$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WKI5Ao0yGbgvLC9bcZxTuhvCqFU.roa File: WKI5Ao0yGbgvLC9bcZxTuhvCqFU.roa (raw, json) Hash identifier: RbpPsFLiZUgOctrpY+qGlVtxkY7RfuL6BvwClvWLqRY= Subject key identifier: 58:A2:39:02:8D:32:19:B8:2F:2C:2F:5B:71:9C:53:BA:1B:C2:A8:55 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 137C Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WKI5Ao0yGbgvLC9bcZxTuhvCqFU.roa Signing time: Mon 10 Feb 2025 14:09:30 +0000 ROA not before: Mon 10 Feb 2025 14:09:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 175.96.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4988 (0x137c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=58A239028D3219B82F2C2F5B719C53BA1BC2A855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:71:0e:26:ab:59:cf:ca:a5:02:44:5e:88:d7: 7e:c0:4f:47:64:35:dd:ba:d0:88:92:bd:49:c1:b4: e4:bd:3a:6e:95:ef:02:1f:49:ed:67:76:34:52:31: 08:52:4f:50:9f:b2:d6:e4:2a:8f:43:bc:14:eb:01: 22:ef:ee:09:13:24:f7:c1:e5:f3:7a:9c:66:ea:ba: 86:02:6f:64:cf:06:22:a4:53:ec:b3:c1:e2:c4:16: f5:78:67:0b:ea:3a:33:f5:af:43:fb:56:b7:4d:64: f1:9e:75:96:95:96:75:36:eb:e7:b6:fb:67:bb:b7: 0f:42:57:85:dc:72:f6:3d:0a:7c:02:8a:4d:ef:7f: 55:d9:9b:3b:b1:d0:d3:50:32:4f:cb:bf:31:84:7f: e9:d2:f2:8c:e2:13:bf:92:4c:9f:b0:a2:d6:4a:4a: 8d:86:be:c9:bd:21:ea:da:87:1c:fd:78:80:0f:93: ec:e2:ed:bf:58:78:a7:4a:8a:58:b3:d7:68:23:f7: 90:d5:c8:56:13:06:e9:08:4c:34:31:7c:fd:74:20: 3b:2a:3e:e8:b1:26:ee:e3:29:42:cc:42:df:25:3c: d6:36:f0:fa:9d:ae:36:b1:3e:5d:9b:1b:1b:5f:0e: ee:5e:0f:66:81:f0:19:64:8d:a7:60:f4:bc:9b:23: b9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:A2:39:02:8D:32:19:B8:2F:2C:2F:5B:71:9C:53:BA:1B:C2:A8:55 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WKI5Ao0yGbgvLC9bcZxTuhvCqFU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.96.0.0/16 Signature Algorithm: sha256WithRSAEncryption 62:4d:0b:7f:20:3e:45:05:fd:64:cc:56:65:2d:0a:b4:5b:09: e8:12:fd:d5:bf:68:92:88:c8:19:a8:fc:bf:34:de:9e:4e:aa: 79:b2:cd:f3:50:e0:98:59:15:7a:ce:44:2a:d1:20:e2:d7:87: ee:76:42:ab:11:be:26:51:e8:44:fc:92:7d:23:1e:65:71:6f: 18:b6:4f:50:de:54:84:41:48:d4:b3:8a:97:d8:40:3a:c0:00: ce:67:66:45:f8:2a:5b:6b:18:3b:b6:67:0e:8a:1c:c8:3f:5d: 1b:01:d6:bb:6a:9c:a5:1e:22:43:3b:83:fb:be:78:4e:78:7a: 5c:de:9b:da:e7:83:6f:95:0c:88:5a:ce:80:bf:8d:62:c7:00: 8f:8f:0c:34:5f:2e:1c:40:17:e4:95:0d:d6:23:48:91:76:bf: 8f:36:93:26:75:84:d5:95:3d:2f:c7:43:e1:64:47:b0:71:a0: 49:ed:17:b3:35:e1:88:e3:8b:3d:e3:08:04:e0:42:e4:86:55: 80:62:b6:9c:2c:d1:98:46:ca:69:8f:ef:c1:ae:ed:3f:52:5f: 2c:42:4c:e7:43:f0:3b:ff:32:e6:39:8e:27:36:17:b6:c7:f6: d0:51:eb:c8:6e:fc:4d:cf:3d:77:8a:13:cb:5d:a0:f4:ff:a8: 3f:3e:fb:e2 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICE3wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU4QTIzOTAyOEQzMjE5 QjgyRjJDMkY1QjcxOUM1M0JBMUJDMkE4NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXcQ4mq1nPyqUCRF6I137AT0dkNd260IiSvUnBtOS9Om6V7wIf Se1ndjRSMQhST1CfstbkKo9DvBTrASLv7gkTJPfB5fN6nGbquoYCb2TPBiKkU+yz weLEFvV4ZwvqOjP1r0P7VrdNZPGedZaVlnU26+e2+2e7tw9CV4XccvY9CnwCik3v f1XZmzux0NNQMk/LvzGEf+nS8oziE7+STJ+wotZKSo2Gvsm9Ierahxz9eIAPk+zi 7b9YeKdKiliz12gj95DVyFYTBukITDQxfP10IDsqPuixJu7jKULMQt8lPNY28Pqd rjaxPl2bGxtfDu5eD2aB8Blkjadg9LybI7lJAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUWKI5Ao0yGbgvLC9bcZxTuhvCqFUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvV0tJNUFvMHlHYmd2TEM5 YmNaeFR1aHZDcUZVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AK9gMA0GCSqGSIb3DQEBCwUAA4IBAQBiTQt/ID5FBf1kzFZlLQq0WwnoEv3Vv2iS iMgZqPy/NN6eTqp5ss3zUOCYWRV6zkQq0SDi14fudkKrEb4mUehE/JJ9Ix5lcW8Y tk9Q3lSEQUjUs4qX2EA6wADOZ2ZF+Cpbaxg7tmcOihzIP10bAda7apylHiJDO4P7 vnhOeHpc3pva54NvlQyIWs6Av41ixwCPjww0Xy4cQBfklQ3WI0iRdr+PNpMmdYTV lT0vx0PhZEewcaBJ7RezNeGI44s94wgE4ELkhlWAYracLNGYRsppj+/Bru0/Ul8s QkznQ/A7/zLmOY4nNhe2x/bQUevIbvxNzz13ihPLXaD0/6g/Pvvi -----END CERTIFICATE-----Generated at Tue Apr 8 16:54:02 2025 by rpki-client