$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z5XFQIhABUdJGtnN7ghSTbrDf00.roa File: z5XFQIhABUdJGtnN7ghSTbrDf00.roa (raw, json) Hash identifier: DlOuRgob2IEvwdqgbbnv0q4Ja8n5acE5OCgytni4R7k= Subject key identifier: CF:95:C5:40:88:40:05:47:49:1A:D9:CD:EE:08:52:4D:BA:C3:7F:4D Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14C3 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z5XFQIhABUdJGtnN7ghSTbrDf00.roa Signing time: Fri 22 Aug 2025 08:54:46 +0000 ROA not before: Fri 22 Aug 2025 08:54:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 60.199.193.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5315 (0x14c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CF95C54088400547491AD9CDEE08524DBAC37F4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:aa:8b:f6:2e:92:bd:e8:9a:94:ad:de:bd:f4: 47:56:53:50:5e:40:9b:1e:ef:56:4f:c3:7e:15:82: 7a:cd:bd:d2:80:a2:88:4f:39:59:df:a4:9a:74:b8: 5f:b8:da:93:f0:e8:b1:e1:90:13:ce:62:b1:54:89: 9b:d2:59:84:60:bd:86:a8:ea:7c:e1:17:40:98:94: 29:d3:05:93:53:b7:14:f9:e3:37:cb:0b:d5:4b:8f: f6:22:24:4b:a5:7c:52:80:18:4b:01:f6:ba:9a:54: ca:dc:d9:16:37:65:8a:18:0d:c1:77:30:54:22:48: 2f:e2:56:3d:32:b8:02:7c:c5:b7:4e:bb:fa:ea:97: 49:af:05:4d:0a:c0:a8:f2:6d:37:a6:43:3c:8a:15: 9a:75:08:d4:97:3b:5c:d9:c2:0b:e8:0a:31:ce:d5: f6:f1:5c:f9:81:bd:43:53:54:0f:ac:ee:f8:fc:8f: 4b:95:35:36:6f:0a:89:65:f1:98:b6:df:2f:cd:87: d9:46:53:37:4a:db:4c:a5:20:09:85:6c:29:a2:85: b8:14:51:d4:22:a1:28:ef:a8:19:06:6d:84:60:4d: e3:e9:16:37:1a:7f:28:ef:7e:c2:59:a0:de:59:f8: 1d:60:be:0a:99:cf:2b:bc:99:5b:7f:89:a7:21:44: ad:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:95:C5:40:88:40:05:47:49:1A:D9:CD:EE:08:52:4D:BA:C3:7F:4D X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z5XFQIhABUdJGtnN7ghSTbrDf00.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.193.0/24 Signature Algorithm: sha256WithRSAEncryption 05:4e:ba:5d:54:a3:d7:ac:01:fc:49:5a:a3:bb:d8:69:b6:72: 6f:4b:a8:e5:c5:f9:7e:37:88:4a:f3:69:e2:3c:98:d8:d2:5a: aa:d9:00:53:56:68:bf:00:b8:e3:0e:c7:e1:f9:6c:21:5a:53: 04:1b:d4:62:0d:2b:63:0f:a2:f1:36:c2:99:74:01:83:28:c7: c0:03:5c:56:8e:ca:dc:4e:2a:0f:31:c7:76:27:fc:e1:e1:ef: 6e:06:c6:25:35:e3:cd:c9:9d:85:2f:f8:34:4f:1c:39:7e:7b: ce:34:45:c5:4e:6b:3d:66:d6:8a:1e:19:c0:db:cd:21:ee:f9: 63:94:1f:89:6a:f9:02:f8:70:c3:1c:ce:3c:1c:95:7f:1b:cf: 91:42:c0:e8:cb:8a:1b:44:19:7e:7d:3c:44:a0:11:94:8d:10: 01:b0:d9:a8:d3:10:74:72:09:4f:9a:0a:c2:2b:a7:db:ee:bf: cf:9d:4c:db:5f:e9:9b:37:46:ab:d9:0e:3f:2d:0e:28:fd:1c: 6e:a7:e5:4f:5a:6d:45:78:2b:66:78:26:cb:38:a7:4a:e8:ea: 72:31:86:99:cd:a1:15:ee:cd:fb:9d:69:0b:09:2f:14:4b:33: ba:2a:f2:35:df:f0:9a:6b:61:2e:b2:1c:f1:93:02:73:10:db: 51:f8:4f:f4 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFMMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENGOTVDNTQwODg0MDA1 NDc0OTFBRDlDREVFMDg1MjREQkFDMzdGNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeqov2LpK96JqUrd699EdWU1BeQJse71ZPw34VgnrNvdKAoohP OVnfpJp0uF+42pPw6LHhkBPOYrFUiZvSWYRgvYao6nzhF0CYlCnTBZNTtxT54zfL C9VLj/YiJEulfFKAGEsB9rqaVMrc2RY3ZYoYDcF3MFQiSC/iVj0yuAJ8xbdOu/rq l0mvBU0KwKjybTemQzyKFZp1CNSXO1zZwgvoCjHO1fbxXPmBvUNTVA+s7vj8j0uV NTZvColl8Zi23y/Nh9lGUzdK20ylIAmFbCmihbgUUdQioSjvqBkGbYRgTePpFjca fyjvfsJZoN5Z+B1gvgqZzyu8mVt/iachRK39AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUz5XFQIhABUdJGtnN7ghSTbrDf00wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvejVYRlFJaEFCVWRKR3Ru TjdnaFNUYnJEZjAwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHwTANBgkqhkiG9w0BAQsFAAOCAQEABU66XVSj16wB/Elao7vYabZyb0uo5cX5 fjeISvNp4jyY2NJaqtkAU1ZovwC44w7H4flsIVpTBBvUYg0rYw+i8TbCmXQBgyjH wANcVo7K3E4qDzHHdif84eHvbgbGJTXjzcmdhS/4NE8cOX57zjRFxU5rPWbWih4Z wNvNIe75Y5QfiWr5AvhwwxzOPByVfxvPkULA6MuKG0QZfn08RKARlI0QAbDZqNMQ dHIJT5oKwiun2+6/z51M21/pmzdGq9kOPy0OKP0cbqflT1ptRXgrZngmyzinSujq cjGGmc2hFe7N+51pCwkvFEszuiryNd/wmmthLrIc8ZMCcxDbUfhP9A== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:29 2025 by rpki-client