$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/U2uPKn-q84oRrdkkWP_w3yvjAkI.roa File: U2uPKn-q84oRrdkkWP_w3yvjAkI.roa (raw, json) Hash identifier: F6oRI0+Gvp/tKlLKuJQ5y2T5yEbsRiPwS9X5iaGw6Wk= Subject key identifier: 53:6B:8F:2A:7F:AA:F3:8A:11:AD:D9:24:58:FF:F0:DF:2B:E3:02:42 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1316 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/U2uPKn-q84oRrdkkWP_w3yvjAkI.roa Signing time: Mon 10 Feb 2025 14:09:05 +0000 ROA not before: Mon 10 Feb 2025 14:09:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 60.199.168.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4886 (0x1316) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:05 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=536B8F2A7FAAF38A11ADD92458FFF0DF2BE30242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:31:a7:e0:67:53:0f:ff:c2:c2:2e:9c:09:5e: 35:8c:a6:28:15:bb:35:c7:75:b8:39:82:63:8e:4b: fd:43:60:20:6d:db:b4:2a:71:70:f3:37:c2:28:f9: 77:d2:06:16:aa:f5:80:1a:a7:a1:05:1a:b9:7c:98: a0:e7:76:ed:c5:14:e6:ce:0b:77:c7:60:23:e9:5f: 3d:f4:f9:6e:2f:4a:42:d6:1d:bb:1b:dc:04:66:ef: 00:26:38:2a:ec:14:5c:2f:ed:bd:a0:02:34:17:34: f1:c7:2b:57:52:fb:06:f1:31:8d:59:6b:8d:a5:cf: a6:03:07:14:04:8e:12:7f:4b:b3:1a:ad:3f:db:18: 34:fb:b4:52:df:c0:db:2a:f2:8e:54:88:17:ec:a5: 9d:3d:ee:34:6e:de:f5:25:48:58:3d:51:ad:cc:d1: b1:8b:cf:6f:76:28:7c:b7:18:af:ad:0e:60:13:75: d5:08:8a:4a:85:b8:9e:12:ba:f1:94:b1:e5:60:ef: 4b:42:38:db:ea:de:41:78:2b:09:0c:c2:d4:fe:0a: 4e:19:c6:e2:10:3a:34:41:84:60:97:86:ec:3f:1c: d7:ed:50:5b:ea:8b:c8:30:a2:7e:ed:4c:a4:fd:01: c4:6b:82:a5:09:32:71:12:15:a3:d0:ee:1b:93:65: 88:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:6B:8F:2A:7F:AA:F3:8A:11:AD:D9:24:58:FF:F0:DF:2B:E3:02:42 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/U2uPKn-q84oRrdkkWP_w3yvjAkI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.168.0/24 Signature Algorithm: sha256WithRSAEncryption 64:aa:a1:19:1c:58:8c:e6:58:50:9e:21:98:32:c4:60:bf:ec: 42:de:57:44:ad:89:7d:e5:85:74:c8:2a:4b:d2:dc:b0:86:e0: 5e:06:f7:f2:22:37:56:09:77:03:07:ae:99:a3:a6:d3:ed:a3: db:7f:40:a2:b2:12:d8:de:0b:a1:04:72:ce:30:75:66:3f:63: ee:bc:ae:fe:e6:dc:ab:4b:e5:d6:27:31:28:05:d8:91:e9:c4: eb:10:20:9d:5b:b5:19:4c:bd:d1:f8:70:01:16:97:23:28:13: d4:26:fa:32:45:01:58:ec:cf:ba:f6:cd:f6:52:27:92:e8:c9: cb:e4:2d:cc:5e:59:88:3f:32:69:e1:75:c9:94:1b:73:69:64: 64:b3:98:6e:f6:27:51:55:60:4a:e3:b9:0c:3a:97:96:e6:04: d8:43:8e:5e:2c:98:4f:3a:04:18:6a:6b:08:31:13:2d:0a:51: b1:bd:80:61:66:34:d5:08:22:3f:c8:8b:38:28:2c:b6:00:2c: 7f:01:16:66:d9:d0:6e:ca:5e:1f:b0:a5:82:5f:6b:83:9c:8f: c4:0d:2c:1e:93:b6:3c:e6:fa:19:ff:23:59:58:0f:df:ce:2a: 03:6a:bc:98:a7:87:2b:1a:92:a5:37:6d:92:a9:52:44:76:55: 97:47:c7:3f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICExYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUzNkI4RjJBN0ZBQUYz OEExMUFERDkyNDU4RkZGMERGMkJFMzAyNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLMafgZ1MP/8LCLpwJXjWMpigVuzXHdbg5gmOOS/1DYCBt27Qq cXDzN8Io+XfSBhaq9YAap6EFGrl8mKDndu3FFObOC3fHYCPpXz30+W4vSkLWHbsb 3ARm7wAmOCrsFFwv7b2gAjQXNPHHK1dS+wbxMY1Za42lz6YDBxQEjhJ/S7MarT/b GDT7tFLfwNsq8o5UiBfspZ097jRu3vUlSFg9Ua3M0bGLz292KHy3GK+tDmATddUI ikqFuJ4SuvGUseVg70tCONvq3kF4KwkMwtT+Ck4ZxuIQOjRBhGCXhuw/HNftUFvq i8gwon7tTKT9AcRrgqUJMnESFaPQ7huTZYi1AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUU2uPKn+q84oRrdkkWP/w3yvjAkIwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvVTJ1UEtuLXE4NG9ScmRr a1dQX3czeXZqQWtJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHqDANBgkqhkiG9w0BAQsFAAOCAQEAZKqhGRxYjOZYUJ4hmDLEYL/sQt5XRK2J feWFdMgqS9LcsIbgXgb38iI3Vgl3AweumaOm0+2j239AorIS2N4LoQRyzjB1Zj9j 7ryu/ubcq0vl1icxKAXYkenE6xAgnVu1GUy90fhwARaXIygT1Cb6MkUBWOzPuvbN 9lInkujJy+QtzF5ZiD8yaeF1yZQbc2lkZLOYbvYnUVVgSuO5DDqXluYE2EOOXiyY TzoEGGprCDETLQpRsb2AYWY01QgiP8iLOCgstgAsfwEWZtnQbspeH7Clgl9rg5yP xA0sHpO2POb6Gf8jWVgP384qA2q8mKeHKxqSpTdtkqlSRHZVl0fHPw== -----END CERTIFICATE-----Generated at Mon Apr 7 01:45:39 2025 by rpki-client