$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zpKBKkv_yh-drslPbhLRX1BPu9E.roa File: zpKBKkv_yh-drslPbhLRX1BPu9E.roa (raw, json) Hash identifier: ro31BhSplHXqtiMKqRTQMsYujYmqXW7IhXFc7jfCNE8= Subject key identifier: CE:92:81:2A:4B:FF:CA:1F:9D:AE:C9:4F:6E:12:D1:5F:50:4F:BB:D1 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14A4 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zpKBKkv_yh-drslPbhLRX1BPu9E.roa Signing time: Fri 22 Aug 2025 08:54:39 +0000 ROA not before: Fri 22 Aug 2025 08:54:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4662 IP address blocks: 210.67.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5284 (0x14a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CE92812A4BFFCA1F9DAEC94F6E12D15F504FBBD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:48:f9:0e:68:2a:ce:ab:8a:52:53:fa:66:8b: 42:5e:20:96:0b:a0:f4:21:ea:aa:b0:b3:13:88:2a: 84:c9:e7:ab:39:ea:ef:2b:5a:69:71:82:7e:70:bc: fd:73:0a:f4:99:14:6c:75:3d:d7:62:fd:76:4b:9f: af:15:6a:75:af:eb:be:28:47:61:ee:29:59:25:d2: 80:17:57:0a:37:8b:a7:f3:45:4d:18:dd:a0:f3:2c: ce:52:65:85:69:1b:0f:3d:24:4a:80:8c:65:e6:a4: 78:4f:6c:ba:c9:42:87:2b:91:e1:3e:f7:99:e5:b1: 4c:8b:f7:d7:71:5e:97:2d:47:a8:66:fb:7d:4b:53: a2:19:03:13:ab:1f:e9:45:58:33:44:66:02:df:98: df:fe:e2:89:f1:08:d3:79:f9:c4:39:b5:59:e3:b4: fa:c5:f5:92:f5:85:10:8d:0e:04:21:93:b0:43:cc: a6:ef:cc:80:a5:b3:21:2a:f5:4f:65:19:2e:0d:7a: 62:63:e4:9d:2e:8a:5d:79:54:43:9f:5a:24:8c:56: cd:d5:7e:c2:c1:c9:97:c7:fc:6d:aa:a0:8f:d0:be: 1a:ff:27:40:8d:eb:6b:89:d9:b2:a2:68:19:25:df: 9a:99:d3:52:67:62:a3:76:04:29:cc:5f:73:51:e1: d7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:92:81:2A:4B:FF:CA:1F:9D:AE:C9:4F:6E:12:D1:5F:50:4F:BB:D1 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zpKBKkv_yh-drslPbhLRX1BPu9E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.160.0/19 Signature Algorithm: sha256WithRSAEncryption 46:c9:91:16:a0:3c:f2:a5:c0:03:93:12:2b:bc:8e:8b:a8:ae: 68:e5:d2:c9:50:86:8d:72:04:32:ba:90:2b:bc:a9:e8:4c:6b: 6c:34:44:83:43:74:b4:22:86:41:0e:b8:d3:50:78:6b:9d:a7: 85:fa:ee:80:60:3b:22:8f:4b:9a:49:72:c4:d4:29:0c:95:ad: bf:46:88:fb:fb:41:c0:31:58:e9:5e:10:ab:aa:cf:63:7d:10: c2:67:02:a9:62:17:b1:2b:71:41:4a:e4:92:be:16:a0:cc:df: 3f:f3:5d:30:7d:9f:13:ba:a8:89:9d:a6:29:31:f4:14:42:cc: 6f:b9:a7:34:ee:96:44:ba:49:af:d4:ec:be:ea:63:60:69:f6: 0c:5f:b4:0b:a2:c4:c6:f5:4d:41:90:96:fe:9c:38:8d:d2:c2: 8e:54:48:c6:a7:be:e3:8e:7b:8f:5c:8f:0b:24:a8:86:27:7b: dc:62:2e:f6:f9:b2:15:87:7d:10:13:06:5d:99:bd:8b:e2:01: ae:18:44:66:b9:3c:c5:b7:a6:4b:7a:b0:c7:4d:ec:e3:b1:2d: 5f:a3:1d:9b:b9:66:da:cb:1e:a1:b6:4f:2e:c2:d8:6d:23:d2: 0c:90:42:00:61:4f:66:eb:f8:81:7e:6d:35:bc:3f:07:ed:71: 63:34:13:5b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFKQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENFOTI4MTJBNEJGRkNB MUY5REFFQzk0RjZFMTJEMTVGNTA0RkJCRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9SPkOaCrOq4pSU/pmi0JeIJYLoPQh6qqwsxOIKoTJ56s56u8r Wmlxgn5wvP1zCvSZFGx1Pddi/XZLn68VanWv674oR2HuKVkl0oAXVwo3i6fzRU0Y 3aDzLM5SZYVpGw89JEqAjGXmpHhPbLrJQocrkeE+95nlsUyL99dxXpctR6hm+31L U6IZAxOrH+lFWDNEZgLfmN/+4onxCNN5+cQ5tVnjtPrF9ZL1hRCNDgQhk7BDzKbv zIClsyEq9U9lGS4NemJj5J0uil15VEOfWiSMVs3VfsLByZfH/G2qoI/Qvhr/J0CN 62uJ2bKiaBkl35qZ01JnYqN2BCnMX3NR4dcDAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUzpKBKkv/yh+drslPbhLRX1BPu9EwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvenBLQktrdl95aC1kcnNs UGJoTFJYMUJQdTlFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdJDoDANBgkqhkiG9w0BAQsFAAOCAQEARsmRFqA88qXAA5MSK7yOi6iuaOXSyVCG jXIEMrqQK7yp6ExrbDREg0N0tCKGQQ6401B4a52nhfrugGA7Io9LmklyxNQpDJWt v0aI+/tBwDFY6V4Qq6rPY30QwmcCqWIXsStxQUrkkr4WoMzfP/NdMH2fE7qoiZ2m KTH0FELMb7mnNO6WRLpJr9TsvupjYGn2DF+0C6LExvVNQZCW/pw4jdLCjlRIxqe+ 4457j1yPCySohid73GIu9vmyFYd9EBMGXZm9i+IBrhhEZrk8xbemS3qwx03s47Et X6Mdm7lm2sseobZPLsLYbSPSDJBCAGFPZuv4gX5tNbw/B+1xYzQTWw== -----END CERTIFICATE-----Generated at Sun Aug 24 06:52:34 2025 by rpki-client