$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eBZHGuu_5y0ad0QV7eo-mQ9lQss.roa File: eBZHGuu_5y0ad0QV7eo-mQ9lQss.roa (raw, json) Hash identifier: +pVOrF1zQJAZW3aUZEsAB0mISFiKB1NaPIv4FCOrLnE= Subject key identifier: 78:16:47:1A:EB:BF:E7:2D:1A:77:44:15:ED:EA:3E:99:0F:65:42:CB Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1377 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eBZHGuu_5y0ad0QV7eo-mQ9lQss.roa Signing time: Mon 10 Feb 2025 14:09:28 +0000 ROA not before: Mon 10 Feb 2025 14:09:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.17.96.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4983 (0x1377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7816471AEBBFE72D1A774415EDEA3E990F6542CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:4c:12:72:10:de:6e:6c:28:3e:f7:de:f0:4c: 13:5e:52:da:20:34:8c:d6:db:2f:c0:4e:0a:01:0e: 73:6e:3a:d8:6c:54:58:b9:53:cf:32:97:87:fd:05: 3a:6d:71:c8:c4:8b:7c:6f:d6:31:92:a4:94:82:c6: 65:9d:32:3b:1b:2c:ab:67:d6:64:f6:6c:73:4e:3b: a4:c8:db:03:9c:47:98:c7:7f:dc:71:d4:0c:9b:81: 1c:60:72:71:02:75:8b:8a:a1:74:cf:1b:ba:20:30: 7e:0f:68:39:e6:e8:1e:bf:f6:b4:eb:b2:6a:d9:5b: ef:36:6e:6e:0a:da:de:2a:a0:9c:42:00:0f:56:ce: 34:4e:4d:5d:77:60:dd:a8:3e:70:04:fa:59:e2:83: 8e:47:91:ff:88:3b:56:07:94:fb:43:c9:ea:ad:bf: af:19:ed:7c:21:87:e1:de:9e:b3:8e:8b:57:b1:6a: 33:73:17:27:98:9e:17:a6:d5:60:df:3e:7e:16:00: 2d:cf:52:b2:a2:04:4b:3f:82:db:7b:c9:62:61:91: 0a:b5:10:54:5e:51:36:d8:8c:0d:92:6a:59:00:b1: 36:8f:ef:9a:f3:74:ec:b1:b5:fc:11:ec:7b:18:d3: 08:54:9f:7a:58:51:05:37:53:18:31:dc:2b:4e:25: 9f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:16:47:1A:EB:BF:E7:2D:1A:77:44:15:ED:EA:3E:99:0F:65:42:CB X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eBZHGuu_5y0ad0QV7eo-mQ9lQss.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.96.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:c3:a3:cb:48:6e:bc:f0:58:d7:a9:54:5d:99:9d:c9:2c:4f: 86:eb:4b:be:a1:eb:80:8c:b4:0f:cd:db:76:f1:1b:53:86:fc: fc:a6:82:70:0a:7f:ae:69:b3:db:30:a7:bb:29:88:c6:d7:87: 3b:17:51:34:13:70:99:6f:bd:17:50:96:e6:ac:ca:27:f0:5f: cc:09:a1:d1:b2:1a:de:42:b7:a1:b9:b7:d5:59:5e:8e:f2:bf: 86:68:31:4d:7b:d8:90:33:3d:36:f0:8e:72:d1:b4:85:71:9c: ab:b6:ab:59:f3:a4:fd:b6:58:10:92:b6:5c:d2:2b:f2:8b:8c: 6d:86:d2:2d:1c:dd:3d:10:2d:68:ba:09:7a:38:98:f2:44:d0: 48:42:54:a3:6a:46:cb:0e:e2:9e:2b:28:51:c8:0c:83:a3:e9: c5:6c:c4:f6:fa:a2:e8:b4:b5:90:1e:d3:94:7a:c7:70:13:8a: 2c:2f:74:53:fa:92:49:33:c8:13:8e:4b:86:24:a8:18:de:52: 60:c1:64:3b:a1:09:22:25:c1:61:18:9f:9f:45:ad:cb:4b:f8: 8d:1d:de:4f:2c:24:3f:e6:f0:a5:82:18:b8:50:bf:ac:22:1f: f5:0b:c1:3c:17:4f:84:13:0c:22:91:f9:14:10:cf:2d:1c:8d: 45:22:5d:56 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICE3cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc4MTY0NzFBRUJCRkU3 MkQxQTc3NDQxNUVERUEzRTk5MEY2NTQyQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcTBJyEN5ubCg+997wTBNeUtogNIzW2y/ATgoBDnNuOthsVFi5 U88yl4f9BTptccjEi3xv1jGSpJSCxmWdMjsbLKtn1mT2bHNOO6TI2wOcR5jHf9xx 1AybgRxgcnECdYuKoXTPG7ogMH4PaDnm6B6/9rTrsmrZW+82bm4K2t4qoJxCAA9W zjROTV13YN2oPnAE+lnig45Hkf+IO1YHlPtDyeqtv68Z7Xwhh+HenrOOi1exajNz FyeYnhem1WDfPn4WAC3PUrKiBEs/gtt7yWJhkQq1EFReUTbYjA2SalkAsTaP75rz dOyxtfwR7HsY0whUn3pYUQU3Uxgx3CtOJZ+dAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUeBZHGuu/5y0ad0QV7eo+mQ9lQsswHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvZUJaSEd1dV81eTBhZDBR Vjdlby1tUTlsUXNzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AtIRYDANBgkqhkiG9w0BAQsFAAOCAQEAW8Ojy0huvPBY16lUXZmdySxPhutLvqHr gIy0D83bdvEbU4b8/KaCcAp/rmmz2zCnuymIxteHOxdRNBNwmW+9F1CW5qzKJ/Bf zAmh0bIa3kK3obm31VlejvK/hmgxTXvYkDM9NvCOctG0hXGcq7arWfOk/bZYEJK2 XNIr8ouMbYbSLRzdPRAtaLoJejiY8kTQSEJUo2pGyw7inisoUcgMg6PpxWzE9vqi 6LS1kB7TlHrHcBOKLC90U/qSSTPIE45LhiSoGN5SYMFkO6EJIiXBYRifn0Wty0v4 jR3eTywkP+bwpYIYuFC/rCIf9QvBPBdPhBMMIpH5FBDPLRyNRSJdVg== -----END CERTIFICATE-----Generated at Mon Apr 7 02:02:48 2025 by rpki-client