$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eUTWiuwpkdiIjCqbhofVoDyoFS0.roa File: eUTWiuwpkdiIjCqbhofVoDyoFS0.roa (raw, json) Hash identifier: cvcG1kUxUdOuMpMCcl71hi76wBXSVhk7J7i8ctZ9d10= Subject key identifier: 79:44:D6:8A:EC:29:91:D8:88:8C:2A:9B:86:87:D5:A0:3C:A8:15:2D Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 136F Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eUTWiuwpkdiIjCqbhofVoDyoFS0.roa Signing time: Mon 10 Feb 2025 14:09:27 +0000 ROA not before: Mon 10 Feb 2025 14:09:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 203.77.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4975 (0x136f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7944D68AEC2991D8888C2A9B8687D5A03CA8152D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f6:fb:6b:41:3d:59:a0:74:44:62:f2:59:42: eb:a4:8e:df:0e:20:db:e7:74:ca:f9:08:38:d2:15: c6:56:40:da:a8:73:6f:ea:20:47:fa:57:c3:ef:35: d8:f3:1f:a3:47:93:6f:0d:65:c0:f3:02:c7:ed:66: 15:17:af:b5:a6:e1:9c:02:31:24:65:f8:77:b3:02: 07:4d:db:5e:62:83:da:cf:71:c5:cb:6c:8c:d2:99: 49:eb:f9:a0:85:b2:0d:a1:e8:00:56:ab:5e:ea:af: 48:4a:cb:a1:16:20:2f:18:68:8e:1c:cc:dc:54:4c: 77:77:71:fa:1b:90:dd:48:4e:e9:41:02:f5:c3:5f: 4b:4a:3c:da:86:79:c6:30:50:a1:7e:83:86:0c:f0: 33:b4:71:59:e4:78:5b:5a:f9:81:2b:35:b5:a2:01: 6d:1f:1b:57:02:a8:57:21:ef:2f:58:64:9d:b1:31: 6a:83:0f:da:d7:30:5b:60:ed:1d:64:cf:dc:46:b4: 01:2c:6f:ed:a4:12:94:86:7f:01:07:1e:d9:83:05: 15:39:a7:1b:f8:b6:9b:15:2c:c4:18:ea:76:57:49: f2:a0:dd:77:c3:48:75:8a:93:3c:86:98:73:d0:ff: 29:63:ee:c3:ff:7c:d5:13:8c:77:c9:02:79:79:5e: 6f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:44:D6:8A:EC:29:91:D8:88:8C:2A:9B:86:87:D5:A0:3C:A8:15:2D X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eUTWiuwpkdiIjCqbhofVoDyoFS0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.0.0/19 Signature Algorithm: sha256WithRSAEncryption 32:ea:a5:10:f4:88:07:6a:90:36:31:da:b6:ea:1f:b8:f5:c8: 07:59:a7:c5:9d:d2:72:1c:bc:37:9f:cc:dd:86:9b:d0:9e:78: cc:8e:b2:16:3d:96:b7:22:a8:9e:e0:b0:fd:13:f6:c4:8e:98: 50:6c:44:4f:f6:40:fb:2a:c4:cd:59:6c:41:79:71:10:5f:07: fc:62:7f:f1:3a:66:2f:bd:c5:5d:68:1b:84:34:07:42:d9:92: 2f:3a:f9:a9:8c:4f:86:b8:83:28:c6:73:1a:01:d4:7c:34:c5: dc:21:25:ad:78:60:cd:01:b0:d1:22:2c:a0:4b:05:7a:95:9c: 37:58:31:7a:dc:83:c3:08:7a:ef:25:8b:b9:c5:12:ab:b9:65: 12:d8:9d:51:77:fd:cb:c4:76:1d:8c:53:cb:65:f2:40:92:60: 40:90:01:10:54:bc:99:3b:89:2f:d2:67:77:e3:81:2a:12:fe: ef:b8:d8:0c:44:0d:c0:f3:89:e5:23:73:a8:60:df:6b:0f:a7: b9:e7:c4:f2:07:f9:aa:6d:c4:5a:2b:b7:dd:41:b0:25:96:cf: cc:31:97:38:e1:c2:39:55:74:15:80:5f:87:ce:c6:2d:62:ec: ca:b7:f0:e4:f0:0c:b8:cd:54:5d:eb:39:af:e9:d9:5c:5b:ae: ef:9d:90:7e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICE28wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc5NDRENjhBRUMyOTkx RDg4ODhDMkE5Qjg2ODdENUEwM0NBODE1MkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCk9vtrQT1ZoHREYvJZQuukjt8OINvndMr5CDjSFcZWQNqoc2/q IEf6V8PvNdjzH6NHk28NZcDzAsftZhUXr7Wm4ZwCMSRl+HezAgdN215ig9rPccXL bIzSmUnr+aCFsg2h6ABWq17qr0hKy6EWIC8YaI4czNxUTHd3cfobkN1ITulBAvXD X0tKPNqGecYwUKF+g4YM8DO0cVnkeFta+YErNbWiAW0fG1cCqFch7y9YZJ2xMWqD D9rXMFtg7R1kz9xGtAEsb+2kEpSGfwEHHtmDBRU5pxv4tpsVLMQY6nZXSfKg3XfD SHWKkzyGmHPQ/ylj7sP/fNUTjHfJAnl5Xm9rAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUeUTWiuwpkdiIjCqbhofVoDyoFS0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvZVVUV2l1d3BrZGlJakNx YmhvZlZvRHlvRlMwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BctNADANBgkqhkiG9w0BAQsFAAOCAQEAMuqlEPSIB2qQNjHatuofuPXIB1mnxZ3S chy8N5/M3Yab0J54zI6yFj2WtyKonuCw/RP2xI6YUGxET/ZA+yrEzVlsQXlxEF8H /GJ/8TpmL73FXWgbhDQHQtmSLzr5qYxPhriDKMZzGgHUfDTF3CElrXhgzQGw0SIs oEsFepWcN1gxetyDwwh67yWLucUSq7llEtidUXf9y8R2HYxTy2XyQJJgQJABEFS8 mTuJL9Jnd+OBKhL+77jYDEQNwPOJ5SNzqGDfaw+nuefE8gf5qm3EWiu33UGwJZbP zDGXOOHCOVV0FYBfh87GLWLsyrfw5PAMuM1UXes5r+nZXFuu752Qfg== -----END CERTIFICATE-----Generated at Mon Apr 7 01:57:51 2025 by rpki-client