$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/lFtAdTcslQHGIM4ETJrNW8ej9Us.roa File: lFtAdTcslQHGIM4ETJrNW8ej9Us.roa (raw, json) Hash identifier: 4BbO2RNENuWMytfOUZ2wwnw5E7Cq/meI8zPbFl2xQLQ= Subject key identifier: 94:5B:40:75:37:2C:95:01:C6:20:CE:04:4C:9A:CD:5B:C7:A3:F5:4B Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 130B Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/lFtAdTcslQHGIM4ETJrNW8ej9Us.roa Signing time: Mon 10 Feb 2025 14:09:02 +0000 ROA not before: Mon 10 Feb 2025 14:09:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.62.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 20:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4875 (0x130b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=945B4075372C9501C620CE044C9ACD5BC7A3F54B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6c:0c:7c:1c:1c:35:f7:97:b4:a5:4f:77:4d: e1:69:8f:3e:28:bd:b3:4d:f5:dc:63:70:94:83:f6: ed:1c:6d:27:cc:f1:6d:7b:16:52:41:d7:fb:09:be: 05:1f:32:3c:44:40:47:90:64:fe:b0:36:2f:01:54: f4:ac:b2:85:62:fc:bb:90:c1:b7:e5:26:b2:5e:21: ea:ba:b8:6d:0c:21:0a:6e:45:f0:ad:17:51:e4:14: 83:0f:de:0c:67:f5:02:33:cd:05:d2:98:d9:6e:94: 03:c7:77:1b:30:55:e2:b0:ba:ce:f4:d8:1e:9a:e9: 5e:fb:f0:b4:fe:e1:a6:d9:bc:42:93:5c:90:97:2b: a9:35:e2:2b:ab:b3:66:45:d4:98:d4:e7:02:e0:d5: 54:7f:fc:26:3a:d8:f0:07:06:b4:82:c2:c1:46:24: 5c:0e:96:5f:af:9c:fd:a6:44:42:d4:c1:3c:c2:69: 42:84:55:1b:99:b8:92:36:69:a9:6e:f8:78:71:a4: d5:fd:4e:ac:d9:05:55:ea:47:f5:3e:81:fa:67:ef: b3:94:97:87:81:3d:62:1d:c7:61:84:b8:04:f5:1a: b1:72:b3:83:a3:c7:cd:9c:d3:0e:2f:55:af:5c:0c: 07:81:67:df:79:19:69:56:47:93:7d:59:d1:a6:cb: 84:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:5B:40:75:37:2C:95:01:C6:20:CE:04:4C:9A:CD:5B:C7:A3:F5:4B X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/lFtAdTcslQHGIM4ETJrNW8ej9Us.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.0.0/19 Signature Algorithm: sha256WithRSAEncryption 0e:3a:ec:90:c2:7c:2a:ec:52:7f:4e:8a:f7:b7:5a:a8:e0:ed: 74:5e:1e:33:47:76:0c:6b:23:6b:7f:f8:0b:1d:83:af:e7:10: 2d:78:e9:34:9f:9e:b8:1b:e5:cf:6d:90:0a:54:f9:33:04:12: 9e:fe:a2:18:68:79:7c:4a:8f:a8:22:a8:96:a1:2e:64:57:3d: 1b:9c:58:61:b5:8f:f1:ef:e3:ff:04:28:f5:9f:a5:13:6a:ab: f3:c6:06:5c:bd:75:91:8f:15:63:2d:18:7a:34:e4:56:e1:6e: 13:d3:c7:9c:c7:bd:a9:61:e7:a6:57:69:7e:1f:86:6f:2a:82: 67:7a:d9:af:68:4a:23:a3:d1:ae:48:03:0a:01:da:2c:38:06: 87:4c:86:96:e8:08:db:c3:7e:c1:67:c2:b7:ef:63:3d:d1:ac: 0b:f5:ed:a4:4b:ad:ba:05:28:99:18:53:c0:7a:8b:7d:50:f3: ab:8b:98:aa:80:49:ad:d6:58:16:d5:66:85:70:34:fb:69:4c: 0e:1d:71:7f:f3:bc:e1:12:46:29:b7:9c:b5:78:9b:50:74:e7: 18:a0:e0:57:75:6f:d2:25:5e:79:6a:69:52:c4:07:8f:0f:bf: 44:74:43:73:7b:03:5b:45:77:b2:c3:ac:9c:bd:2c:35:55:53: 0a:d3:4a:ff -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEwswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk0NUI0MDc1MzcyQzk1 MDFDNjIwQ0UwNDRDOUFDRDVCQzdBM0Y1NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbbAx8HBw195e0pU93TeFpjz4ovbNN9dxjcJSD9u0cbSfM8W17 FlJB1/sJvgUfMjxEQEeQZP6wNi8BVPSssoVi/LuQwbflJrJeIeq6uG0MIQpuRfCt F1HkFIMP3gxn9QIzzQXSmNlulAPHdxswVeKwus702B6a6V778LT+4abZvEKTXJCX K6k14iurs2ZF1JjU5wLg1VR//CY62PAHBrSCwsFGJFwOll+vnP2mRELUwTzCaUKE VRuZuJI2aalu+HhxpNX9TqzZBVXqR/U+gfpn77OUl4eBPWIdx2GEuAT1GrFys4Oj x82c0w4vVa9cDAeBZ995GWlWR5N9WdGmy4SDAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUlFtAdTcslQHGIM4ETJrNW8ej9UswHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbEZ0QWRUY3NsUUhHSU00 RVRKck5XOGVqOVVzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdI+ADANBgkqhkiG9w0BAQsFAAOCAQEADjrskMJ8KuxSf06K97daqODtdF4eM0d2 DGsja3/4Cx2Dr+cQLXjpNJ+euBvlz22QClT5MwQSnv6iGGh5fEqPqCKolqEuZFc9 G5xYYbWP8e/j/wQo9Z+lE2qr88YGXL11kY8VYy0YejTkVuFuE9PHnMe9qWHnpldp fh+GbyqCZ3rZr2hKI6PRrkgDCgHaLDgGh0yGlugI28N+wWfCt+9jPdGsC/XtpEut ugUomRhTwHqLfVDzq4uYqoBJrdZYFtVmhXA0+2lMDh1xf/O84RJGKbectXibUHTn GKDgV3Vv0iVeeWppUsQHjw+/RHRDc3sDW0V3ssOsnL0sNVVTCtNK/w== -----END CERTIFICATE-----Generated at Mon Apr 14 19:01:10 2025 by rpki-client