$ rpki-client -vvf rpkica.twnic.tw/rpki/PROFOND/0/AS131611.roa File: AS131611.roa (raw, json) Hash identifier: UCz+rwuylcu0rVH2Vr+NNwNfHAZ+V+Ki80+e+mrGvAg= Subject key identifier: 1A:04:AF:5E:C2:43:B9:70:E1:3B:2F:29:2D:C5:29:D1:7B:66:37:AB Certificate issuer: /CN=9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5 Certificate serial: 2C19BFA35047990404F2AD67BDFFEC52FDB15A1F Authority key identifier: 9B:01:D5:A4:96:75:5D:F6:9A:C9:2F:EC:3B:D6:4F:FE:4A:EA:51:F5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PROFOND/0/AS131611.roa Signing time: Tue 30 Jun 2026 07:43:49 +0000 ROA not before: Tue 30 Jun 2026 07:38:49 +0000 ROA not after: Tue 29 Jun 2027 07:43:49 +0000 asID: 131611 IP address blocks: 60.198.160.0/19 maxlen: 24 124.9.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PROFOND/0/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.crl rsync://rpkica.twnic.tw/rpki/PROFOND/0/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 09:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:19:bf:a3:50:47:99:04:04:f2:ad:67:bd:ff:ec:52:fd:b1:5a:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5 Validity Not Before: Jun 30 07:38:49 2026 GMT Not After : Jun 29 07:43:49 2027 GMT Subject: CN=1A04AF5EC243B970E13B2F292DC529D17B6637AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3b:7f:d7:39:5c:bd:92:0a:2d:39:e7:ea:87: a6:65:a0:51:05:11:d5:7a:9b:20:61:99:2b:cf:f1: 59:ed:37:25:d0:04:01:7e:16:f2:f7:f8:b8:0d:9c: fe:88:6f:8c:62:63:c7:53:b7:ac:98:7e:1e:f2:a8: 0c:75:88:82:ef:1e:ba:fa:2c:08:24:49:a3:31:c5: 6a:fa:e1:88:0f:71:bc:73:19:6a:b0:20:38:11:5e: f2:80:68:be:bf:cc:00:fe:60:94:71:41:9f:59:7e: 68:bb:42:fd:cb:d0:43:68:c4:41:4a:46:a8:da:6d: 19:42:f0:33:a0:2d:49:1e:61:88:0b:2c:d7:16:20: e6:b4:46:fc:78:27:b6:13:ca:18:dd:61:8a:ba:dc: fc:83:de:41:62:9b:14:fc:65:80:73:7d:1a:43:10: 19:ff:25:f6:d4:3c:58:43:9c:4d:ba:a2:d4:59:50: 83:a4:61:9b:c5:34:d2:ac:76:56:0c:45:e6:f9:06: 93:f8:e3:71:4f:4c:53:ec:79:09:41:8b:5b:fa:68: b7:dc:4a:35:18:5b:20:a2:51:a5:d1:50:5d:f5:79: 91:0c:32:6c:38:9f:71:c8:14:08:69:ea:9b:91:14: d8:fe:79:45:ab:77:92:01:67:7e:fa:c2:25:71:dc: 61:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:04:AF:5E:C2:43:B9:70:E1:3B:2F:29:2D:C5:29:D1:7B:66:37:AB X509v3 Authority Key Identifier: keyid:9B:01:D5:A4:96:75:5D:F6:9A:C9:2F:EC:3B:D6:4F:FE:4A:EA:51:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PROFOND/0/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PROFOND/0/AS131611.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 60.198.160.0/19 124.9.64.0/18 Signature Algorithm: sha256WithRSAEncryption 0a:1d:6c:66:04:e3:12:cd:39:1c:2a:7e:49:1f:08:44:78:71: fc:6a:62:19:93:41:27:ce:1d:38:16:42:15:79:90:12:7b:09: 6d:10:d7:ac:36:3d:bb:b2:00:ef:f4:8c:cb:4f:6b:a4:39:f5: 48:15:05:dc:3e:28:b6:bb:7b:da:4d:41:1b:9c:48:cf:8c:5b: 0c:79:66:88:4b:9f:9e:8c:2f:6c:8f:b7:93:67:f1:d8:89:dd: e3:c3:5f:16:4c:90:4c:45:eb:75:e5:cf:92:44:73:aa:11:23: 7d:14:8e:19:2d:6a:b6:db:08:32:4d:f2:9e:2f:09:9d:1b:23: ab:03:d6:e7:21:28:3f:13:c1:06:23:74:58:14:05:94:2f:16: c6:2e:8d:67:5c:ab:0f:16:7d:d1:c4:5e:b3:50:38:2e:6a:e6: b6:01:ec:d0:60:ba:a2:53:da:56:35:5e:8c:1b:58:b4:6b:35: cf:87:76:af:00:b9:52:d7:14:9e:84:1d:e0:52:e9:1d:0b:c8: de:71:33:22:f2:cc:41:c4:bf:c1:88:78:fc:b7:70:83:87:82: 1d:95:fa:61:46:a1:cf:b1:81:b8:4a:95:95:c0:49:66:d1:70: 34:29:3e:51:09:05:ce:bd:dd:aa:1f:1d:02:9f:78:db:ad:fe: 42:8b:b4:72 -----BEGIN CERTIFICATE----- MIIEszCCA5ugAwIBAgIULBm/o1BHmQQE8q1nvf/sUv2xWh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIwMUQ1QTQ5Njc1NURGNjlBQzkyRkVDM0JENjRGRkU0 QUVBNTFGNTAeFw0yNjA2MzAwNzM4NDlaFw0yNzA2MjkwNzQzNDlaMDMxMTAvBgNV BAMTKDFBMDRBRjVFQzI0M0I5NzBFMTNCMkYyOTJEQzUyOUQxN0I2NjM3QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgO3/XOVy9kgotOefqh6ZloFEF EdV6myBhmSvP8VntNyXQBAF+FvL3+LgNnP6Ib4xiY8dTt6yYfh7yqAx1iILvHrr6 LAgkSaMxxWr64YgPcbxzGWqwIDgRXvKAaL6/zAD+YJRxQZ9Zfmi7Qv3L0ENoxEFK RqjabRlC8DOgLUkeYYgLLNcWIOa0Rvx4J7YTyhjdYYq63PyD3kFimxT8ZYBzfRpD EBn/JfbUPFhDnE26otRZUIOkYZvFNNKsdlYMReb5BpP443FPTFPseQlBi1v6aLfc SjUYWyCiUaXRUF31eZEMMmw4n3HIFAhp6puRFNj+eUWrd5IBZ376wiVx3GETAgMB AAGjggG9MIIBuTAdBgNVHQ4EFgQUGgSvXsJDuXDhOy8pLcUp0XtmN6swHwYDVR0j BBgwFoAUmwHVpJZ1XfaayS/sO9ZP/krqUfUwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFJPRk9O RC8wLzlCMDFENUE0OTY3NTVERjY5QUM5MkZFQzNCRDY0RkZFNEFFQTUxRjUuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvOUIwMUQ1QTQ5Njc1NURGNjlBQzkyRkVDM0JE NjRGRkU0QUVBNTFGNS5jZXIwTwYIKwYBBQUHAQsEQzBBMD8GCCsGAQUFBzALhjNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BST0ZPTkQvMC9BUzEzMTYxMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEBTzGoAMEBnwJQDANBgkqhkiG9w0BAQsFAAOCAQEACh1sZgTjEs05 HCp+SR8IRHhx/GpiGZNBJ84dOBZCFXmQEnsJbRDXrDY9u7IA7/SMy09rpDn1SBUF 3D4otrt72k1BG5xIz4xbDHlmiEufnowvbI+3k2fx2Ind48NfFkyQTEXrdeXPkkRz qhEjfRSOGS1qttsIMk3yni8JnRsjqwPW5yEoPxPBBiN0WBQFlC8Wxi6NZ1yrDxZ9 0cRes1A4LmrmtgHs0GC6olPaVjVejBtYtGs1z4d2rwC5UtcUnoQd4FLpHQvI3nEz IvLMQcS/wYh4/Ldwg4eCHZX6YUahz7GBuEqVlcBJZtFwNCk+UQkFzr3dqh8dAp94 263+Qou0cg== -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:54 2026 by rpki-client