$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Mg-hyycFEsc5eXl9h859K3cfmew.roa File: Mg-hyycFEsc5eXl9h859K3cfmew.roa (raw, json) Hash identifier: KprfRQzcoFJXkeb0FVMEUNvHR1Fd5ArO8vJePNIfifk= Subject key identifier: 32:0F:A1:CB:27:05:12:C7:39:79:79:7D:87:CE:7D:2B:77:1F:99:EC Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1371 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Mg-hyycFEsc5eXl9h859K3cfmew.roa Signing time: Mon 10 Feb 2025 14:09:27 +0000 ROA not before: Mon 10 Feb 2025 14:09:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.192.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 06:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4977 (0x1371) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=320FA1CB270512C73979797D87CE7D2B771F99EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:90:7c:f8:88:5d:80:ec:ef:51:b4:d5:76:f8: 10:15:ca:41:46:a6:a4:e5:b5:14:4e:a6:cd:a6:e7: 4a:3d:62:70:2e:c5:db:87:7e:26:1b:20:b6:fd:00: 44:a6:5e:fb:46:5b:e1:12:91:b5:c6:36:65:1e:d5: a9:3a:97:4e:bd:35:fa:6d:43:03:d0:88:f3:e8:eb: 24:9b:c8:4f:0e:32:41:85:77:b5:c7:8e:6c:87:d3: 39:d2:54:d8:97:ef:24:ff:53:62:44:58:ac:ce:7d: e9:3d:1c:0d:42:5b:3a:0b:b0:b9:cd:ea:67:26:e8: ab:8a:4d:4f:e6:6d:63:bd:a7:1d:43:21:04:3d:9d: ff:39:f4:51:cd:a6:32:95:66:ef:bb:0b:5c:b6:d2: 22:8f:2e:0a:2a:9c:6c:2f:35:5e:bb:24:81:c9:73: 59:a0:35:67:f2:d8:02:13:3f:71:a4:ec:8c:6b:6a: cc:0f:f7:8c:2e:f0:77:5c:59:3c:a8:64:7b:6b:e4: 6e:e8:e5:f7:94:4e:87:6c:d6:9f:14:fe:ff:78:90: 8b:d9:51:da:ea:50:ea:15:46:72:3f:60:37:e5:e1: 27:89:bc:05:f5:52:14:0f:8f:cc:50:47:3b:0c:c5: 8c:c2:53:85:5d:e9:75:07:de:2f:34:d4:bf:bd:e9: e6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:0F:A1:CB:27:05:12:C7:39:79:79:7D:87:CE:7D:2B:77:1F:99:EC X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Mg-hyycFEsc5eXl9h859K3cfmew.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.192.128.0/17 Signature Algorithm: sha256WithRSAEncryption 67:0f:02:f1:0b:f6:da:f2:c6:a5:3f:56:a5:10:91:94:01:46: 26:b2:27:77:46:d3:a4:7f:35:3e:b7:ea:10:32:69:33:c8:e4: 79:f0:32:e1:73:d9:8f:f8:fb:21:dc:7c:d2:6a:f8:ba:4c:cf: 26:88:27:c0:81:aa:4c:bd:d6:37:f6:03:93:84:0d:bd:19:a8: 95:21:77:13:91:0c:fc:f9:a1:43:ba:d6:52:9e:4f:84:34:5f: ef:e5:b8:f6:51:53:54:00:8e:23:fb:fa:ea:99:1b:42:16:32: 3c:f6:77:0a:d2:ed:92:12:7e:8a:e5:f6:35:26:f9:00:74:b6: 0b:95:6b:62:8f:fc:2f:9a:22:95:9a:d3:b1:b0:4b:1a:f8:cd: b9:8e:6f:ec:f8:a1:98:c7:11:8b:08:db:4f:27:df:ce:53:74: e2:6c:51:91:4b:89:3f:5b:a1:ac:d4:02:eb:20:b5:20:95:96: 94:57:d1:d6:34:5d:2c:bc:45:1f:8f:37:f9:4e:7c:a9:77:71: 17:48:ab:d8:d9:19:aa:0a:93:ec:41:b5:e6:e6:39:86:e6:64: 25:0a:55:39:c4:6d:fd:fe:60:cb:be:cb:1c:4a:f4:f4:b2:95: ff:5d:3b:5f:02:cd:43:a2:61:be:63:9f:ac:9b:fd:d8:d7:4a: af:2e:08:6c -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICE3EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMyMEZBMUNCMjcwNTEy QzczOTc5Nzk3RDg3Q0U3RDJCNzcxRjk5RUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwkHz4iF2A7O9RtNV2+BAVykFGpqTltRROps2m50o9YnAuxduH fiYbILb9AESmXvtGW+ESkbXGNmUe1ak6l069NfptQwPQiPPo6ySbyE8OMkGFd7XH jmyH0znSVNiX7yT/U2JEWKzOfek9HA1CWzoLsLnN6mcm6KuKTU/mbWO9px1DIQQ9 nf859FHNpjKVZu+7C1y20iKPLgoqnGwvNV67JIHJc1mgNWfy2AITP3Gk7IxraswP 94wu8HdcWTyoZHtr5G7o5feUTods1p8U/v94kIvZUdrqUOoVRnI/YDfl4SeJvAX1 UhQPj8xQRzsMxYzCU4Vd6XUH3i801L+96eY3AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUMg+hyycFEsc5eXl9h859K3cfmewwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvTWctaHl5Y0ZFc2M1ZVhs OWg4NTlLM2NmbWV3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME B9LAgDANBgkqhkiG9w0BAQsFAAOCAQEAZw8C8Qv22vLGpT9WpRCRlAFGJrInd0bT pH81PrfqEDJpM8jkefAy4XPZj/j7Idx80mr4ukzPJognwIGqTL3WN/YDk4QNvRmo lSF3E5EM/PmhQ7rWUp5PhDRf7+W49lFTVACOI/v66pkbQhYyPPZ3CtLtkhJ+iuX2 NSb5AHS2C5VrYo/8L5oilZrTsbBLGvjNuY5v7PihmMcRiwjbTyffzlN04mxRkUuJ P1uhrNQC6yC1IJWWlFfR1jRdLLxFH483+U58qXdxF0ir2NkZqgqT7EG15uY5huZk JQpVOcRt/f5gy77LHEr09LKV/107XwLNQ6JhvmOfrJv92NdKry4IbA== -----END CERTIFICATE-----Generated at Mon Apr 7 02:05:20 2025 by rpki-client