$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZKup38iVaQZK4TbM0smQoWRSMvI.roa File: ZKup38iVaQZK4TbM0smQoWRSMvI.roa (raw, json) Hash identifier: d/jD77ZJXpwghlKM+/vS2rQ6ysGJfZQE8zlcC2MUMS4= Subject key identifier: 64:AB:A9:DF:C8:95:69:06:4A:E1:36:CC:D2:C9:90:A1:64:52:32:F2 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 12F3 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZKup38iVaQZK4TbM0smQoWRSMvI.roa Signing time: Mon 10 Feb 2025 14:08:55 +0000 ROA not before: Mon 10 Feb 2025 14:08:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 61.31.197.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4851 (0x12f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:08:55 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=64ABA9DFC89569064AE136CCD2C990A1645232F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:64:08:63:7a:f4:17:83:e2:f3:34:30:a4:e3: a2:fe:1c:b8:64:2b:ae:4a:c3:75:71:c8:0f:ea:d9: d0:5b:2a:9d:f3:d3:df:87:11:bc:a5:a6:6c:55:e8: 02:f9:03:3c:8d:06:ff:12:f9:90:cf:9e:6b:be:d2: b5:54:5c:1d:9c:a6:ef:f0:88:fe:93:39:a8:8b:82: 93:78:88:08:1d:50:3e:b4:ad:ae:78:35:03:25:7d: 9c:45:dd:15:e4:e9:8d:f8:47:37:21:ec:3e:40:e9: 0b:5c:0e:8c:9a:a5:23:4a:5a:8e:cf:66:45:74:85: f8:a9:ac:ce:94:52:28:f2:49:9a:d3:26:4b:e6:ec: 2e:2f:c6:ca:8f:0d:c7:eb:62:11:48:7b:5a:d5:97: cc:6e:5d:c0:ee:7d:4f:63:d4:3d:dc:4f:8a:ae:aa: 59:16:70:88:30:5f:6b:0c:37:86:72:8a:03:e4:43: 09:c5:07:49:71:b1:f0:7b:76:94:1a:42:0c:21:32: 96:1c:83:bf:9f:36:dd:4a:59:2a:7c:37:ad:30:dc: 2e:a3:45:31:7d:44:6c:34:1a:b6:66:a9:87:b2:87: 87:cd:89:a4:a1:63:c3:77:09:45:20:71:19:c1:d7: 7b:07:7f:4e:8f:7c:72:6a:74:70:e1:92:11:01:60: ad:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:AB:A9:DF:C8:95:69:06:4A:E1:36:CC:D2:C9:90:A1:64:52:32:F2 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZKup38iVaQZK4TbM0smQoWRSMvI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.31.197.0/24 Signature Algorithm: sha256WithRSAEncryption 51:b2:22:1d:de:c2:38:bf:c7:6c:88:80:f4:4b:5e:93:12:f2: aa:ac:6a:ce:85:a9:a4:b8:82:6b:e3:4b:5f:7b:63:aa:4c:a6: 49:3c:9c:23:40:74:ca:57:e6:74:0f:da:5f:2b:bd:44:6f:41: 64:31:2e:c9:3c:f1:da:59:46:12:3b:33:dd:bb:2d:bf:ab:11: 78:fc:9e:34:18:67:eb:3f:29:c7:db:03:c4:68:7c:ae:0d:91: 61:c4:ff:cd:c5:f1:9d:22:f5:4c:79:83:28:0b:a2:d2:d7:f1: 44:c0:94:c2:6b:a9:8a:d1:16:e7:d5:2f:c9:21:21:63:d4:f3: fc:a0:68:77:aa:d1:7a:36:4e:7c:a4:af:4e:7f:ef:b6:d2:d6: 1b:c6:ee:7c:84:60:55:27:e4:9e:f9:d5:26:d7:a5:07:7a:8f: 8b:2a:5f:48:20:6d:d2:93:d8:c1:55:a1:b4:cb:3a:e2:9c:e8: 9d:9f:53:b0:a5:26:c4:8d:f3:bc:d8:b1:3e:1d:35:ba:c7:e8: f1:f1:92:5f:c0:2c:ea:93:d9:e5:6f:74:3b:48:bb:c7:27:e6: 1f:75:9d:11:38:3d:4c:cc:52:92:e8:9c:a3:70:b5:92:96:85: b8:80:3a:7c:01:e1:3f:8e:e3:7c:f2:f3:81:01:a8:9d:18:86: 2a:fc:62:18 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEvMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA4NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0QUJBOURGQzg5NTY5 MDY0QUUxMzZDQ0QyQzk5MEExNjQ1MjMyRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvZAhjevQXg+LzNDCk46L+HLhkK65Kw3VxyA/q2dBbKp3z09+H EbylpmxV6AL5AzyNBv8S+ZDPnmu+0rVUXB2cpu/wiP6TOaiLgpN4iAgdUD60ra54 NQMlfZxF3RXk6Y34Rzch7D5A6QtcDoyapSNKWo7PZkV0hfiprM6UUijySZrTJkvm 7C4vxsqPDcfrYhFIe1rVl8xuXcDufU9j1D3cT4quqlkWcIgwX2sMN4ZyigPkQwnF B0lxsfB7dpQaQgwhMpYcg7+fNt1KWSp8N60w3C6jRTF9RGw0GrZmqYeyh4fNiaSh Y8N3CUUgcRnB13sHf06PfHJqdHDhkhEBYK2pAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUZKup38iVaQZK4TbM0smQoWRSMvIwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWkt1cDM4aVZhUVpLNFRi TTBzbVFvV1JTTXZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AD0fxTANBgkqhkiG9w0BAQsFAAOCAQEAUbIiHd7COL/HbIiA9EtekxLyqqxqzoWp pLiCa+NLX3tjqkymSTycI0B0ylfmdA/aXyu9RG9BZDEuyTzx2llGEjsz3bstv6sR ePyeNBhn6z8px9sDxGh8rg2RYcT/zcXxnSL1THmDKAui0tfxRMCUwmupitEW59Uv ySEhY9Tz/KBod6rRejZOfKSvTn/vttLWG8bufIRgVSfknvnVJtelB3qPiypfSCBt 0pPYwVWhtMs64pzonZ9TsKUmxI3zvNixPh01usfo8fGSX8As6pPZ5W90O0i7xyfm H3WdETg9TMxSkuico3C1kpaFuIA6fAHhP47jfPLzgQGonRiGKvxiGA== -----END CERTIFICATE-----Generated at Mon Apr 7 01:55:19 2025 by rpki-client