$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZUjR9FNcJwCR2olq3cy6-B-ziKI.roa File: ZUjR9FNcJwCR2olq3cy6-B-ziKI.roa (raw, json) Hash identifier: 44GICaKNzCklkuImzZeEna/+gC3Cf4i/Nz4AVbqvP9w= Subject key identifier: 65:48:D1:F4:53:5C:27:00:91:DA:89:6A:DD:CC:BA:F8:1F:B3:88:A2 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 136D Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZUjR9FNcJwCR2olq3cy6-B-ziKI.roa Signing time: Mon 10 Feb 2025 14:09:27 +0000 ROA not before: Mon 10 Feb 2025 14:09:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.67.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4973 (0x136d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6548D1F4535C270091DA896ADDCCBAF81FB388A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cf:53:5d:b0:56:42:1d:64:8c:50:15:20:5a: 6b:7e:de:8d:f6:9e:d0:4c:9a:fa:57:14:34:70:3c: 7c:a2:ab:b6:5d:79:63:c7:f5:8c:7f:a3:99:b5:6b: a7:9a:e8:33:df:c7:ea:c3:a3:25:43:0f:76:95:15: f4:47:62:d1:4a:f7:0e:04:61:18:08:b4:37:60:db: 03:e6:28:a5:66:02:1f:11:a7:e0:0f:6a:ff:5f:6b: f0:92:ca:34:e7:0b:df:42:b1:c6:6a:90:58:73:18: aa:8e:8a:29:95:9e:7d:5b:4c:86:19:20:cb:ca:2f: c5:31:ba:9b:1f:e3:95:87:f8:30:be:e2:42:cb:7d: 8e:c4:9f:7c:b7:9f:e1:3a:12:76:7d:24:d3:e2:d2: 33:6f:ec:41:59:8d:95:37:b0:87:e7:86:d8:e4:db: 83:e0:49:fb:f4:ab:87:33:57:3c:98:d8:6b:4d:1c: 0b:cd:b9:18:fe:5d:1a:d5:5d:bc:ac:4c:13:9b:df: 28:23:c5:e8:c5:3b:82:5e:d2:e7:e6:7f:0b:69:a3: cc:e3:08:a3:0e:91:c5:9a:ed:26:7c:ff:50:d3:c7: 0d:34:88:68:d8:c4:5f:89:ae:c6:d4:a4:b3:0b:f6: 21:a1:3b:d5:9f:4b:4a:e9:f5:e9:61:92:d7:aa:7e: f1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:48:D1:F4:53:5C:27:00:91:DA:89:6A:DD:CC:BA:F8:1F:B3:88:A2 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZUjR9FNcJwCR2olq3cy6-B-ziKI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.192.0/19 Signature Algorithm: sha256WithRSAEncryption 2c:2c:ba:f9:cb:a9:0c:02:b3:c7:75:ca:97:f9:3c:f3:73:fa: 30:26:fb:c5:23:81:59:0e:82:90:a6:87:81:d3:25:3e:fa:ae: 04:73:10:c9:11:df:55:85:96:0c:86:83:29:34:9c:74:29:f8: d1:c2:f7:cb:96:9c:72:87:0d:a9:5a:b0:99:1e:b9:cd:02:bd: 51:5a:10:f0:7f:fd:a0:cd:27:16:98:96:dc:46:fb:d7:61:2c: e9:f9:48:5a:70:9d:a3:23:b8:45:b9:68:5e:d8:6c:d7:59:09: 12:4f:a2:b9:06:61:70:97:ba:9e:0f:e7:08:29:ec:13:a9:b9: f6:5a:2e:7f:5a:2b:c2:02:db:e1:5d:5e:97:4a:0b:23:3a:e0: f6:74:4b:ed:0a:01:b8:56:3f:a5:83:1c:d1:cd:0f:c5:e1:51: da:01:63:66:8e:47:0c:87:f2:50:02:97:fc:43:42:ed:96:07: da:ef:6b:46:c9:fa:02:63:75:90:98:cd:72:2a:64:ca:b1:ed: 80:02:03:d4:2b:5c:e9:1d:13:e0:1f:dd:a8:3b:74:64:58:6e: ee:d5:14:25:41:d4:1f:a7:88:ef:47:5d:62:70:d3:71:e0:a8: 97:59:10:8f:29:13:8a:87:a9:cb:28:97:55:88:46:3a:d5:d7: 12:bb:33:7c -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICE20wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY1NDhEMUY0NTM1QzI3 MDA5MURBODk2QUREQ0NCQUY4MUZCMzg4QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWz1NdsFZCHWSMUBUgWmt+3o32ntBMmvpXFDRwPHyiq7ZdeWPH 9Yx/o5m1a6ea6DPfx+rDoyVDD3aVFfRHYtFK9w4EYRgItDdg2wPmKKVmAh8Rp+AP av9fa/CSyjTnC99CscZqkFhzGKqOiimVnn1bTIYZIMvKL8Uxupsf45WH+DC+4kLL fY7En3y3n+E6EnZ9JNPi0jNv7EFZjZU3sIfnhtjk24PgSfv0q4czVzyY2GtNHAvN uRj+XRrVXbysTBOb3ygjxejFO4Je0ufmfwtpo8zjCKMOkcWa7SZ8/1DTxw00iGjY xF+JrsbUpLML9iGhO9WfS0rp9elhkteqfvGpAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUZUjR9FNcJwCR2olq3cy6+B+ziKIwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWlVqUjlGTmNKd0NSMm9s cTNjeTYtQi16aUtJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdJDwDANBgkqhkiG9w0BAQsFAAOCAQEALCy6+cupDAKzx3XKl/k883P6MCb7xSOB WQ6CkKaHgdMlPvquBHMQyRHfVYWWDIaDKTScdCn40cL3y5accocNqVqwmR65zQK9 UVoQ8H/9oM0nFpiW3Eb712Es6flIWnCdoyO4RbloXths11kJEk+iuQZhcJe6ng/n CCnsE6m59louf1orwgLb4V1el0oLIzrg9nRL7QoBuFY/pYMc0c0PxeFR2gFjZo5H DIfyUAKX/ENC7ZYH2u9rRsn6AmN1kJjNcipkyrHtgAID1Ctc6R0T4B/dqDt0ZFhu 7tUUJUHUH6eI70ddYnDTceCol1kQjykTioepyyiXVYhGOtXXErszfA== -----END CERTIFICATE-----Generated at Mon Apr 7 05:35:01 2025 by rpki-client