$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Jtct3j9TLiQzwNV3ljWmDzpLQ9E.roa File: Jtct3j9TLiQzwNV3ljWmDzpLQ9E.roa (raw, json) Hash identifier: vBoE27n4l/FEoxcZbTxE0wp+yrC21um5wVt3ZhWHCwY= Subject key identifier: 26:D7:2D:DE:3F:53:2E:24:33:C0:D5:77:96:35:A6:0F:3A:4B:43:D1 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 12EB Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Jtct3j9TLiQzwNV3ljWmDzpLQ9E.roa Signing time: Mon 10 Feb 2025 14:08:54 +0000 ROA not before: Mon 10 Feb 2025 14:08:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131634 IP address blocks: 60.199.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4843 (0x12eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:08:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=26D72DDE3F532E2433C0D5779635A60F3A4B43D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:87:cb:4d:f4:18:49:a7:66:8f:8b:cb:63:ee: 69:08:42:67:ca:ce:f9:1f:86:8d:d6:16:6a:6f:f4: 75:bd:27:03:d6:54:a0:1f:9b:22:fb:58:c1:6f:4c: fa:ac:0c:dd:0a:12:9f:f9:b6:c8:e3:fb:07:6d:47: f6:4c:29:0b:d9:9d:44:93:7d:84:b4:dd:bc:df:1b: 25:03:6c:43:87:58:58:9b:ca:a3:55:ba:0e:d0:30: 38:07:cf:3e:ee:3d:7e:d7:f5:4e:e6:1b:6a:a9:bb: 13:1a:33:b0:71:81:22:00:b0:e4:b9:d1:73:2a:aa: 9e:10:01:21:3e:c4:34:fa:20:32:ff:94:b1:bd:9a: fe:8a:f3:ad:91:70:bb:fc:95:05:6f:cc:bb:f9:f3: 94:6e:61:ec:ce:80:82:de:75:63:c4:8a:e3:2d:4e: 30:4d:80:4a:a7:d0:af:04:af:7f:6c:ab:02:e7:23: 4e:58:33:b4:36:84:ad:27:b1:e5:61:bb:14:8b:a1: b5:b2:87:f9:a0:00:8b:01:6d:b5:ef:a3:91:82:6f: ba:eb:3f:50:8a:e0:08:80:55:26:c5:53:16:5d:50: ca:a6:76:5b:ef:d9:fd:c9:48:cf:6a:02:40:05:6c: 8d:68:ac:74:f7:e9:e4:72:da:5f:60:e3:ea:64:86: 2c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:D7:2D:DE:3F:53:2E:24:33:C0:D5:77:96:35:A6:0F:3A:4B:43:D1 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Jtct3j9TLiQzwNV3ljWmDzpLQ9E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.50.0/24 Signature Algorithm: sha256WithRSAEncryption 45:61:f8:6f:7f:16:b2:2f:6e:26:5b:a7:a1:74:62:45:76:f2: aa:b2:a2:fb:fc:9b:53:8d:5f:4c:03:fa:37:59:59:bd:ab:fa: b6:8a:f7:bf:e4:97:e7:5c:ec:d9:32:f0:2e:d7:8a:f7:82:80: e1:30:58:37:f7:0c:c8:49:ce:1c:a5:40:22:34:f2:98:63:00: 7e:54:a9:29:35:ea:65:d8:8d:ac:23:6d:4d:bd:08:36:86:3e: 83:04:7f:d0:48:c8:e7:ad:e8:5c:8d:3d:22:36:18:04:17:3a: 00:13:e3:62:a8:07:a7:8d:1a:bb:49:43:fd:25:a0:33:dd:7a: 79:8e:4b:de:e8:cb:05:e1:9d:08:54:9b:cd:35:bf:19:ef:e9: d0:82:42:0a:dc:6f:63:d7:db:e3:ed:38:35:01:d7:67:ec:87: d7:fe:de:32:57:1d:a0:38:f3:46:b5:40:43:f1:32:19:88:1d: 18:66:f0:e9:20:83:18:16:84:35:5a:68:d2:0e:10:cf:e2:5d: 32:9f:6c:93:43:0c:62:cd:4f:9f:11:a2:7d:13:86:30:37:6c: cf:58:08:31:2c:79:e9:1a:af:b7:ec:ef:73:28:f0:1f:be:fa: 1e:45:22:2f:12:29:4b:4b:3a:2a:47:a9:f8:60:0c:29:f0:37: 19:2d:c4:e1 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEuswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA4NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI2RDcyRERFM0Y1MzJF MjQzM0MwRDU3Nzk2MzVBNjBGM0E0QjQzRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGh8tN9BhJp2aPi8tj7mkIQmfKzvkfho3WFmpv9HW9JwPWVKAf myL7WMFvTPqsDN0KEp/5tsjj+wdtR/ZMKQvZnUSTfYS03bzfGyUDbEOHWFibyqNV ug7QMDgHzz7uPX7X9U7mG2qpuxMaM7BxgSIAsOS50XMqqp4QASE+xDT6IDL/lLG9 mv6K862RcLv8lQVvzLv585RuYezOgILedWPEiuMtTjBNgEqn0K8Er39sqwLnI05Y M7Q2hK0nseVhuxSLobWyh/mgAIsBbbXvo5GCb7rrP1CK4AiAVSbFUxZdUMqmdlvv 2f3JSM9qAkAFbI1orHT36eRy2l9g4+pkhiw9AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUJtct3j9TLiQzwNV3ljWmDzpLQ9EwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSnRjdDNqOVRMaVF6d05W M2xqV21EenBMUTlFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHMjANBgkqhkiG9w0BAQsFAAOCAQEARWH4b38Wsi9uJlunoXRiRXbyqrKi+/yb U41fTAP6N1lZvav6tor3v+SX51zs2TLwLteK94KA4TBYN/cMyEnOHKVAIjTymGMA flSpKTXqZdiNrCNtTb0INoY+gwR/0EjI563oXI09IjYYBBc6ABPjYqgHp40au0lD /SWgM916eY5L3ujLBeGdCFSbzTW/Ge/p0IJCCtxvY9fb4+04NQHXZ+yH1/7eMlcd oDjzRrVAQ/EyGYgdGGbw6SCDGBaENVpo0g4Qz+JdMp9sk0MMYs1PnxGifROGMDds z1gIMSx56Rqvt+zvcyjwH776HkUiLxIpS0s6Kkep+GAMKfA3GS3E4Q== -----END CERTIFICATE-----Generated at Tue Apr 8 17:01:53 2025 by rpki-client