$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/2bWB2kgRMe251hRuuq_aUojdKZw.roa File: 2bWB2kgRMe251hRuuq_aUojdKZw.roa (raw, json) Hash identifier: OPk7X4OZPmazJV8mh/Dxr+8B6rqwQ7ccGMOPi/9iDqs= Subject key identifier: D9:B5:81:DA:48:11:31:ED:B9:D6:14:6E:BA:AF:DA:52:88:DD:29:9C Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1310 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/2bWB2kgRMe251hRuuq_aUojdKZw.roa Signing time: Mon 10 Feb 2025 14:09:03 +0000 ROA not before: Mon 10 Feb 2025 14:09:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.17.35.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4880 (0x1310) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D9B581DA481131EDB9D6146EBAAFDA5288DD299C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f6:bb:c7:11:7c:56:75:33:1a:13:f3:90:53: e1:8f:f2:15:0e:36:0a:a4:97:3f:b1:06:60:aa:72: 38:e5:83:7b:c8:00:64:89:4d:88:f4:2f:cd:11:b4: cc:c3:bf:47:9c:fe:c1:75:bb:c9:e5:4f:6e:6d:f0: be:61:f0:4e:b9:c0:fe:62:15:21:cb:7a:b6:f1:ea: ea:60:65:ad:d8:71:b7:cf:d6:f1:be:0b:5b:38:1f: 7d:2e:90:a1:b6:82:7d:79:7f:40:06:dc:06:9e:ae: 6c:55:cc:d4:63:de:f5:88:7d:f7:e8:9e:35:09:4f: 6d:b9:3e:96:6a:a7:d0:4a:31:50:6a:d4:8c:8e:69: 4c:7f:f5:ac:87:f4:75:29:57:d2:47:ca:9b:3e:c0: b0:19:36:41:27:59:f6:6d:90:c3:54:7e:a6:f6:9c: e7:1c:32:5b:6c:d9:02:a6:74:7a:ba:eb:3b:d6:c2: 18:51:30:de:33:49:7e:90:e5:b9:18:d0:fe:3a:25: 42:67:10:bb:65:ce:76:63:d9:da:36:04:c0:54:d7: cf:ac:f4:8f:c6:00:2d:15:71:ef:4a:f5:65:3c:b2: 7b:1b:71:98:90:b8:fb:c5:60:c2:8a:c1:22:53:b5: dd:40:25:10:69:05:39:5c:85:6b:0a:73:78:d1:7e: ff:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B5:81:DA:48:11:31:ED:B9:D6:14:6E:BA:AF:DA:52:88:DD:29:9C X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/2bWB2kgRMe251hRuuq_aUojdKZw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.35.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:17:fc:0a:37:b0:7e:7c:3f:69:59:8e:39:22:eb:4d:08:42: 02:a7:4c:71:3b:e2:19:8d:f1:18:c2:ae:bb:40:41:95:85:38: dc:5f:f2:4f:11:31:60:3a:08:fd:d2:25:cf:ff:88:d6:6a:f2: e9:08:c8:9d:58:cf:ea:41:76:d7:6d:7c:ee:bd:51:8c:33:91: 72:67:e5:bc:7f:a4:ea:2f:4c:7f:07:94:69:73:b5:ec:47:77: fb:69:7d:b9:5f:d8:3c:59:51:e4:1a:c4:42:03:c6:93:3f:59: 75:62:17:44:a5:09:34:44:1f:c1:08:6c:9e:db:b1:c0:fd:b2: f4:1a:f6:4d:78:34:e5:51:bc:d7:16:b2:ed:de:68:ab:53:00: eb:a8:7e:c0:de:8f:ca:22:26:91:5d:72:4b:0b:db:4c:cc:10: a6:31:d0:df:f0:b1:d4:93:24:56:96:53:54:d4:7c:38:42:82: 9f:fc:d6:d8:9b:27:90:8d:53:ec:a0:77:db:a7:b7:57:17:43: 9a:1d:5d:c6:78:2f:28:80:39:86:67:2b:3e:db:95:34:35:98: 85:50:25:1c:1c:b0:a1:1d:48:f8:56:cf:a2:51:7b:5e:61:dd: 52:f5:df:31:7a:56:1d:d7:be:ac:97:5e:06:49:db:b3:d1:79: 7e:e6:05:5f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICExAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ5QjU4MURBNDgxMTMx RURCOUQ2MTQ2RUJBQUZEQTUyODhERDI5OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI9rvHEXxWdTMaE/OQU+GP8hUONgqklz+xBmCqcjjlg3vIAGSJ TYj0L80RtMzDv0ec/sF1u8nlT25t8L5h8E65wP5iFSHLerbx6upgZa3YcbfP1vG+ C1s4H30ukKG2gn15f0AG3AaermxVzNRj3vWIfffonjUJT225PpZqp9BKMVBq1IyO aUx/9ayH9HUpV9JHyps+wLAZNkEnWfZtkMNUfqb2nOccMlts2QKmdHq66zvWwhhR MN4zSX6Q5bkY0P46JUJnELtlznZj2do2BMBU18+s9I/GAC0Vce9K9WU8snsbcZiQ uPvFYMKKwSJTtd1AJRBpBTlchWsKc3jRfv81AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU2bWB2kgRMe251hRuuq/aUojdKZwwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvMmJXQjJrZ1JNZTI1MWhS dXVxX2FVb2pkS1p3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ANIRIzANBgkqhkiG9w0BAQsFAAOCAQEAixf8Cjewfnw/aVmOOSLrTQhCAqdMcTvi GY3xGMKuu0BBlYU43F/yTxExYDoI/dIlz/+I1mry6QjInVjP6kF212187r1RjDOR cmflvH+k6i9MfweUaXO17Ed3+2l9uV/YPFlR5BrEQgPGkz9ZdWIXRKUJNEQfwQhs ntuxwP2y9Br2TXg05VG81xay7d5oq1MA66h+wN6PyiImkV1ySwvbTMwQpjHQ3/Cx 1JMkVpZTVNR8OEKCn/zW2JsnkI1T7KB326e3VxdDmh1dxngvKIA5hmcrPtuVNDWY hVAlHBywoR1I+FbPolF7XmHdUvXfMXpWHde+rJdeBknbs9F5fuYFXw== -----END CERTIFICATE-----Generated at Mon Apr 7 02:02:49 2025 by rpki-client