$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cyM74p47Q39EV8lM2U7wfuEY9xs.roa File: cyM74p47Q39EV8lM2U7wfuEY9xs.roa (raw, json) Hash identifier: GDjOyQvktGUlMuyz3omwHJe5CEX5OOi31khLBrKhLUA= Subject key identifier: 73:23:3B:E2:9E:3B:43:7F:44:57:C9:4C:D9:4E:F0:7E:E1:18:F7:1B Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1306 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cyM74p47Q39EV8lM2U7wfuEY9xs.roa Signing time: Mon 10 Feb 2025 14:09:00 +0000 ROA not before: Mon 10 Feb 2025 14:09:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.17.104.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 06:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4870 (0x1306) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:00 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=73233BE29E3B437F4457C94CD94EF07EE118F71B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:81:c0:f2:73:c6:3c:1c:99:6e:f3:db:a7:91: bc:8d:23:eb:86:45:49:30:b5:18:51:b9:4d:df:7c: 41:af:40:71:4b:89:8f:94:99:c6:c4:d2:d0:fe:16: 6b:d7:b5:65:3b:b3:9e:74:29:00:dc:23:98:f8:5a: 43:ad:08:91:69:3f:a3:60:5f:5d:50:11:b2:7a:38: 0e:79:9c:98:3b:a1:11:6c:71:2c:c0:3a:8a:79:55: 62:a8:cd:b7:c0:36:d7:09:7e:1d:9a:49:24:df:fc: b2:67:c1:84:8c:59:41:54:33:93:f3:76:e1:55:6e: da:65:6a:c5:bf:b1:d8:47:78:d5:d9:9b:83:51:26: e3:91:37:e6:6b:86:3c:1c:bb:9f:3e:79:49:80:b5: 3b:91:b5:50:58:5e:b1:ee:a9:35:22:40:bb:99:76: 7a:e0:4b:ce:cc:80:a8:7a:fc:26:a9:c1:8b:f7:33: 89:02:5a:54:fd:1a:34:34:a1:ee:f9:6c:fd:c0:dd: f6:2c:96:05:45:ea:da:87:9e:a8:0c:28:a8:05:ae: e9:6d:9f:6d:62:73:58:d7:23:c5:f0:b3:5c:73:9d: 5a:fe:e3:49:0d:df:b3:4d:48:38:a5:39:ac:4c:33: 15:a9:d1:a8:78:0c:73:68:c9:6f:8f:01:45:8c:0f: 5e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:23:3B:E2:9E:3B:43:7F:44:57:C9:4C:D9:4E:F0:7E:E1:18:F7:1B X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cyM74p47Q39EV8lM2U7wfuEY9xs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.104.0/21 Signature Algorithm: sha256WithRSAEncryption 2f:58:04:68:ab:a1:8b:41:cc:30:ed:63:51:cd:47:4d:e1:e1: 6c:f4:50:d0:a4:e1:0e:b7:64:3d:ef:0a:1a:a6:b5:5d:72:9d: d7:31:b4:a0:84:11:8b:76:31:56:59:a8:ab:50:09:8e:93:48: dd:00:51:65:8b:e3:e1:eb:fb:99:ab:cf:bb:77:7e:99:f0:13: 36:5c:70:51:21:79:31:b8:03:e3:7f:d4:b4:f6:ef:ec:08:4c: e2:b6:c9:b3:e6:02:9c:26:7c:4b:8d:05:5b:19:b3:12:41:72: e4:8c:c1:6d:30:6b:82:7a:19:d0:99:e3:97:84:95:4c:a8:5d: e5:45:a2:72:f0:1b:25:36:66:2a:25:93:7a:a3:6e:03:a9:64: fb:da:84:fd:ee:e4:6b:ed:25:93:8f:e5:58:02:ea:12:1e:7f: 89:27:3c:27:0d:c4:d7:74:19:4a:35:d8:2b:7b:dc:1b:ed:b8: 24:a4:2a:ee:f6:6f:07:68:68:c2:0e:1f:4b:23:d2:f6:be:b6: 67:66:ed:f8:38:e8:99:14:e9:55:b2:1e:bd:a5:cf:3a:47:4b: 38:9d:ba:ba:96:da:bf:d0:10:39:55:dc:e7:0f:ed:1e:3f:81: 4e:af:50:2a:51:15:32:86:fd:1d:02:3b:92:40:1b:18:d2:92: 19:f5:29:70 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEwYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDczMjMzQkUyOUUzQjQz N0Y0NDU3Qzk0Q0Q5NEVGMDdFRTExOEY3MUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1gcDyc8Y8HJlu89unkbyNI+uGRUkwtRhRuU3ffEGvQHFLiY+U mcbE0tD+FmvXtWU7s550KQDcI5j4WkOtCJFpP6NgX11QEbJ6OA55nJg7oRFscSzA Oop5VWKozbfANtcJfh2aSSTf/LJnwYSMWUFUM5PzduFVbtplasW/sdhHeNXZm4NR JuORN+Zrhjwcu58+eUmAtTuRtVBYXrHuqTUiQLuZdnrgS87MgKh6/CapwYv3M4kC WlT9GjQ0oe75bP3A3fYslgVF6tqHnqgMKKgFrultn21ic1jXI8Xws1xznVr+40kN 37NNSDilOaxMMxWp0ah4DHNoyW+PAUWMD15ZAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUcyM74p47Q39EV8lM2U7wfuEY9xswHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvY3lNNzRwNDdRMzlFVjhs TTJVN3dmdUVZOXhzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME A9IRaDANBgkqhkiG9w0BAQsFAAOCAQEAL1gEaKuhi0HMMO1jUc1HTeHhbPRQ0KTh DrdkPe8KGqa1XXKd1zG0oIQRi3YxVlmoq1AJjpNI3QBRZYvj4ev7mavPu3d+mfAT NlxwUSF5MbgD43/UtPbv7AhM4rbJs+YCnCZ8S40FWxmzEkFy5IzBbTBrgnoZ0Jnj l4SVTKhd5UWicvAbJTZmKiWTeqNuA6lk+9qE/e7ka+0lk4/lWALqEh5/iSc8Jw3E 13QZSjXYK3vcG+24JKQq7vZvB2howg4fSyPS9r62Z2bt+DjomRTpVbIevaXPOkdL OJ26upbav9AQOVXc5w/tHj+BTq9QKlEVMob9HQI7kkAbGNKSGfUpcA== -----END CERTIFICATE-----Generated at Mon Apr 7 02:05:20 2025 by rpki-client