$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gudNR-qaqDBCFUiLX89MJ_6G_NU.roa File: gudNR-qaqDBCFUiLX89MJ_6G_NU.roa (raw, json) Hash identifier: ABOhjjUbY1xZGUgtDGjFFRL6Iiy1SAAg5MjHl+jRxk0= Subject key identifier: 82:E7:4D:47:EA:9A:A8:30:42:15:48:8B:5F:CF:4C:27:FE:86:FC:D5 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1351 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gudNR-qaqDBCFUiLX89MJ_6G_NU.roa Signing time: Mon 10 Feb 2025 14:09:21 +0000 ROA not before: Mon 10 Feb 2025 14:09:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131628 IP address blocks: 175.99.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 16:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4945 (0x1351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:21 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=82E74D47EA9AA8304215488B5FCF4C27FE86FCD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:93:9f:70:63:3f:cb:28:95:5d:00:f8:de:81: 92:fe:f3:7a:8f:f3:53:a7:cf:c7:76:6e:ae:29:a4: ff:77:d7:d7:cb:62:90:57:6a:95:9f:fb:91:2b:4c: be:b5:0a:2c:0c:67:15:1d:fa:82:d3:a0:5d:ef:38: 43:16:ab:c2:4c:f4:8f:84:53:01:44:05:0e:2c:0a: 64:b4:64:67:b9:4c:15:7d:eb:e0:9a:1b:d5:a9:b3: e9:20:e9:53:86:c0:56:de:56:27:37:ed:42:1b:d4: 47:c0:70:a0:9e:5e:bd:f1:8f:3e:ae:24:20:50:18: 3e:7c:54:23:77:46:fb:e6:c6:0e:16:17:99:b4:51: 8a:74:06:22:34:0d:58:78:49:eb:a3:39:44:a5:12: cd:36:a6:44:62:f6:1b:d4:8c:cf:52:07:ce:25:db: 14:2c:d7:0a:d5:17:9b:68:12:2c:dc:af:84:a8:71: 6b:98:a8:2e:24:e5:16:25:fa:7a:30:f1:36:8f:1c: 55:d9:1a:60:eb:bc:19:38:55:c5:08:37:d7:a4:7c: 78:f1:3a:a2:c0:74:06:ab:92:c9:68:7c:7c:1a:a1: b8:86:f2:c5:0a:5a:a9:d9:6e:9d:a6:b8:0d:96:06: 42:fb:2f:2c:8f:8f:20:bc:47:64:e0:a0:da:cb:97: 59:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E7:4D:47:EA:9A:A8:30:42:15:48:8B:5F:CF:4C:27:FE:86:FC:D5 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gudNR-qaqDBCFUiLX89MJ_6G_NU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.99.192.0/19 Signature Algorithm: sha256WithRSAEncryption 89:09:c8:00:e7:9f:88:3d:bc:e1:e8:5e:18:4c:5d:1c:79:09: 97:3b:8e:50:2f:b7:c5:83:3b:40:25:cf:48:2d:0a:28:d0:8d: 3f:31:aa:f9:8b:a8:45:bd:9e:b2:5d:88:74:44:dd:c6:88:e8: 2a:fb:af:b2:4a:e1:5e:01:4f:7f:97:dd:1b:a0:21:88:85:4c: 58:93:03:6b:a4:9a:ea:9d:d9:3a:b4:db:0f:cc:a1:e3:b4:0c: b9:c8:15:9b:68:3f:86:12:27:ed:e0:12:e3:cb:04:1d:22:1c: c1:6b:cf:cc:68:67:60:58:91:0d:78:72:9c:24:e1:3a:18:26: 66:ad:7b:71:1c:ed:18:10:5a:e8:05:4a:e8:16:61:b2:e7:54: ef:e4:d4:02:91:3e:3f:eb:24:e6:3f:f5:1e:89:2b:76:43:24: 2b:05:5f:13:b7:7f:24:d4:b0:d3:8a:1f:27:ce:35:e5:6c:b5: bb:c2:d3:e5:3d:c3:13:9f:91:ad:dd:24:a4:03:8b:8c:3a:ac: 4d:20:18:fb:23:0d:1e:dd:f0:09:06:65:61:60:be:98:72:c4: 44:6f:d1:b4:18:c7:eb:64:35:ed:25:43:e3:22:0a:25:fa:01: 18:8d:1d:92:46:e9:9e:1b:f1:ce:ae:a0:fc:c6:32:b7:4b:87: 87:eb:f0:6a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICE1EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgyRTc0RDQ3RUE5QUE4 MzA0MjE1NDg4QjVGQ0Y0QzI3RkU4NkZDRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZk59wYz/LKJVdAPjegZL+83qP81Onz8d2bq4ppP9319fLYpBX apWf+5ErTL61CiwMZxUd+oLToF3vOEMWq8JM9I+EUwFEBQ4sCmS0ZGe5TBV96+Ca G9Wps+kg6VOGwFbeVic37UIb1EfAcKCeXr3xjz6uJCBQGD58VCN3Rvvmxg4WF5m0 UYp0BiI0DVh4SeujOUSlEs02pkRi9hvUjM9SB84l2xQs1wrVF5toEizcr4SocWuY qC4k5RYl+now8TaPHFXZGmDrvBk4VcUIN9ekfHjxOqLAdAarkslofHwaobiG8sUK WqnZbp2muA2WBkL7LyyPjyC8R2TgoNrLl1mXAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUgudNR+qaqDBCFUiLX89MJ/6G/NUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvZ3VkTlItcWFxREJDRlVp TFg4OU1KXzZHX05VLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Ba9jwDANBgkqhkiG9w0BAQsFAAOCAQEAiQnIAOefiD284eheGExdHHkJlzuOUC+3 xYM7QCXPSC0KKNCNPzGq+YuoRb2esl2IdETdxojoKvuvskrhXgFPf5fdG6AhiIVM WJMDa6Sa6p3ZOrTbD8yh47QMucgVm2g/hhIn7eAS48sEHSIcwWvPzGhnYFiRDXhy nCThOhgmZq17cRztGBBa6AVK6BZhsudU7+TUApE+P+sk5j/1HokrdkMkKwVfE7d/ JNSw04ofJ8415Wy1u8LT5T3DE5+Rrd0kpAOLjDqsTSAY+yMNHt3wCQZlYWC+mHLE RG/RtBjH62Q17SVD4yIKJfoBGI0dkkbpnhvxzq6g/MYyt0uHh+vwag== -----END CERTIFICATE-----Generated at Tue Apr 8 16:12:00 2025 by rpki-client