$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ByKJW6fv4zyinNMLTk3kx_XvjBo.roa File: ByKJW6fv4zyinNMLTk3kx_XvjBo.roa (raw, json) Hash identifier: 9enLj0K2XljP61OLtt2+ISQLBQgFOYp8NxlNPf2sHn8= Subject key identifier: 07:22:89:5B:A7:EF:E3:3C:A2:9C:D3:0B:4E:4D:E4:C7:F5:EF:8C:1A Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1360 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ByKJW6fv4zyinNMLTk3kx_XvjBo.roa Signing time: Mon 10 Feb 2025 14:09:24 +0000 ROA not before: Mon 10 Feb 2025 14:09:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 49.216.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4960 (0x1360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0722895BA7EFE33CA29CD30B4E4DE4C7F5EF8C1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4f:6e:ec:00:29:1b:8d:89:76:67:b0:f7:59: 34:10:89:67:31:bf:20:df:ef:b7:05:0a:01:2a:28: cb:18:53:52:07:7a:c9:46:1b:80:b6:75:18:06:33: e6:62:d1:2e:a2:75:e8:46:9d:63:7c:47:6b:a4:01: 13:50:09:ed:cd:11:b7:1b:dd:9d:aa:a0:38:7a:64: 61:5c:68:d2:6d:9c:b9:ef:3e:d2:e4:26:d5:12:bf: cf:1f:fe:71:94:66:f7:5c:c3:fa:90:64:d9:c0:f0: 07:50:b9:33:22:93:19:64:c7:c4:f9:76:a8:11:8a: 86:52:89:51:b2:c7:8c:9e:f4:fa:50:34:93:47:10: 5f:db:71:30:79:48:58:19:b1:68:67:4c:b1:75:4a: 3a:a2:e6:4f:86:97:62:6b:b0:26:98:f5:ab:b7:33: 6f:55:04:3f:a9:14:8a:3a:29:ce:94:dd:e4:8c:84: 96:ff:a2:0b:a7:86:df:78:50:a4:1d:d4:f0:13:2c: 0a:39:6a:88:50:9d:14:35:c3:71:13:2b:ef:5b:24: 27:3c:9a:9b:59:d0:e5:99:55:a2:46:84:71:38:ee: 9f:21:bd:69:68:df:6b:39:7b:42:6c:a8:d4:d5:9f: 62:35:7d:a8:ed:95:4b:a8:19:59:bd:81:89:74:63: c7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:22:89:5B:A7:EF:E3:3C:A2:9C:D3:0B:4E:4D:E4:C7:F5:EF:8C:1A X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ByKJW6fv4zyinNMLTk3kx_XvjBo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.216.0.0/14 Signature Algorithm: sha256WithRSAEncryption 62:89:e4:74:17:fe:b6:e8:4a:fe:df:81:6e:9e:28:09:aa:82: 74:38:20:63:dd:30:81:40:88:ea:18:5f:ab:b3:ef:34:c0:63: a6:0b:21:5a:fb:6c:6c:16:62:7d:2d:06:cd:83:5c:e2:df:21: 85:4b:8b:23:6d:27:a5:b5:ff:7a:0f:82:10:f0:2c:c1:61:ba: a6:dd:25:53:12:2c:c2:62:dc:d9:6f:99:40:6c:3b:bb:ab:2b: 98:8b:09:bb:b9:1f:20:a8:32:0a:ae:b4:46:40:26:91:7a:04: 82:88:1e:b6:3d:c2:6e:b5:3b:c7:ec:47:ce:98:1f:94:0b:c7: 41:11:21:26:0b:a6:ea:4c:3b:cf:cc:43:a0:06:44:b1:62:fc: 72:94:32:e7:32:31:9f:34:01:f9:86:d4:b8:d5:86:db:a1:2a: 8f:b8:01:a1:4b:a3:9a:54:b9:5f:85:0a:e1:70:8d:d8:f2:b6: d6:e6:24:1b:c6:b1:a6:26:3a:f4:40:38:22:5a:ae:ae:b1:b5: 01:29:3e:86:1d:ab:35:11:0a:ed:5f:c3:46:58:2f:20:fd:f6: 98:85:5e:e9:2b:d5:f2:55:8a:26:cd:59:c1:68:2f:46:96:79: 9b:ae:79:db:ad:1a:57:00:55:56:69:0b:bb:ab:63:7c:8a:51: 62:7c:0b:61 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICE2AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA3MjI4OTVCQTdFRkUz M0NBMjlDRDMwQjRFNERFNEM3RjVFRjhDMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6T27sACkbjYl2Z7D3WTQQiWcxvyDf77cFCgEqKMsYU1IHeslG G4C2dRgGM+Zi0S6idehGnWN8R2ukARNQCe3NEbcb3Z2qoDh6ZGFcaNJtnLnvPtLk JtUSv88f/nGUZvdcw/qQZNnA8AdQuTMikxlkx8T5dqgRioZSiVGyx4ye9PpQNJNH EF/bcTB5SFgZsWhnTLF1Sjqi5k+Gl2JrsCaY9au3M29VBD+pFIo6Kc6U3eSMhJb/ ogunht94UKQd1PATLAo5aohQnRQ1w3ETK+9bJCc8mptZ0OWZVaJGhHE47p8hvWlo 32s5e0JsqNTVn2I1fajtlUuoGVm9gYl0Y8cBAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUByKJW6fv4zyinNMLTk3kx/XvjBowHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQnlLSlc2ZnY0enlpbk5N TFRrM2t4X1h2akJvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AjHYMA0GCSqGSIb3DQEBCwUAA4IBAQBiieR0F/626Er+34FunigJqoJ0OCBj3TCB QIjqGF+rs+80wGOmCyFa+2xsFmJ9LQbNg1zi3yGFS4sjbSeltf96D4IQ8CzBYbqm 3SVTEizCYtzZb5lAbDu7qyuYiwm7uR8gqDIKrrRGQCaRegSCiB62PcJutTvH7EfO mB+UC8dBESEmC6bqTDvPzEOgBkSxYvxylDLnMjGfNAH5htS41YbboSqPuAGhS6Oa VLlfhQrhcI3Y8rbW5iQbxrGmJjr0QDgiWq6usbUBKT6GHas1EQrtX8NGWC8g/faY hV7pK9XyVYomzVnBaC9GlnmbrnnbrRpXAFVWaQu7q2N8ilFifAth -----END CERTIFICATE-----Generated at Mon Apr 7 05:07:49 2025 by rpki-client