$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZFPqkRe7vI6vJV2jOzX78ur4qG8.roa File: ZFPqkRe7vI6vJV2jOzX78ur4qG8.roa (raw, json) Hash identifier: 2Aj7cVLXxPdhTYI/+CT/x3TqL6ekEeLB7qLZwUUU6zQ= Subject key identifier: 64:53:EA:91:17:BB:BC:8E:AF:25:5D:A3:3B:35:FB:F2:EA:F8:A8:6F Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 12E6 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZFPqkRe7vI6vJV2jOzX78ur4qG8.roa Signing time: Mon 10 Feb 2025 14:08:53 +0000 ROA not before: Mon 10 Feb 2025 14:08:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 211.79.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4838 (0x12e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:08:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6453EA9117BBBC8EAF255DA33B35FBF2EAF8A86F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:17:bd:56:14:56:c9:69:7d:5e:b9:eb:31:9c: 17:72:f6:4e:ba:43:ef:57:22:33:a3:6a:57:f9:da: 50:c0:ef:55:7d:11:7d:5a:cc:cf:11:0e:ed:ba:1e: e6:8b:bd:f3:bb:ca:04:20:5f:a4:3e:81:b4:48:ed: 5b:ec:15:e9:a1:4e:fb:20:02:2c:5a:0c:37:06:fd: 10:10:47:62:cb:74:aa:1d:ef:cc:06:79:2b:81:38: b4:44:27:92:4e:14:02:dc:ed:cf:c6:5d:48:48:ec: 03:5e:3e:c1:8d:de:2b:b5:20:a8:ee:57:05:71:80: 84:c7:5c:9f:8b:74:75:23:f6:87:9f:37:41:c3:d6: 7f:39:20:65:69:1d:ec:7c:f7:07:6d:ff:f7:49:09: 80:dc:c6:15:d2:17:81:0a:2d:c2:a2:5c:95:bb:b3: 01:af:5b:6d:45:af:9c:79:bd:90:92:64:83:1a:91: d7:5e:5a:a3:26:2d:73:70:2a:f0:35:de:d3:51:b5: a4:aa:e9:c2:81:dc:e1:d2:36:d1:0a:7f:6c:40:a2: 26:e6:c2:fe:12:68:86:98:b3:2f:39:6c:08:26:ef: 7b:ee:55:3e:2e:53:09:31:bf:8e:9c:83:af:d0:78: 4d:36:94:1e:35:a5:39:85:2f:02:9b:57:9f:3a:2f: dd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:53:EA:91:17:BB:BC:8E:AF:25:5D:A3:3B:35:FB:F2:EA:F8:A8:6F X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZFPqkRe7vI6vJV2jOzX78ur4qG8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.0.0/19 Signature Algorithm: sha256WithRSAEncryption 93:03:58:9e:28:ae:31:54:5d:8c:8e:7d:8c:f0:dc:3d:5c:f4: 3e:1e:91:c5:07:3f:b7:b7:ad:40:24:77:ae:a1:74:59:c1:50: 17:87:1c:13:ca:ad:72:92:8f:22:51:f1:77:f0:dd:b2:ad:61: 2d:74:db:07:64:50:70:45:90:47:d0:af:89:86:01:fa:c7:b4: ab:1e:ce:95:8d:2b:09:a3:5e:64:ad:cb:26:24:3f:27:0a:75: 1e:06:db:88:4c:d2:9d:88:72:87:1b:1d:f9:7c:65:13:69:10: 2d:c3:ae:de:cb:a9:f8:82:b3:5c:3c:dc:02:63:90:a1:79:e6: 00:00:8d:b8:05:2d:14:6f:2c:26:9d:77:44:ac:6d:78:d1:44: 38:aa:8d:ee:3a:32:90:72:98:19:84:43:ea:04:53:ef:2f:cb: d6:3f:65:62:dd:5b:2e:df:fd:94:c9:72:12:3e:ea:d7:40:dc: 10:a3:ed:57:30:63:66:fd:a0:58:13:25:2b:c7:5e:b4:58:0d: 39:9f:15:4c:77:27:68:6c:67:11:0e:e8:93:dc:4a:17:29:93: 36:ec:b1:c1:f0:fd:d8:f0:0e:20:7a:d9:7e:55:ad:5f:30:c7: 72:be:60:64:c8:dc:50:14:96:4a:52:fc:36:dc:fe:3f:24:47: 7e:fa:b9:af -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEuYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA4NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0NTNFQTkxMTdCQkJD OEVBRjI1NURBMzNCMzVGQkYyRUFGOEE4NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4F71WFFbJaX1euesxnBdy9k66Q+9XIjOjalf52lDA71V9EX1a zM8RDu26HuaLvfO7ygQgX6Q+gbRI7VvsFemhTvsgAixaDDcG/RAQR2LLdKod78wG eSuBOLREJ5JOFALc7c/GXUhI7ANePsGN3iu1IKjuVwVxgITHXJ+LdHUj9oefN0HD 1n85IGVpHex89wdt//dJCYDcxhXSF4EKLcKiXJW7swGvW21Fr5x5vZCSZIMakdde WqMmLXNwKvA13tNRtaSq6cKB3OHSNtEKf2xAoibmwv4SaIaYsy85bAgm73vuVT4u Uwkxv46cg6/QeE02lB41pTmFLwKbV586L935AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUZFPqkRe7vI6vJV2jOzX78ur4qG8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWkZQcWtSZTd2STZ2SlYy ak96WDc4dXI0cUc4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdNPADANBgkqhkiG9w0BAQsFAAOCAQEAkwNYniiuMVRdjI59jPDcPVz0Ph6RxQc/ t7etQCR3rqF0WcFQF4ccE8qtcpKPIlHxd/Ddsq1hLXTbB2RQcEWQR9CviYYB+se0 qx7OlY0rCaNeZK3LJiQ/Jwp1HgbbiEzSnYhyhxsd+XxlE2kQLcOu3sup+IKzXDzc AmOQoXnmAACNuAUtFG8sJp13RKxteNFEOKqN7joykHKYGYRD6gRT7y/L1j9lYt1b Lt/9lMlyEj7q10DcEKPtVzBjZv2gWBMlK8detFgNOZ8VTHcnaGxnEQ7ok9xKFymT NuyxwfD92PAOIHrZflWtXzDHcr5gZMjcUBSWSlL8Ntz+PyRHfvq5rw== -----END CERTIFICATE-----Generated at Mon Apr 7 02:02:49 2025 by rpki-client