$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/y06UgqW7Fr05lTmgTRSwlKderjo.roa File: y06UgqW7Fr05lTmgTRSwlKderjo.roa (raw, json) Hash identifier: kl5gO+6+Cqz2fKBg8IVHWBWhka+56DZ0eB1dd2f1zCQ= Subject key identifier: CB:4E:94:82:A5:BB:16:BD:39:95:39:A0:4D:14:B0:94:A7:5E:AE:3A Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1370 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/y06UgqW7Fr05lTmgTRSwlKderjo.roa Signing time: Mon 10 Feb 2025 14:09:27 +0000 ROA not before: Mon 10 Feb 2025 14:09:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4662 IP address blocks: 203.65.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4976 (0x1370) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CB4E9482A5BB16BD399539A04D14B094A75EAE3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7e:13:ef:36:4f:80:8a:a4:77:d6:ef:35:d5: 5e:cd:cb:0c:a6:c4:86:86:42:a1:f0:f2:79:f1:2c: 10:6f:66:2e:da:55:c2:45:d1:96:b2:4a:a8:82:a5: c3:a3:a1:47:1b:5d:ec:f2:76:bd:5e:e4:df:9f:04: b6:8f:e6:d5:2e:99:bd:d4:b7:25:73:8f:d7:0a:f8: e4:b3:7d:d7:9d:73:1c:f1:68:df:06:ec:fc:93:69: 53:36:e8:a1:03:cb:30:51:e8:4e:23:6a:f7:3d:56: 17:d2:b8:c4:5f:a3:b6:76:12:01:5a:7a:e0:e5:b7: c1:e8:7a:e6:85:52:11:12:a1:88:49:3b:ab:0f:ad: 17:ab:b3:ac:05:d2:ac:13:85:42:aa:6f:ec:4b:00: 9f:81:62:e4:2c:67:0b:0a:92:2d:71:95:c2:ab:9b: e4:0d:2f:16:22:38:01:b8:67:99:d5:8d:7b:59:17: be:a8:d6:21:21:d6:49:71:26:c9:e4:71:f9:99:6d: 85:e4:f2:74:0c:d4:58:11:57:71:3d:24:0a:b9:2e: db:98:6c:a0:be:c6:1b:13:89:70:8d:a5:73:df:45: 8b:1c:99:cc:18:2d:e0:04:a8:78:ce:0a:b0:ff:af: 20:0b:a8:b5:2c:3e:2f:50:35:18:ea:0c:3f:54:6c: 9d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4E:94:82:A5:BB:16:BD:39:95:39:A0:4D:14:B0:94:A7:5E:AE:3A X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/y06UgqW7Fr05lTmgTRSwlKderjo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.65.160.0/19 Signature Algorithm: sha256WithRSAEncryption 5e:b2:9b:32:0f:fa:64:72:02:46:f8:dd:9e:10:7b:df:d6:33: c5:58:60:e9:50:13:6a:05:a0:7a:fc:6e:18:4c:3f:2d:4f:52: 6f:3a:98:92:8e:b6:cb:48:f1:09:06:a5:6d:2b:9c:ac:f9:51: 38:10:29:6e:19:7f:e2:05:1c:cc:90:58:13:4c:d9:96:95:77: a1:e2:90:8c:54:15:05:b2:a5:0d:f8:c7:6d:80:f2:11:7f:06: 8e:22:e3:60:29:9d:38:6a:36:cd:62:7f:dd:fd:92:1f:54:61: dc:af:f1:cb:9a:04:bc:bc:6d:bc:f6:3c:30:37:8e:ba:f3:49: 0d:bf:90:0f:6f:4c:bc:6e:44:d3:d9:9d:2f:0e:f9:6a:58:d3: ff:89:fc:3c:2d:bc:ff:5b:95:08:56:e9:b2:db:e7:81:65:15: 1c:b6:72:72:78:54:3d:dd:31:1e:6c:27:f8:04:53:a7:c8:2e: 4b:4b:7e:47:97:bf:5e:8d:7a:64:67:eb:88:05:06:ac:09:a8: 35:eb:f7:7e:e0:d6:9a:cb:e5:fc:86:c5:24:0b:2c:8f:9b:5b: c9:fb:0f:8a:f7:3e:63:f5:d7:23:2b:c5:c0:db:e4:36:34:d1: 61:5b:69:1e:d6:69:0a:55:b7:f5:63:35:b2:ef:12:cb:5d:7c: 0e:8e:5f:8e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICE3AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENCNEU5NDgyQTVCQjE2 QkQzOTk1MzlBMDREMTRCMDk0QTc1RUFFM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQfhPvNk+AiqR31u811V7NywymxIaGQqHw8nnxLBBvZi7aVcJF 0ZaySqiCpcOjoUcbXezydr1e5N+fBLaP5tUumb3UtyVzj9cK+OSzfdedcxzxaN8G 7PyTaVM26KEDyzBR6E4javc9VhfSuMRfo7Z2EgFaeuDlt8HoeuaFUhESoYhJO6sP rRers6wF0qwThUKqb+xLAJ+BYuQsZwsKki1xlcKrm+QNLxYiOAG4Z5nVjXtZF76o 1iEh1klxJsnkcfmZbYXk8nQM1FgRV3E9JAq5LtuYbKC+xhsTiXCNpXPfRYscmcwY LeAEqHjOCrD/ryALqLUsPi9QNRjqDD9UbJ2rAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUy06UgqW7Fr05lTmgTRSwlKderjowHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQveTA2VWdxVzdGcjA1bFRt Z1RSU3dsS2RlcmpvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BctBoDANBgkqhkiG9w0BAQsFAAOCAQEAXrKbMg/6ZHICRvjdnhB739YzxVhg6VAT agWgevxuGEw/LU9SbzqYko62y0jxCQalbSucrPlROBApbhl/4gUczJBYE0zZlpV3 oeKQjFQVBbKlDfjHbYDyEX8GjiLjYCmdOGo2zWJ/3f2SH1Rh3K/xy5oEvLxtvPY8 MDeOuvNJDb+QD29MvG5E09mdLw75aljT/4n8PC28/1uVCFbpstvngWUVHLZycnhU Pd0xHmwn+ARTp8guS0t+R5e/Xo16ZGfriAUGrAmoNev3fuDWmsvl/IbFJAssj5tb yfsPivc+Y/XXIyvFwNvkNjTRYVtpHtZpClW39WM1su8Sy118Do5fjg== -----END CERTIFICATE-----Generated at Tue Apr 8 16:56:36 2025 by rpki-client