$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/j5I28nk0CGWmh4_M_Jz516IBMrc.roa File: j5I28nk0CGWmh4_M_Jz516IBMrc.roa (raw, json) Hash identifier: fYu2fJT+Bqr5L08Rb6pcEKbLo6/O/LAq8Tx8UBCQn8I= Subject key identifier: 8F:92:36:F2:79:34:08:65:A6:87:8F:CC:FC:9C:F9:D7:A2:01:32:B7 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1337 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/j5I28nk0CGWmh4_M_Jz516IBMrc.roa Signing time: Mon 10 Feb 2025 14:09:14 +0000 ROA not before: Mon 10 Feb 2025 14:09:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4662 IP address blocks: 203.77.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4919 (0x1337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:14 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8F9236F279340865A6878FCCFC9CF9D7A20132B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:77:af:86:a4:fa:07:37:5a:39:1b:7e:bc:c9: 14:c3:29:97:c7:1d:79:cb:21:e5:06:82:b9:a6:c3: 70:09:92:ef:fa:60:e0:94:7e:10:75:fc:04:28:b0: f0:b2:61:46:e6:e8:e4:f5:04:99:7c:e9:9a:e1:63: 64:2c:de:69:7e:0d:96:80:69:a3:a8:7e:36:03:25: bd:78:fc:20:38:dd:4d:5b:b7:93:41:95:dd:34:cb: 45:3d:79:d5:20:c4:67:c7:c0:4b:b8:4b:6c:0d:d0: 2c:92:6c:e9:9d:28:96:74:0b:cf:72:30:77:0f:39: f2:d8:a4:71:cc:bd:ec:0e:90:4f:cb:68:55:f8:59: be:1a:2f:b1:41:db:da:14:e9:cb:0e:55:e7:d5:ed: 1e:d8:3f:9c:f3:e5:63:2a:a2:a1:81:b9:fc:3f:63: 37:fd:cf:19:82:8b:ef:2a:6d:8a:9d:30:bf:55:44: 28:b2:cd:fc:1d:26:38:91:5f:9d:8e:a3:0e:4a:7f: 80:06:0f:bf:6c:c9:3a:7f:bf:78:7b:3f:ed:16:f8: f6:13:17:9a:c2:1f:9d:06:3c:91:4d:8e:53:ae:34: 31:29:17:4c:b7:67:58:95:bb:d9:f9:36:f1:21:f6: 25:82:0d:5e:b7:1f:57:c0:cd:db:ff:ad:a3:a8:ae: e4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:92:36:F2:79:34:08:65:A6:87:8F:CC:FC:9C:F9:D7:A2:01:32:B7 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/j5I28nk0CGWmh4_M_Jz516IBMrc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.64.0/18 Signature Algorithm: sha256WithRSAEncryption 60:5c:f2:f6:49:87:1e:73:63:33:1e:73:45:d3:02:6d:b3:a1: a6:e9:a6:a1:5a:25:08:eb:a8:16:f2:96:5c:eb:e4:c8:94:b4: cf:85:4d:75:4a:2a:01:0d:50:96:9d:2a:48:f8:42:bb:af:9d: a2:1e:a0:d2:3c:21:95:77:88:ab:51:fe:81:e6:70:af:7c:3c: 9e:5a:a4:31:f3:b4:80:87:e0:30:a3:11:6b:f2:e7:fe:32:ae: cf:b3:07:74:39:ca:b0:4d:ba:82:20:ea:31:fa:ae:0b:63:7f: b8:9e:37:0c:87:8c:83:79:2c:20:9d:54:72:88:b6:87:00:03: 07:b6:6c:49:7b:7a:bb:59:39:af:35:90:4c:f3:c9:63:ae:e5: db:f0:a2:e7:3c:4c:35:8c:45:10:cc:05:dd:e0:7b:73:e8:eb: ee:a7:f8:e8:77:05:0d:a1:7a:1f:1a:f8:e9:c0:5a:12:52:48: 12:be:d8:bf:d5:fa:d7:5a:11:6e:2b:26:67:5c:59:c4:88:5e: 70:17:17:48:82:80:8e:2e:1c:59:85:5a:84:fd:d8:08:ca:6c: 5a:6d:c7:61:cd:b9:73:77:ba:ba:79:24:cc:37:9b:75:b7:28: 81:40:11:3d:20:95:54:63:bf:f2:4a:27:ed:64:18:8b:be:9e: 75:f0:92:ef -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEzcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhGOTIzNkYyNzkzNDA4 NjVBNjg3OEZDQ0ZDOUNGOUQ3QTIwMTMyQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD1d6+GpPoHN1o5G368yRTDKZfHHXnLIeUGgrmmw3AJku/6YOCU fhB1/AQosPCyYUbm6OT1BJl86ZrhY2Qs3ml+DZaAaaOofjYDJb14/CA43U1bt5NB ld00y0U9edUgxGfHwEu4S2wN0CySbOmdKJZ0C89yMHcPOfLYpHHMvewOkE/LaFX4 Wb4aL7FB29oU6csOVefV7R7YP5zz5WMqoqGBufw/Yzf9zxmCi+8qbYqdML9VRCiy zfwdJjiRX52Oow5Kf4AGD79syTp/v3h7P+0W+PYTF5rCH50GPJFNjlOuNDEpF0y3 Z1iVu9n5NvEh9iWCDV63H1fAzdv/raOoruSlAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUj5I28nk0CGWmh4/M/Jz516IBMrcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvajVJMjhuazBDR1dtaDRf TV9KejUxNklCTXJjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BstNQDANBgkqhkiG9w0BAQsFAAOCAQEAYFzy9kmHHnNjMx5zRdMCbbOhpummoVol COuoFvKWXOvkyJS0z4VNdUoqAQ1Qlp0qSPhCu6+doh6g0jwhlXeIq1H+geZwr3w8 nlqkMfO0gIfgMKMRa/Ln/jKuz7MHdDnKsE26giDqMfquC2N/uJ43DIeMg3ksIJ1U coi2hwADB7ZsSXt6u1k5rzWQTPPJY67l2/Ci5zxMNYxFEMwF3eB7c+jr7qf46HcF DaF6Hxr46cBaElJIEr7Yv9X611oRbismZ1xZxIhecBcXSIKAji4cWYVahP3YCMps Wm3HYc25c3e6unkkzDebdbcogUARPSCVVGO/8kon7WQYi76edfCS7w== -----END CERTIFICATE-----Generated at Tue Apr 8 16:56:37 2025 by rpki-client