$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/PYFQU3TwT3g3NDzuLQmrZVje2R0.roa File: PYFQU3TwT3g3NDzuLQmrZVje2R0.roa (raw, json) Hash identifier: aVsG22vtr28CCpnHkPXmCHsx0uTihi79IvhlFX41DLQ= Subject key identifier: 3D:81:50:53:74:F0:4F:78:37:34:3C:EE:2D:09:AB:65:58:DE:D9:1D Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1304 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/PYFQU3TwT3g3NDzuLQmrZVje2R0.roa Signing time: Mon 10 Feb 2025 14:08:59 +0000 ROA not before: Mon 10 Feb 2025 14:08:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 60.199.176.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4868 (0x1304) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:08:59 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3D81505374F04F7837343CEE2D09AB6558DED91D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:45:27:10:b8:f2:29:ae:7c:d6:cf:ac:fb:14: 15:1f:73:6e:bd:87:83:4c:ae:c1:41:ca:a3:2f:21: cb:83:a4:20:79:be:92:f2:0c:37:da:5e:cc:b6:39: 0e:88:44:74:af:d0:a3:ea:b3:fc:dc:cf:70:71:28: 12:ae:c3:78:ff:fa:c1:5a:d4:9b:07:d4:b2:b7:ef: 05:2a:5c:b7:4b:17:bb:8b:9a:94:06:fd:52:3d:3f: fb:7e:46:24:d7:0d:d3:e7:e0:a8:1d:54:67:26:4b: b5:38:89:d8:02:28:f3:fa:60:2b:e4:78:ea:71:ae: 62:4c:ec:70:ac:41:98:ac:a1:87:e7:e7:fe:bc:07: 0d:9c:36:4c:20:42:45:93:7c:7b:9d:e3:a5:a8:cc: c4:26:e6:5c:bf:2b:30:8c:9f:36:c8:31:e4:db:30: 33:26:b8:c2:70:00:ef:b5:c8:fb:aa:cc:7d:80:19: 6f:64:ef:b8:dc:ce:7e:79:69:41:b6:3f:77:c4:fd: c2:e3:c7:61:f4:67:a4:e6:95:d7:de:10:11:b5:e4: 9b:25:71:7e:c5:97:9d:da:59:c5:8c:82:81:1d:57: bf:4f:27:60:f7:04:cc:98:34:6a:1d:17:1d:b4:a6: 7e:8d:7e:26:2e:87:4e:ce:02:73:87:15:94:11:2a: e4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:81:50:53:74:F0:4F:78:37:34:3C:EE:2D:09:AB:65:58:DE:D9:1D X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/PYFQU3TwT3g3NDzuLQmrZVje2R0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.176.0/24 Signature Algorithm: sha256WithRSAEncryption 24:13:87:39:f8:50:e3:bd:87:17:ee:e0:a2:72:6c:a7:3b:74: 25:14:22:57:40:0b:cc:31:3d:0a:24:be:b0:19:1c:08:4c:75: 94:da:80:b0:c6:72:a0:31:dd:3f:2a:05:59:b5:d6:61:90:e2: 11:db:51:d1:e7:c1:99:42:7a:96:23:6f:e2:89:15:02:a4:74: 8d:ca:21:d0:75:37:f9:30:11:31:7b:c8:7e:21:e8:63:7b:2c: 5f:29:09:f6:9d:7e:fe:07:d6:00:b2:81:2f:1e:c5:8b:6f:72: a8:2d:2c:33:87:0f:46:ab:53:ba:f7:b8:62:41:39:41:4b:14: 14:45:d3:08:c5:86:be:28:a6:86:9c:c3:1f:cc:e6:05:f1:b5: 1d:2e:5a:50:a2:7d:01:c7:a1:5f:0f:c0:55:25:4b:fe:5d:f4: 4b:37:2b:ec:bb:a3:d1:bf:c1:64:7a:a9:53:3a:bb:74:b6:36: 0e:86:50:2d:8c:97:2f:ea:b2:26:21:5b:98:f8:7e:46:0f:eb: 25:0e:ac:b1:c4:81:9c:7c:40:b3:2a:b1:0e:c2:5e:aa:f6:46: b6:de:d9:da:a1:e2:da:1f:8c:93:b9:2b:81:6d:46:27:2b:d5: 0b:83:88:08:4b:62:62:6e:16:50:09:e3:17:e6:33:98:95:f7: d2:7a:1a:c2 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEwQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA4NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNEODE1MDUzNzRGMDRG NzgzNzM0M0NFRTJEMDlBQjY1NThERUQ5MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfRScQuPIprnzWz6z7FBUfc269h4NMrsFByqMvIcuDpCB5vpLy DDfaXsy2OQ6IRHSv0KPqs/zcz3BxKBKuw3j/+sFa1JsH1LK37wUqXLdLF7uLmpQG /VI9P/t+RiTXDdPn4KgdVGcmS7U4idgCKPP6YCvkeOpxrmJM7HCsQZisoYfn5/68 Bw2cNkwgQkWTfHud46WozMQm5ly/KzCMnzbIMeTbMDMmuMJwAO+1yPuqzH2AGW9k 77jczn55aUG2P3fE/cLjx2H0Z6TmldfeEBG15JslcX7Fl53aWcWMgoEdV79PJ2D3 BMyYNGodFx20pn6NfiYuh07OAnOHFZQRKuSPAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUPYFQU3TwT3g3NDzuLQmrZVje2R0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvUFlGUVUzVHdUM2czTkR6 dUxRbXJaVmplMlIwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHsDANBgkqhkiG9w0BAQsFAAOCAQEAJBOHOfhQ472HF+7gonJspzt0JRQiV0AL zDE9CiS+sBkcCEx1lNqAsMZyoDHdPyoFWbXWYZDiEdtR0efBmUJ6liNv4okVAqR0 jcoh0HU3+TARMXvIfiHoY3ssXykJ9p1+/gfWALKBLx7Fi29yqC0sM4cPRqtTuve4 YkE5QUsUFEXTCMWGviimhpzDH8zmBfG1HS5aUKJ9AcehXw/AVSVL/l30Szcr7Luj 0b/BZHqpUzq7dLY2DoZQLYyXL+qyJiFbmPh+Rg/rJQ6sscSBnHxAsyqxDsJeqvZG tt7Z2qHi2h+Mk7krgW1GJyvVC4OICEtiYm4WUAnjF+YzmJX30noawg== -----END CERTIFICATE-----Generated at Mon Apr 7 02:00:10 2025 by rpki-client