$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9xUk33F4yvarwB_PowofpNUvsdg.roa File: 9xUk33F4yvarwB_PowofpNUvsdg.roa (raw, json) Hash identifier: 7XSk7Pck2I2/0d9k65xhIOkzfA/DXQ1WrNxDJjHVRtQ= Subject key identifier: F7:15:24:DF:71:78:CA:F6:AB:C0:1F:CF:A3:0A:1F:A4:D5:2F:B1:D8 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 132C Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9xUk33F4yvarwB_PowofpNUvsdg.roa Signing time: Mon 10 Feb 2025 14:09:12 +0000 ROA not before: Mon 10 Feb 2025 14:09:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4662 IP address blocks: 203.105.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4908 (0x132c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F71524DF7178CAF6ABC01FCFA30A1FA4D52FB1D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:10:c5:43:9e:b5:13:4d:d0:c1:07:b4:ed:4c: 32:21:3d:97:77:ee:06:89:2d:92:04:fa:bb:ef:2c: 0f:44:63:9f:2a:f3:df:9e:65:51:6e:c2:27:9b:5f: 3e:44:40:96:d9:d1:15:67:09:dc:60:78:90:86:4e: 65:bc:85:de:66:79:74:77:94:ea:51:72:f6:1a:99: 43:eb:68:03:c3:f7:87:52:83:f3:13:71:40:cf:de: 49:b9:48:8d:5e:fb:6d:76:a0:65:74:3f:af:5e:b8: f1:9e:b0:fb:87:b3:11:54:aa:81:03:43:9b:ff:a4: 74:80:f4:4e:bc:05:5f:b4:83:fb:bc:0e:f6:2b:e1: bb:73:e7:43:72:28:de:dc:1f:50:73:75:3f:f7:dd: 7f:aa:99:49:d7:8d:39:b1:9e:fb:ae:4c:c9:ae:fd: 7a:df:8b:0b:31:71:70:a0:f9:ca:2a:4d:17:84:0e: 92:bc:db:54:6f:4a:68:ec:a8:68:3f:8f:fd:ed:5b: 06:4d:00:83:54:71:5f:68:8f:31:e7:b3:45:ac:15: 0b:ed:ba:0b:45:15:49:51:c4:66:10:a4:87:b0:fe: 7b:83:a8:b9:e6:91:bd:53:e2:bb:69:d1:a4:3a:1c: 51:9b:eb:3a:6b:61:9d:7b:0d:a1:34:cc:cd:62:fd: 02:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:15:24:DF:71:78:CA:F6:AB:C0:1F:CF:A3:0A:1F:A4:D5:2F:B1:D8 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9xUk33F4yvarwB_PowofpNUvsdg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.105.224.0/19 Signature Algorithm: sha256WithRSAEncryption 71:06:80:0c:c6:51:e9:74:68:82:7d:e5:e1:59:c7:e9:bb:05: 89:35:23:03:1d:20:4a:7c:07:6c:d6:6d:28:18:c5:fb:96:b2: b5:9a:c3:e1:32:09:f0:6d:0b:ff:f9:ea:e2:fb:db:7a:7d:4c: 13:6c:1a:61:ce:dc:f9:b7:e3:2a:79:5d:fa:d3:e5:56:a2:74: 7b:45:55:7e:29:60:3d:8e:b9:52:83:77:b4:ef:e7:70:47:d0: f4:c4:59:de:fe:1a:1c:3d:35:e1:ba:96:c1:41:2d:2b:80:28: 7a:d3:22:8c:5d:47:d0:6e:7d:1d:d7:e4:63:04:b3:96:c5:7a: f5:b5:83:dd:48:48:8a:36:21:62:99:40:75:41:07:4a:04:2f: 47:9b:c5:5e:76:8c:5d:55:28:0a:9d:b2:e9:96:d1:ef:80:68: e4:01:14:e3:d6:97:3b:a7:b0:78:3b:d7:9d:40:c0:8d:4c:39: 43:ec:21:01:51:ef:ea:40:93:9e:6b:b0:f9:6c:dc:87:2d:ee: 1c:e8:67:eb:e9:7f:e1:99:d5:eb:17:e8:30:10:10:27:e7:c0: 49:c2:b5:d2:68:67:61:e0:97:6f:15:e0:22:b5:b1:84:a3:78: 19:ba:0a:05:25:50:6f:f0:ba:d8:26:f6:1b:df:d6:b2:85:d0: 92:36:73:ff -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEywwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY3MTUyNERGNzE3OENB RjZBQkMwMUZDRkEzMEExRkE0RDUyRkIxRDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1EMVDnrUTTdDBB7TtTDIhPZd37gaJLZIE+rvvLA9EY58q89+e ZVFuwiebXz5EQJbZ0RVnCdxgeJCGTmW8hd5meXR3lOpRcvYamUPraAPD94dSg/MT cUDP3km5SI1e+212oGV0P69euPGesPuHsxFUqoEDQ5v/pHSA9E68BV+0g/u8DvYr 4btz50NyKN7cH1BzdT/33X+qmUnXjTmxnvuuTMmu/XrfiwsxcXCg+coqTReEDpK8 21RvSmjsqGg/j/3tWwZNAINUcV9ojzHns0WsFQvtugtFFUlRxGYQpIew/nuDqLnm kb1T4rtp0aQ6HFGb6zprYZ17DaE0zM1i/QKRAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU9xUk33F4yvarwB/PowofpNUvsdgwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvOXhVazMzRjR5dmFyd0Jf UG93b2ZwTlV2c2RnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Bctp4DANBgkqhkiG9w0BAQsFAAOCAQEAcQaADMZR6XRogn3l4VnH6bsFiTUjAx0g SnwHbNZtKBjF+5aytZrD4TIJ8G0L//nq4vvben1ME2waYc7c+bfjKnld+tPlVqJ0 e0VVfilgPY65UoN3tO/ncEfQ9MRZ3v4aHD014bqWwUEtK4AoetMijF1H0G59Hdfk YwSzlsV69bWD3UhIijYhYplAdUEHSgQvR5vFXnaMXVUoCp2y6ZbR74Bo5AEU49aX O6eweDvXnUDAjUw5Q+whAVHv6kCTnmuw+Wzchy3uHOhn6+l/4ZnV6xfoMBAQJ+fA ScK10mhnYeCXbxXgIrWxhKN4GboKBSVQb/C62Cb2G9/WsoXQkjZz/w== -----END CERTIFICATE-----Generated at Tue Apr 8 16:59:08 2025 by rpki-client