$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/czwU6-1E2TrIa72Fo5oqvFpDxV8.roa File: czwU6-1E2TrIa72Fo5oqvFpDxV8.roa (raw, json) Hash identifier: dI4PsX/yPrIDUtQLZLXoHqJimARJt7qdlUQgJWznBzA= Subject key identifier: 73:3C:14:EB:ED:44:D9:3A:C8:6B:BD:85:A3:9A:2A:BC:5A:43:C5:5F Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1367 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/czwU6-1E2TrIa72Fo5oqvFpDxV8.roa Signing time: Mon 10 Feb 2025 14:09:26 +0000 ROA not before: Mon 10 Feb 2025 14:09:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3911 IP address blocks: 219.86.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4967 (0x1367) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=733C14EBED44D93AC86BBD85A39A2ABC5A43C55F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:74:a2:7d:f2:18:e6:55:fa:bf:4f:33:86:9d: ee:95:5e:3d:58:1c:12:5c:f6:06:b7:ee:fa:f0:94: 21:9f:58:ce:27:21:31:b4:72:b3:16:13:d3:46:01: b1:ce:71:a5:70:88:be:07:a7:a2:9f:0a:12:32:b8: d7:87:29:f4:a7:91:77:10:f4:89:42:31:53:69:7a: b8:8a:92:fa:b8:7b:b5:de:eb:d4:43:e9:5b:d3:84: e6:7d:b0:82:87:a9:c3:b4:aa:bf:09:7c:25:ec:2d: 07:1d:7e:dc:82:15:3b:4a:78:c2:32:b4:bf:4f:e3: 11:32:41:2c:0b:b8:82:c0:4d:58:df:71:e0:aa:37: 77:88:7d:05:f9:23:45:d3:57:e9:5c:a8:2b:f6:ce: f1:b2:97:cd:b4:d0:b4:99:6e:de:54:ff:fe:de:22: 2d:31:f8:7c:17:4e:82:04:44:c0:fa:cd:6d:6c:2d: 85:e5:42:23:04:d6:55:a8:34:0a:3d:4a:14:e3:48: 45:60:ba:09:08:0b:28:21:73:3f:2a:cb:1f:7d:26: 2c:b0:08:fd:c6:db:f4:f0:d3:1b:3d:94:5a:36:ec: 64:4c:7e:ee:55:5e:9d:d1:71:42:05:ce:2d:87:d6: bc:2f:3c:45:29:c3:16:42:03:52:3c:6e:e6:d6:d3: 9e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3C:14:EB:ED:44:D9:3A:C8:6B:BD:85:A3:9A:2A:BC:5A:43:C5:5F X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/czwU6-1E2TrIa72Fo5oqvFpDxV8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.86.93.0/24 Signature Algorithm: sha256WithRSAEncryption 81:54:a4:4b:64:b8:74:75:f7:82:62:e2:15:8e:cb:2b:2a:01: d4:55:80:e9:8f:1e:29:ec:1a:eb:00:49:1f:5f:e4:3d:e5:bd: a1:a1:6f:b3:68:92:9d:0c:62:c3:35:62:fb:2c:0b:91:73:4f: c9:0f:08:9d:e7:14:0a:c1:43:c8:47:0d:f3:38:64:d9:2b:ab: 6d:b0:f6:8e:57:56:8c:0c:75:21:2c:88:2d:e8:2a:e4:3b:01: 16:aa:1b:df:93:45:e8:c8:57:7e:d0:40:be:f6:a8:c0:77:ab: bf:47:b1:be:f5:2e:22:90:6d:50:15:e2:3f:50:9a:59:78:da: c6:49:7d:72:95:cf:3b:ce:15:d9:87:33:f0:e7:2c:4c:67:f5: 0a:e5:7b:50:8d:54:a0:2a:55:5e:79:15:8d:f3:1c:5d:f7:5e: 40:e9:63:eb:3c:3b:41:d2:03:d6:f3:7d:ef:55:a3:4b:6e:75: d2:fd:29:56:88:28:87:97:95:c3:90:32:b1:7d:fd:b0:3e:8c: fd:3e:f9:f6:74:35:06:08:29:89:97:9b:fc:ff:91:7e:d5:b2: 79:4a:56:90:55:d6:fa:7a:41:e2:15:d4:4f:8a:3c:fa:5f:a5: d7:71:ec:23:e2:e3:c8:94:6a:f9:02:fb:12:f2:e5:6e:73:6d: 5c:10:7d:7b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICE2cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDczM0MxNEVCRUQ0NEQ5 M0FDODZCQkQ4NUEzOUEyQUJDNUE0M0M1NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6dKJ98hjmVfq/TzOGne6VXj1YHBJc9ga37vrwlCGfWM4nITG0 crMWE9NGAbHOcaVwiL4Hp6KfChIyuNeHKfSnkXcQ9IlCMVNperiKkvq4e7Xe69RD 6VvThOZ9sIKHqcO0qr8JfCXsLQcdftyCFTtKeMIytL9P4xEyQSwLuILATVjfceCq N3eIfQX5I0XTV+lcqCv2zvGyl8200LSZbt5U//7eIi0x+HwXToIERMD6zW1sLYXl QiME1lWoNAo9ShTjSEVgugkICyghcz8qyx99JiywCP3G2/Tw0xs9lFo27GRMfu5V Xp3RcUIFzi2H1rwvPEUpwxZCA1I8bubW055RAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUczwU6+1E2TrIa72Fo5oqvFpDxV8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvY3p3VTYtMUUyVHJJYTcy Rm81b3F2RnBEeFY4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ANtWXTANBgkqhkiG9w0BAQsFAAOCAQEAgVSkS2S4dHX3gmLiFY7LKyoB1FWA6Y8e Kewa6wBJH1/kPeW9oaFvs2iSnQxiwzVi+ywLkXNPyQ8InecUCsFDyEcN8zhk2Sur bbD2jldWjAx1ISyILegq5DsBFqob35NF6MhXftBAvvaowHerv0exvvUuIpBtUBXi P1CaWXjaxkl9cpXPO84V2Ycz8OcsTGf1CuV7UI1UoCpVXnkVjfMcXfdeQOlj6zw7 QdID1vN971WjS2510v0pVogoh5eVw5AysX39sD6M/T759nQ1BggpiZeb/P+RftWy eUpWkFXW+npB4hXUT4o8+l+l13HsI+LjyJRq+QL7EvLlbnNtXBB9ew== -----END CERTIFICATE-----Generated at Tue Apr 8 16:54:01 2025 by rpki-client