$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mYFpDe9NoeHGtNzFtLcYXyZcyf8.roa File: mYFpDe9NoeHGtNzFtLcYXyZcyf8.roa (raw, json) Hash identifier: iqh1GoJ4ywH6jRy8WgW7Og6eKwXgqMBWcADUrn0myxs= Subject key identifier: 99:81:69:0D:EF:4D:A1:E1:C6:B4:DC:C5:B4:B7:18:5F:26:5C:C9:FF Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1382 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mYFpDe9NoeHGtNzFtLcYXyZcyf8.roa Signing time: Mon 10 Feb 2025 14:09:31 +0000 ROA not before: Mon 10 Feb 2025 14:09:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 210.62.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4994 (0x1382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:31 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9981690DEF4DA1E1C6B4DCC5B4B7185F265CC9FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2e:1c:95:2c:15:c5:38:51:0d:6b:d6:45:92: ad:b2:13:4e:8e:aa:e9:78:be:ea:17:3b:b6:0c:b3: 65:08:a6:61:26:e1:7b:15:7e:3f:c9:85:97:af:f1: c5:bb:57:d9:af:7e:73:08:33:24:e6:30:e7:b7:aa: 93:66:12:b8:b5:4b:11:10:94:5d:1f:38:b4:1e:4a: d3:ef:fc:28:77:3d:a4:ac:43:00:ea:e4:35:b1:34: f7:5a:9f:e3:62:87:d8:62:51:07:81:86:c7:c1:92: e9:0f:95:e7:20:25:89:7e:e8:34:f1:5e:8c:7c:48: d4:71:1f:a0:98:31:b1:1e:cc:ad:b3:43:88:08:bb: 8e:cf:4f:9b:02:1d:bf:ae:3a:8f:d7:22:c5:e1:b5: f3:73:1e:4a:a0:23:b7:ea:62:9a:75:5a:d4:99:aa: 24:5b:05:05:5d:74:06:8f:35:b2:e7:77:69:b9:6e: 40:74:6f:69:e6:02:14:5a:50:06:db:f0:50:a8:81: a0:74:20:2b:a3:f1:24:20:3f:55:0f:b8:90:42:66: a6:24:40:09:10:c3:42:f8:e3:68:03:d0:29:92:1b: cf:96:47:5e:2c:f9:df:25:30:d9:4c:93:29:0b:58: 81:15:17:51:bc:3f:b3:34:9f:f8:26:67:d9:ac:c5: d3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:81:69:0D:EF:4D:A1:E1:C6:B4:DC:C5:B4:B7:18:5F:26:5C:C9:FF X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mYFpDe9NoeHGtNzFtLcYXyZcyf8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.216.0/23 Signature Algorithm: sha256WithRSAEncryption 78:38:2b:4d:8b:d9:df:e4:dc:6e:28:3c:76:7e:ab:e9:a4:af: c9:d9:3c:73:64:68:d8:30:0d:d1:34:ce:20:7c:23:e7:20:78: ae:38:69:22:98:4a:b4:4f:87:19:c9:88:41:4e:51:49:d0:b3: 01:a1:7f:2f:72:f4:25:83:9e:41:8b:e3:f5:ae:b0:ef:dd:de: 7e:fd:c8:b6:ad:30:d4:b2:44:db:6f:88:74:ad:79:9c:37:23: b2:dd:a1:cb:62:72:67:47:c1:b4:36:55:ac:b4:b5:bc:fb:f9: 8b:81:b4:32:ba:59:f2:1b:c7:b2:00:f1:6a:46:0f:96:49:75: f4:e7:25:b0:f1:a5:b1:a3:13:72:89:3f:2b:05:e4:b4:a7:eb: 45:7f:7f:ee:86:62:eb:76:f5:b4:7d:da:8a:30:ac:43:28:90: 1f:b4:23:b8:8c:d3:e2:7a:09:69:7d:c3:79:d7:bb:f5:be:ea: e9:15:60:16:24:6c:12:90:38:08:a1:86:94:7b:6d:5a:57:0c: b9:66:a9:28:75:e9:f5:10:b4:07:b8:6c:49:54:f1:25:12:e0: 71:28:77:57:f9:22:dc:5d:3d:4c:b8:c9:8a:ae:7a:dc:b6:a9: ae:b0:26:38:48:dd:63:c2:0c:4d:ff:5a:c6:a9:3d:70:40:2f: 32:7d:c2:89 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICE4IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk5ODE2OTBERUY0REEx RTFDNkI0RENDNUI0QjcxODVGMjY1Q0M5RkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVLhyVLBXFOFENa9ZFkq2yE06Oqul4vuoXO7YMs2UIpmEm4XsV fj/JhZev8cW7V9mvfnMIMyTmMOe3qpNmEri1SxEQlF0fOLQeStPv/Ch3PaSsQwDq 5DWxNPdan+Nih9hiUQeBhsfBkukPlecgJYl+6DTxXox8SNRxH6CYMbEezK2zQ4gI u47PT5sCHb+uOo/XIsXhtfNzHkqgI7fqYpp1WtSZqiRbBQVddAaPNbLnd2m5bkB0 b2nmAhRaUAbb8FCogaB0ICuj8SQgP1UPuJBCZqYkQAkQw0L442gD0CmSG8+WR14s +d8lMNlMkykLWIEVF1G8P7M0n/gmZ9msxdMLAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUmYFpDe9NoeHGtNzFtLcYXyZcyf8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbVlGcERlOU5vZUhHdE56 RnRMY1lYeVpjeWY4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AdI+2DANBgkqhkiG9w0BAQsFAAOCAQEAeDgrTYvZ3+Tcbig8dn6r6aSvydk8c2Ro 2DAN0TTOIHwj5yB4rjhpIphKtE+HGcmIQU5RSdCzAaF/L3L0JYOeQYvj9a6w793e fv3Itq0w1LJE22+IdK15nDcjst2hy2JyZ0fBtDZVrLS1vPv5i4G0MrpZ8hvHsgDx akYPlkl19OclsPGlsaMTcok/KwXktKfrRX9/7oZi63b1tH3aijCsQyiQH7QjuIzT 4noJaX3Dede79b7q6RVgFiRsEpA4CKGGlHttWlcMuWapKHXp9RC0B7hsSVTxJRLg cSh3V/ki3F09TLjJiq563LaprrAmOEjdY8IMTf9axqk9cEAvMn3CiQ== -----END CERTIFICATE-----Generated at Tue Apr 8 16:59:08 2025 by rpki-client