f9:a3:14: 43:bf:d1:2e:21:6b:85:33:98:c4:d9:94:55:8e:30: 6e:13:f6:50:99:e2:2e:1f:6e:6e:51:55:59:15:3f: 9b:c5:0e:c4:70:27:78:54:4a:11:5b:05:aa:4b:2f: 2e:c2:0d:78:11:b3:12:88:52:32:12:7e:2a:dc:ed: 84:fc:30:1d:c7:8a:16:cb:40:52:c4:59:41:b2:30: f7:65:b6:60:8a:f1:89:f5:8d:ca:ca:27:fa:d4:aa: 37:13:c7:a4:73:ed:c3:57:9b:4e:4b:ac:82:c5:1e: 89:e5:8e:f7:03:73:c0:14:73:ca:92:13:1c:16:00: 59:6d:f0:25:f2:ca:bc:5a:c4:2b:33:45:fe:44:b1: 7e:4c:5f:9b:57:cf:e7:0b:69:d7:5c:94:f1:99:6f: 6c:7a:a8:5e:ab:ea:43:98:a4:9f:39:90:38:66:02: c4:57:e6:45:a7:99:12:03:1c:76:73:b6:9f:14:24: 25:97:c5:8d:87:fc:f1:74:b4:9c:b3:dc:a7:93:2d: ae:3b:0b:30:78:46:c0:12:83:95:fd:31:df:41:0b: 2a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:9A:CE:C6:06:BD:DC:5B:F5:8A:EF:B7:C7:B9:B2:C5:7A:37:87:82 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/y5rOxga93Fv1iu-3x7myxXo3h4I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.171.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:3d:04:6c:9e:a6:f0:e9:95:8c:c7:7a:fd:48:e4:e7:99:38: c4:05:a6:67:15:f3:7c:d5:8b:b4:7f:ab:57:ff:11:ae:e8:d2: 5d:d2:7c:ae:aa:6e:6f:68:b7:6d:a1:8e:18:85:a8:24:dd:b1: 4f:6e:31:d2:00:e9:ec:80:1c:bf:3f:8f:5c:7c:b3:4d:50:06: d5:86:ac:9a:8a:10:b6:23:95:05:ab:79:8b:b1:91:2f:93:19: 10:2a:69:00:df:db:cd:01:88:d2:b3:19:73:1a:cb:bd:c2:b4: 6a:8a:f4:56:6d:62:42:8e:fa:53:20:ce:ab:47:9f:0a:48:19: f5:ce:74:f8:a7:ff:d5:c9:a1:34:b1:4c:8b:29:4f:d6:2b:02: 0e:1a:ce:38:97:a2:5c:09:13:02:d1:43:62:90:a7:ba:c9:8c: 60:37:bf:7d:7a:1a:aa:8e:53:5b:c1:00:3e:fa:32:eb:1c:29: d2:a4:c3:49:56:40:b3:99:36:f3:60:73:f3:da:14:07:76:40: 8d:4e:3f:57:ed:ce:3a:14:ae:d1:e0:6c:ac:1a:01:ed:a5:fb: f7:3c:e5:f4:a3:97:e4:c7:5d:5d:e6:62:dc:56:95:92:95:17: 33:2b:75:c7:dd:c8:38:ae:6d:4f:21:e8:f7:9b:57:4a:83:93: 25:4d:46:35 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFHkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENCOUFDRUM2MDZCRERD NUJGNThBRUZCN0M3QjlCMkM1N0EzNzg3ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtCvQV6RvbM5BIrnEwfoJm0r9Y+vKZQ4h/SQ55PG+2d+nyKvBY brYX/vmjFEO/0S4ha4UzmMTZlFWOMG4T9lCZ4i4fbm5RVVkVP5vFDsRwJ3hUShFb BapLLy7CDXgRsxKIUjISfirc7YT8MB3HihbLQFLEWUGyMPdltmCK8Yn1jcrKJ/rU qjcTx6Rz7cNXm05LrILFHonljvcDc8AUc8qSExwWAFlt8CXyyrxaxCszRf5EsX5M X5tXz+cLaddclPGZb2x6qF6r6kOYpJ85kDhmAsRX5kWnmRIDHHZztp8UJCWXxY2H /PF0tJyz3KeTLa47CzB4RsASg5X9Md9BCyqlAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUy5rOxga93Fv1iu+3x7myxXo3h4IwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQveTVyT3hnYTkzRnYxaXUt M3g3bXl4WG8zaDRJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHqzANBgkqhkiG9w0BAQsFAAOCAQEADj0EbJ6m8OmVjMd6/Ujk55k4xAWmZxXz fNWLtH+rV/8RrujSXdJ8rqpub2i3baGOGIWoJN2xT24x0gDp7IAcvz+PXHyzTVAG 1YasmooQtiOVBat5i7GRL5MZECppAN/bzQGI0rMZcxrLvcK0aor0Vm1iQo76UyDO q0efCkgZ9c50+Kf/1cmhNLFMiylP1isCDhrOOJeiXAkTAtFDYpCnusmMYDe/fXoa qo5TW8EAPvoy6xwp0qTDSVZAs5k282Bz89oUB3ZAjU4/V+3OOhSu0eBsrBoB7aX7 9zzl9KOX5MddXeZi3FaVkpUXMyt1x93IOK5tTyHo95tXSoOTJU1GNQ== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:32 2025 by rpki-client