$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mx3WtZ6nUd7cZzvPNY7W_FULCN0.roa File: mx3WtZ6nUd7cZzvPNY7W_FULCN0.roa (raw, json) Hash identifier: av9clZsAECiW2euJxg+YcpkjERRvDhhQO+PFafufsgs= Subject key identifier: 9B:1D:D6:B5:9E:A7:51:DE:DC:67:3B:CF:35:8E:D6:FC:55:0B:08:DD Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1341 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mx3WtZ6nUd7cZzvPNY7W_FULCN0.roa Signing time: Mon 10 Feb 2025 14:09:17 +0000 ROA not before: Mon 10 Feb 2025 14:09:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 60.199.224.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 06:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4929 (0x1341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:17 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9B1DD6B59EA751DEDC673BCF358ED6FC550B08DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:0b:01:1f:a7:58:3f:10:3f:dd:36:ec:f9:4f: 03:a9:c4:59:9a:5a:e2:65:dc:53:2d:47:2b:2d:90: 9f:40:5e:bb:ff:14:0f:66:47:d8:f8:a7:f1:ed:b0: 95:b5:73:2e:cf:9a:a0:86:22:b0:11:9e:25:09:35: 33:5d:2a:45:91:e6:1c:f5:3a:2a:5c:25:f6:1a:c0: 09:d2:46:0a:67:04:a8:0b:7d:ad:a4:89:f5:7a:37: 55:8f:07:32:30:dc:f4:81:4b:ba:a4:16:6a:0c:58: c2:c6:86:51:68:4b:6a:fb:35:4b:e6:c7:23:b9:f8: 23:6f:5f:b2:5e:8c:7b:ed:b6:63:7a:61:0a:19:31: 4c:6d:a4:49:20:27:00:52:0b:df:85:e1:2e:2d:e5: ef:d8:0d:43:dc:e3:ea:58:ec:91:61:ca:c0:c1:11: 3f:9c:ae:5d:89:49:6b:59:20:7b:dc:35:fc:0d:16: c9:59:48:d3:3b:dd:e0:07:c4:50:d5:46:ed:85:7b: 71:e4:b5:6b:dc:a0:0e:0e:bc:7d:be:0c:bd:5a:42: 0d:6a:f3:d9:8e:cf:d5:33:af:76:51:19:b5:a7:98: cd:de:ff:0d:4d:5c:0d:0f:e3:4e:56:94:1b:73:ba: 15:40:20:da:ea:99:7c:c8:27:36:50:5f:8e:a8:b2: 6c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:1D:D6:B5:9E:A7:51:DE:DC:67:3B:CF:35:8E:D6:FC:55:0B:08:DD X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mx3WtZ6nUd7cZzvPNY7W_FULCN0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.224.0/24 Signature Algorithm: sha256WithRSAEncryption 64:cf:36:17:3e:0e:92:ef:dc:20:c9:04:15:e2:96:ef:dd:75: d5:3e:04:36:46:c3:8a:fb:87:da:37:0b:91:f3:3b:aa:87:8c: d6:87:8c:6b:e7:32:6f:4a:2f:75:b4:4d:68:44:d2:d4:b4:41: 0b:74:eb:44:27:1d:e1:54:88:75:d9:84:8d:e1:5e:d2:f4:95: a0:d0:9b:2b:74:aa:26:0c:a9:1a:01:74:ba:ac:07:0e:01:74: a9:66:7e:29:e9:fd:04:b0:9a:12:8b:f7:10:f0:d2:36:80:b4: 72:68:6d:32:4f:f7:3c:0e:78:0b:fb:c2:65:f3:1c:9d:19:85: 8f:c7:4a:c2:e0:45:e2:4e:bd:2a:24:a8:11:c7:5a:71:92:ad: 66:36:23:0e:1e:10:2f:32:c2:a7:43:9a:ae:1f:7a:6a:e4:12: c0:59:19:ee:cc:da:18:e4:b0:81:d3:b9:44:bc:47:5f:86:4f: 6c:60:3a:09:5d:ab:fd:23:5f:80:94:06:a6:66:94:11:8b:14: e6:c0:fb:51:c3:0c:dc:f8:66:14:12:51:21:80:e5:67:99:87: d9:10:c3:83:58:bd:04:ad:6e:a2:14:be:c0:50:93:33:44:0e: a1:44:f0:bd:fb:48:37:46:69:f7:24:2c:ec:c0:67:1c:99:8d: 1f:91:86:57 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICE0EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlCMURENkI1OUVBNzUx REVEQzY3M0JDRjM1OEVENkZDNTUwQjA4REQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdCwEfp1g/ED/dNuz5TwOpxFmaWuJl3FMtRystkJ9AXrv/FA9m R9j4p/HtsJW1cy7PmqCGIrARniUJNTNdKkWR5hz1OipcJfYawAnSRgpnBKgLfa2k ifV6N1WPBzIw3PSBS7qkFmoMWMLGhlFoS2r7NUvmxyO5+CNvX7JejHvttmN6YQoZ MUxtpEkgJwBSC9+F4S4t5e/YDUPc4+pY7JFhysDBET+crl2JSWtZIHvcNfwNFslZ SNM73eAHxFDVRu2Fe3HktWvcoA4OvH2+DL1aQg1q89mOz9Uzr3ZRGbWnmM3e/w1N XA0P405WlBtzuhVAINrqmXzIJzZQX46osmwlAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUmx3WtZ6nUd7cZzvPNY7W/FULCN0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbXgzV3RaNm5VZDdjWnp2 UE5ZN1dfRlVMQ04wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzH4DANBgkqhkiG9w0BAQsFAAOCAQEAZM82Fz4Oku/cIMkEFeKW79111T4ENkbD ivuH2jcLkfM7qoeM1oeMa+cyb0ovdbRNaETS1LRBC3TrRCcd4VSIddmEjeFe0vSV oNCbK3SqJgypGgF0uqwHDgF0qWZ+Ken9BLCaEov3EPDSNoC0cmhtMk/3PA54C/vC ZfMcnRmFj8dKwuBF4k69KiSoEcdacZKtZjYjDh4QLzLCp0Oarh96auQSwFkZ7sza GOSwgdO5RLxHX4ZPbGA6CV2r/SNfgJQGpmaUEYsU5sD7UcMM3PhmFBJRIYDlZ5mH 2RDDg1i9BK1uohS+wFCTM0QOoUTwvftIN0Zp9yQs7MBnHJmNH5GGVw== -----END CERTIFICATE-----Generated at Mon Apr 7 02:05:25 2025 by rpki-client