$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Gehe6CtXIlNcPhaa8lDQmOFcgsM.roa File: Gehe6CtXIlNcPhaa8lDQmOFcgsM.roa (raw, json) Hash identifier: KIv5tL+d4+xmIIaDw7gfWndUZ6E/VU7w7FnM+txpmTw= Subject key identifier: 19:E8:5E:E8:2B:57:22:53:5C:3E:16:9A:F2:50:D0:98:E1:5C:82:C3 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 131C Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Gehe6CtXIlNcPhaa8lDQmOFcgsM.roa Signing time: Mon 10 Feb 2025 14:09:06 +0000 ROA not before: Mon 10 Feb 2025 14:09:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131628 IP address blocks: 175.97.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4892 (0x131c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:06 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=19E85EE82B5722535C3E169AF250D098E15C82C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:95:66:99:c7:9e:22:76:25:dd:d4:6f:90:d2: 2c:1c:43:65:af:d2:77:a6:76:cb:9e:1c:b7:7d:cb: 08:4c:ca:84:76:19:d5:05:cb:f0:b7:d3:6e:16:3b: 1a:01:5c:0f:5a:69:56:42:e4:63:c8:df:4f:7f:11: 09:f1:95:be:a8:cc:59:50:0d:54:90:9e:d2:7f:0e: 41:ba:0e:bf:cf:78:97:1a:be:eb:99:29:8a:73:02: 31:7c:c9:de:2a:66:d9:39:9b:3a:0c:ef:e2:b8:9c: bb:d8:01:cf:24:d1:38:96:9a:ce:9b:fd:65:6e:6c: e4:73:5e:07:d7:4b:3e:b0:5a:a0:6d:40:c5:3c:60: 3d:09:29:ea:d1:65:01:cf:bd:b8:17:08:a8:3b:fe: 9a:84:81:2d:3d:00:39:c5:94:fa:67:ce:d8:c6:12: d7:54:60:d7:09:ea:7b:bd:ab:4b:cf:d8:b9:b1:fc: 05:e8:d9:61:30:e0:ba:2e:b3:42:e2:b1:0c:6a:85: 03:20:b1:dd:c8:6c:47:7a:ea:fa:c5:ad:f1:bc:8e: 6f:f8:d6:c3:9f:ff:5e:b2:b9:53:f5:b3:f6:4e:89: cd:1e:dd:d6:2c:c1:33:e2:51:35:ac:1a:b3:94:40: f7:e8:29:bc:7a:76:92:cc:ad:98:8e:05:69:ed:4d: f3:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:E8:5E:E8:2B:57:22:53:5C:3E:16:9A:F2:50:D0:98:E1:5C:82:C3 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Gehe6CtXIlNcPhaa8lDQmOFcgsM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.97.128.0/18 Signature Algorithm: sha256WithRSAEncryption 2d:15:aa:0e:93:61:ac:cb:e3:ee:ee:7b:6b:a2:cd:0d:7b:83: 4f:80:48:84:d0:51:29:f7:2e:68:41:60:a7:24:31:5b:9c:91: 7e:9f:e2:e5:93:73:06:7c:0f:bf:2b:09:99:9e:eb:66:54:53: b7:ec:7e:f6:6a:0d:dd:ff:e9:dd:74:2f:e3:aa:1c:fb:46:8b: ef:d9:d1:3f:26:b5:87:ef:14:79:38:3f:a2:fc:c5:10:4e:f0: c9:02:db:84:e5:39:a4:96:7a:fd:fd:35:45:b2:64:04:22:a5: df:89:39:52:26:6a:18:80:d0:1f:9e:a2:f6:25:45:46:3c:df: 8d:34:66:87:3e:8d:5a:40:ee:29:ec:a4:82:13:e8:47:85:3c: 89:f7:50:7e:49:35:f9:c5:6b:37:86:aa:6a:5e:82:91:0b:b8: e8:56:d9:f8:3a:ce:af:92:2d:ad:eb:a1:16:0c:a0:ac:66:1b: df:79:26:e4:53:05:38:85:9a:bd:d3:a3:89:78:7b:bd:24:6a: 7f:16:c6:93:17:05:08:8f:52:76:d5:ed:79:de:a0:e2:90:03: 31:cd:04:d6:97:18:6a:77:56:70:24:94:d1:84:5a:4a:9c:5b: f9:7b:ac:67:04:64:9d:d4:bc:b7:6c:65:9e:85:50:5e:30:41: 63:88:2e:91 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICExwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE5RTg1RUU4MkI1NzIy NTM1QzNFMTY5QUYyNTBEMDk4RTE1QzgyQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvlWaZx54idiXd1G+Q0iwcQ2Wv0nemdsueHLd9ywhMyoR2GdUF y/C3024WOxoBXA9aaVZC5GPI309/EQnxlb6ozFlQDVSQntJ/DkG6Dr/PeJcavuuZ KYpzAjF8yd4qZtk5mzoM7+K4nLvYAc8k0TiWms6b/WVubORzXgfXSz6wWqBtQMU8 YD0JKerRZQHPvbgXCKg7/pqEgS09ADnFlPpnztjGEtdUYNcJ6nu9q0vP2Lmx/AXo 2WEw4Lous0LisQxqhQMgsd3IbEd66vrFrfG8jm/41sOf/16yuVP1s/ZOic0e3dYs wTPiUTWsGrOUQPfoKbx6dpLMrZiOBWntTfOvAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUGehe6CtXIlNcPhaa8lDQmOFcgsMwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvR2VoZTZDdFhJbE5jUGhh YThsRFFtT0ZjZ3NNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Bq9hgDANBgkqhkiG9w0BAQsFAAOCAQEALRWqDpNhrMvj7u57a6LNDXuDT4BIhNBR KfcuaEFgpyQxW5yRfp/i5ZNzBnwPvysJmZ7rZlRTt+x+9moN3f/p3XQv46oc+0aL 79nRPya1h+8UeTg/ovzFEE7wyQLbhOU5pJZ6/f01RbJkBCKl34k5UiZqGIDQH56i 9iVFRjzfjTRmhz6NWkDuKeykghPoR4U8ifdQfkk1+cVrN4aqal6CkQu46FbZ+DrO r5ItreuhFgygrGYb33km5FMFOIWavdOjiXh7vSRqfxbGkxcFCI9SdtXted6g4pAD Mc0E1pcYandWcCSU0YRaSpxb+XusZwRkndS8t2xlnoVQXjBBY4gukQ== -----END CERTIFICATE-----Generated at Tue Apr 8 16:51:38 2025 by rpki-client