$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YDaqyzi6wVhWKtx6P754l6nqwAI.roa File: YDaqyzi6wVhWKtx6P754l6nqwAI.roa (raw, json) Hash identifier: Lgt0kAla/FDlbIM4KMpAzpUBjxAvwjKRIR5hB6n3bSE= Subject key identifier: 60:36:AA:CB:38:BA:C1:58:56:2A:DC:7A:3F:BE:78:97:A9:EA:C0:02 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1332 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YDaqyzi6wVhWKtx6P754l6nqwAI.roa Signing time: Mon 10 Feb 2025 14:09:13 +0000 ROA not before: Mon 10 Feb 2025 14:09:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.208.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4914 (0x1332) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:13 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6036AACB38BAC158562ADC7A3FBE7897A9EAC002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:02:5e:f6:a3:02:67:ee:67:5a:94:22:4a:73: e9:a1:31:f1:96:5b:5d:ba:f1:3d:ab:3a:5d:f8:4a: 56:f1:2e:b5:7d:81:81:cc:02:f7:15:93:e6:d5:b4: 56:aa:67:32:ba:6c:9b:a4:88:44:58:43:e3:85:17: e1:70:56:88:17:fc:c9:00:40:f0:11:15:8d:80:84: 30:3f:ac:a4:4e:51:8b:d2:8e:a7:38:41:35:74:47: 09:5d:4b:9a:91:45:41:c5:b5:82:9c:c8:1e:39:72: b0:3d:ac:b7:fd:90:02:d9:c3:34:86:cb:86:7c:31: 3f:da:67:d8:7d:66:00:f5:08:60:ae:2e:a6:69:63: 4c:9f:d5:6c:79:43:75:21:4f:81:3a:c0:c8:f2:88: 02:99:b6:fd:2a:3f:d4:ee:4c:f7:7c:b2:46:de:41: 6e:91:09:32:4c:c8:eb:49:d7:ef:8a:c4:69:bd:11: 4c:e8:dd:6d:8f:1b:be:6a:1a:4f:c8:f0:73:42:58: 8b:38:64:25:e4:d0:c1:f8:11:31:35:93:7c:00:cb: d1:38:fe:a5:04:2e:d5:4d:1b:16:77:66:05:6e:31: f5:30:dc:fc:f6:bc:07:69:0a:42:60:28:d8:9c:cc: cd:f3:80:b2:17:36:fa:41:bc:75:3c:60:78:da:36: 81:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:36:AA:CB:38:BA:C1:58:56:2A:DC:7A:3F:BE:78:97:A9:EA:C0:02 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YDaqyzi6wVhWKtx6P754l6nqwAI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.208.192.0/18 Signature Algorithm: sha256WithRSAEncryption 34:0b:42:a6:01:7d:ba:0b:b7:27:f3:4c:70:8f:ce:9d:98:23: 56:e0:e3:10:32:1a:b1:e5:41:3a:4a:d9:1d:98:e2:19:a8:cf: 21:b2:ae:e5:b4:c3:3b:8c:af:f4:7b:7a:18:8e:e1:aa:08:3c: 8d:04:cc:55:15:a6:3d:d4:96:6f:e9:33:81:cd:90:7e:6b:93: f1:7f:58:0b:ff:0c:95:02:ef:90:c1:f1:c5:24:f8:47:96:bd: 5d:21:39:1d:4a:db:5c:bd:c9:eb:85:2e:6b:94:8b:19:dc:ab: f4:53:56:ba:61:06:f3:ae:c8:c5:1f:d0:28:e1:4a:94:00:5e: ab:c8:d2:6e:d5:57:ae:14:83:53:fc:57:9c:f4:12:5f:56:cb: 08:09:a9:8e:df:23:5c:b7:b5:f9:bd:8f:8d:34:d3:cb:16:f6: e3:9c:35:61:9f:43:0a:45:e6:16:65:ab:2c:37:e0:db:25:31: 66:36:dd:a5:82:90:7f:8e:c5:b1:b5:ea:7b:93:ba:51:5a:62: 94:68:de:d0:7e:6a:6a:49:d1:4c:19:b9:55:1a:39:3d:87:9e: a9:9b:15:e2:e6:af:2e:ee:63:38:3b:e9:ce:4a:0c:50:25:76: d7:7f:b1:e0:87:c0:9a:0d:a1:3d:3c:f3:1d:44:5f:09:6e:02: 8f:b2:2c:0e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEzIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYwMzZBQUNCMzhCQUMx NTg1NjJBREM3QTNGQkU3ODk3QTlFQUMwMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCAl72owJn7mdalCJKc+mhMfGWW1268T2rOl34SlbxLrV9gYHM AvcVk+bVtFaqZzK6bJukiERYQ+OFF+FwVogX/MkAQPARFY2AhDA/rKROUYvSjqc4 QTV0RwldS5qRRUHFtYKcyB45crA9rLf9kALZwzSGy4Z8MT/aZ9h9ZgD1CGCuLqZp Y0yf1Wx5Q3UhT4E6wMjyiAKZtv0qP9TuTPd8skbeQW6RCTJMyOtJ1++KxGm9EUzo 3W2PG75qGk/I8HNCWIs4ZCXk0MH4ETE1k3wAy9E4/qUELtVNGxZ3ZgVuMfUw3Pz2 vAdpCkJgKNiczM3zgLIXNvpBvHU8YHjaNoFPAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUYDaqyzi6wVhWKtx6P754l6nqwAIwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWURhcXl6aTZ3VmhXS3R4 NlA3NTRsNm5xd0FJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BtLQwDANBgkqhkiG9w0BAQsFAAOCAQEANAtCpgF9ugu3J/NMcI/OnZgjVuDjEDIa seVBOkrZHZjiGajPIbKu5bTDO4yv9Ht6GI7hqgg8jQTMVRWmPdSWb+kzgc2QfmuT 8X9YC/8MlQLvkMHxxST4R5a9XSE5HUrbXL3J64Uua5SLGdyr9FNWumEG867IxR/Q KOFKlABeq8jSbtVXrhSDU/xXnPQSX1bLCAmpjt8jXLe1+b2PjTTTyxb245w1YZ9D CkXmFmWrLDfg2yUxZjbdpYKQf47FsbXqe5O6UVpilGje0H5qaknRTBm5VRo5PYee qZsV4uavLu5jODvpzkoMUCV213+x4IfAmg2hPTzzHURfCW4Cj7IsDg== -----END CERTIFICATE-----Generated at Mon Apr 7 07:23:07 2025 by rpki-client