$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mOBpPNIbfrqZJcezURBdAkuyH78.roa File: mOBpPNIbfrqZJcezURBdAkuyH78.roa (raw, json) Hash identifier: h9/gx0OQ+gKV9AQV42lYF5Tnf+9yCOZ1UKrnny0kDP4= Subject key identifier: 98:E0:69:3C:D2:1B:7E:BA:99:25:C7:B3:51:10:5D:02:4B:B2:1F:BF Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1317 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mOBpPNIbfrqZJcezURBdAkuyH78.roa Signing time: Mon 10 Feb 2025 14:09:05 +0000 ROA not before: Mon 10 Feb 2025 14:09:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 60.198.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4887 (0x1317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:05 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=98E0693CD21B7EBA9925C7B351105D024BB21FBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4b:ab:11:f5:b4:a3:23:84:22:9e:d5:29:01: 49:66:12:16:6d:8b:70:8b:11:38:c0:11:e8:0d:e7: 77:04:f5:9c:b9:40:4f:44:a1:30:3f:9c:2b:81:99: 93:2b:ac:b0:f6:14:98:29:ba:29:75:e3:99:b6:4e: 13:16:70:9d:db:4c:82:4d:81:7c:a0:19:1e:c6:46: 52:98:fa:15:12:79:08:37:a3:70:4d:1d:f8:ee:f6: e9:d0:5a:79:30:b4:96:0b:d4:40:c8:c3:87:48:d8: 94:0a:03:18:1d:0d:ef:55:d5:5e:b9:77:5a:3c:e2: cc:8f:e5:60:ed:bd:67:a1:5e:09:35:18:bd:66:fb: db:12:99:2b:31:27:87:8b:8c:2f:ff:66:c6:e9:bd: 68:29:e1:38:43:cd:59:c6:5f:07:17:b0:2e:8b:3c: b6:c5:c7:91:12:c0:19:32:6d:92:80:5c:38:98:85: 5f:c9:f8:05:f9:42:2e:a2:ae:ba:d1:23:af:38:ca: d1:40:00:b1:ee:27:ad:56:9e:9c:00:81:66:c2:57: a4:1a:3f:6b:14:a1:48:db:7c:a4:93:53:36:eb:21: f8:e1:61:27:0f:5b:0c:05:44:43:7d:36:e1:4f:f0: 22:e8:d2:f2:69:50:bc:b1:47:ef:06:17:da:53:41: 36:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:E0:69:3C:D2:1B:7E:BA:99:25:C7:B3:51:10:5D:02:4B:B2:1F:BF X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mOBpPNIbfrqZJcezURBdAkuyH78.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.198.40.0/21 Signature Algorithm: sha256WithRSAEncryption 0f:6c:b6:41:60:b2:a8:33:1a:9c:78:bf:1f:b0:b2:a8:da:26: e0:40:38:ea:bd:00:b7:0e:b2:b3:e6:40:cd:a6:5d:81:8b:ee: c2:b0:65:42:b3:7a:82:2e:f4:eb:e4:f6:b6:8d:49:91:2f:fd: 57:7a:64:15:6e:96:c1:68:23:6e:72:6f:ec:a3:fd:21:ec:34: 25:ea:e5:29:e6:d0:c4:5f:05:68:bb:9d:5f:cd:cb:01:54:96: 9a:f1:7a:b1:86:09:5e:b9:f0:1a:28:27:68:79:c7:bd:0f:98: 4b:17:58:e7:ef:07:5e:92:e2:12:24:04:d2:f0:3b:c4:5b:c7: 37:e8:c8:0a:a6:a6:af:d0:e8:12:dd:ac:96:74:0f:52:2a:3a: 3f:5f:f7:ab:f0:ca:c2:f3:1e:1a:58:44:05:ee:01:de:dc:c4: fc:65:de:64:0d:40:00:d0:f0:54:26:5a:07:f0:18:d1:16:93: a8:a8:22:b8:f9:0c:e1:58:da:6f:46:9e:44:75:f9:ce:8a:8f: bc:a2:db:aa:63:05:0d:06:05:4c:1b:77:4a:b0:9a:25:9f:e4: 24:77:95:1c:80:40:06:25:99:93:71:39:1e:fc:84:a3:77:f3: ea:c0:1a:c7:8e:b7:fe:96:7a:08:b9:4d:7d:56:76:2c:0a:df: 21:95:8c:d4 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICExcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk4RTA2OTNDRDIxQjdF QkE5OTI1QzdCMzUxMTA1RDAyNEJCMjFGQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrS6sR9bSjI4QintUpAUlmEhZti3CLETjAEegN53cE9Zy5QE9E oTA/nCuBmZMrrLD2FJgpuil145m2ThMWcJ3bTIJNgXygGR7GRlKY+hUSeQg3o3BN Hfju9unQWnkwtJYL1EDIw4dI2JQKAxgdDe9V1V65d1o84syP5WDtvWehXgk1GL1m +9sSmSsxJ4eLjC//ZsbpvWgp4ThDzVnGXwcXsC6LPLbFx5ESwBkybZKAXDiYhV/J +AX5Qi6irrrRI684ytFAALHuJ61WnpwAgWbCV6QaP2sUoUjbfKSTUzbrIfjhYScP WwwFREN9NuFP8CLo0vJpULyxR+8GF9pTQTZzAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUmOBpPNIbfrqZJcezURBdAkuyH78wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbU9CcFBOSWJmcnFaSmNl elVSQmRBa3V5SDc4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AzzGKDANBgkqhkiG9w0BAQsFAAOCAQEAD2y2QWCyqDManHi/H7CyqNom4EA46r0A tw6ys+ZAzaZdgYvuwrBlQrN6gi706+T2to1JkS/9V3pkFW6WwWgjbnJv7KP9Iew0 JerlKebQxF8FaLudX83LAVSWmvF6sYYJXrnwGignaHnHvQ+YSxdY5+8HXpLiEiQE 0vA7xFvHN+jICqamr9DoEt2slnQPUio6P1/3q/DKwvMeGlhEBe4B3tzE/GXeZA1A ANDwVCZaB/AY0RaTqKgiuPkM4Vjab0aeRHX5zoqPvKLbqmMFDQYFTBt3SrCaJZ/k JHeVHIBABiWZk3E5HvyEo3fz6sAax463/pZ6CLlNfVZ2LArfIZWM1A== -----END CERTIFICATE-----Generated at Tue Apr 8 16:54:00 2025 by rpki-client