$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/G4ADnVuoA6-kH5WybQ70SQZmh3I.roa File: G4ADnVuoA6-kH5WybQ70SQZmh3I.roa (raw, json) Hash identifier: NgTHhdZg2zcw91OUp2Rh83G7FTBY803TsXIkQlEqi0c= Subject key identifier: 1B:80:03:9D:5B:A8:03:AF:A4:1F:95:B2:6D:0E:F4:49:06:66:87:72 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 131B Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/G4ADnVuoA6-kH5WybQ70SQZmh3I.roa Signing time: Mon 10 Feb 2025 14:09:06 +0000 ROA not before: Mon 10 Feb 2025 14:09:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.67.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4891 (0x131b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:06 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1B80039D5BA803AFA41F95B26D0EF44906668772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:af:d0:71:c3:a5:f1:c0:4b:24:e2:e4:cf:00: 4e:11:e3:40:9c:c5:d8:4e:3c:46:8f:78:44:1c:b5: 89:38:d5:4b:fe:43:ab:b4:ee:82:6a:2e:34:1d:99: 3b:7b:e8:8c:bd:59:00:d4:c3:bd:82:cc:19:f9:8d: 1f:56:7a:9c:d7:1c:ba:1f:75:3d:fa:a2:b9:2f:7b: 43:6a:fd:b6:01:8f:c1:26:f9:5f:e1:0f:f6:a5:df: 8e:1b:fd:28:67:08:2b:25:23:1b:ed:1f:e4:23:11: 4b:79:a8:b6:16:2a:28:34:31:68:34:97:ba:84:6a: 23:ee:c3:22:fe:de:5b:0b:f5:95:e2:9d:ff:d5:a9: a5:67:1f:eb:93:ad:c1:43:96:7a:b5:2a:3e:a6:36: 5f:dd:01:ab:86:1e:e0:35:6d:e4:fd:7a:fd:90:8e: db:ee:42:c2:d9:ea:c0:89:4e:4d:dc:8f:51:76:4f: 6c:41:c5:a2:dd:16:0d:78:72:db:a1:72:8f:d5:e4: b8:64:09:58:0e:be:2d:ca:04:4e:2b:48:8a:1a:70: 0d:ca:ef:6e:51:df:90:bf:46:e2:d9:88:d7:26:61: 32:f5:70:7c:59:e6:6f:9e:87:42:cb:49:dd:8b:94: 44:1a:e7:c1:64:a7:76:cb:10:59:68:c8:0d:fb:75: cb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:80:03:9D:5B:A8:03:AF:A4:1F:95:B2:6D:0E:F4:49:06:66:87:72 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/G4ADnVuoA6-kH5WybQ70SQZmh3I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.192.0/20 Signature Algorithm: sha256WithRSAEncryption 81:50:7e:9d:61:8c:10:13:95:1b:4c:60:a8:09:32:64:c0:89: e5:1b:e3:ed:a7:33:33:c9:38:9c:3c:f5:76:16:48:d9:27:bf: bb:43:a7:7c:34:51:48:63:0b:9c:54:d3:bc:3b:3d:fd:61:ad: ea:04:5a:21:d6:88:79:36:ab:84:d7:18:6e:4c:90:33:c8:e2: a0:4d:08:b6:71:54:c7:fe:11:8b:12:42:0f:da:82:ab:22:28: e7:5c:05:13:0d:3e:a7:61:68:7a:f5:3c:e2:ba:1a:0d:b3:a8: 91:19:02:a1:6a:72:5a:d9:02:17:83:50:46:92:fb:9c:7c:54: 99:75:9f:2a:d2:83:45:3c:ce:f0:c2:c8:23:7c:ad:0c:d9:7e: eb:3e:79:7f:54:b9:11:2d:7d:5e:71:33:67:41:a9:5d:85:04: 4c:eb:a2:35:8e:ab:da:cc:b2:cf:57:6f:0a:cd:34:b8:96:23: 9d:0f:67:7f:a9:a4:9f:00:fc:ce:ce:6c:35:3d:df:73:c2:eb: b3:94:f0:d9:15:09:b8:91:87:28:04:3a:6f:6f:96:d5:ba:bd: b8:35:10:09:62:23:32:e8:27:df:c0:db:3f:7c:81:77:77:0d: 3f:76:a4:90:e6:03:30:9f:c6:36:b7:3d:e4:26:7c:71:59:91: d4:cb:f2:cc -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICExswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFCODAwMzlENUJBODAz QUZBNDFGOTVCMjZEMEVGNDQ5MDY2Njg3NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0r9Bxw6XxwEsk4uTPAE4R40CcxdhOPEaPeEQctYk41Uv+Q6u0 7oJqLjQdmTt76Iy9WQDUw72CzBn5jR9WepzXHLofdT36orkve0Nq/bYBj8Em+V/h D/al344b/ShnCCslIxvtH+QjEUt5qLYWKig0MWg0l7qEaiPuwyL+3lsL9ZXinf/V qaVnH+uTrcFDlnq1Kj6mNl/dAauGHuA1beT9ev2QjtvuQsLZ6sCJTk3cj1F2T2xB xaLdFg14ctuhco/V5LhkCVgOvi3KBE4rSIoacA3K725R35C/RuLZiNcmYTL1cHxZ 5m+eh0LLSd2LlEQa58Fkp3bLEFloyA37dcuBAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUG4ADnVuoA6+kH5WybQ70SQZmh3IwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvRzRBRG5WdW9BNi1rSDVX eWJRNzBTUVptaDNJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNJDwDANBgkqhkiG9w0BAQsFAAOCAQEAgVB+nWGMEBOVG0xgqAkyZMCJ5Rvj7acz M8k4nDz1dhZI2Se/u0OnfDRRSGMLnFTTvDs9/WGt6gRaIdaIeTarhNcYbkyQM8ji oE0ItnFUx/4RixJCD9qCqyIo51wFEw0+p2FoevU84roaDbOokRkCoWpyWtkCF4NQ RpL7nHxUmXWfKtKDRTzO8MLII3ytDNl+6z55f1S5ES19XnEzZ0GpXYUETOuiNY6r 2syyz1dvCs00uJYjnQ9nf6mknwD8zs5sNT3fc8Lrs5Tw2RUJuJGHKAQ6b2+W1bq9 uDUQCWIjMugn38DbP3yBd3cNP3akkOYDMJ/GNrc95CZ8cVmR1MvyzA== -----END CERTIFICATE-----Generated at Mon Apr 7 05:41:56 2025 by rpki-client