$ rpki-client -vvf rpkica.twnic.tw/rpki/PROFOND/0/AS38841.roa File: AS38841.roa (raw, json) Hash identifier: nxzMK5a5psSGWqQh7uS65r+Bir+kgcqBJpBkh4oUAnE= Subject key identifier: D5:EC:37:81:FB:3D:A5:66:BF:01:7E:08:93:29:BA:6D:1F:5D:60:5C Certificate issuer: /CN=9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5 Certificate serial: 21D0DFAFD5F682FE0DCD717B9FDE6CF9AE2B9645 Authority key identifier: 9B:01:D5:A4:96:75:5D:F6:9A:C9:2F:EC:3B:D6:4F:FE:4A:EA:51:F5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PROFOND/0/AS38841.roa Signing time: Thu 14 May 2026 10:04:56 +0000 ROA not before: Thu 14 May 2026 09:59:56 +0000 ROA not after: Thu 13 May 2027 10:04:56 +0000 asID: 38841 IP address blocks: 203.77.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PROFOND/0/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.crl rsync://rpkica.twnic.tw/rpki/PROFOND/0/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 00:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:d0:df:af:d5:f6:82:fe:0d:cd:71:7b:9f:de:6c:f9:ae:2b:96:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5 Validity Not Before: May 14 09:59:56 2026 GMT Not After : May 13 10:04:56 2027 GMT Subject: CN=D5EC3781FB3DA566BF017E089329BA6D1F5D605C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d7:3d:a2:3f:45:c7:14:f7:b8:1e:13:53:57: d3:fc:19:1c:42:da:4b:1e:f4:6c:f4:93:11:10:92: 5d:05:29:0f:54:c1:c5:39:c8:32:b4:c6:67:11:37: 64:c3:f7:50:b3:91:da:20:ba:14:9e:33:88:79:4f: fd:1f:09:16:bd:a3:41:f0:86:68:c3:69:b6:9a:3b: 0d:80:96:5e:37:31:8b:99:f1:09:46:3a:b5:d5:f0: e3:d8:88:0d:82:3f:56:27:c5:61:ac:9e:51:14:83: 9b:e4:5b:89:f1:1e:03:95:78:67:7f:4a:ed:ee:c2: 77:56:e3:ee:74:80:6e:6f:63:cd:bf:d1:d3:95:14: 35:77:2b:60:9c:48:1a:18:44:2a:67:94:45:aa:e7: c0:94:81:48:1b:ee:21:24:0d:a6:82:4b:4b:26:f8: 74:c2:4b:a8:f2:8e:1c:4d:f0:52:c2:bf:97:ca:3b: bd:4a:e4:37:00:22:ba:3f:d9:cf:20:44:45:f5:29: ce:20:61:6f:c5:61:69:f4:c6:d5:ac:44:19:d5:a5: 92:73:ff:1a:52:0d:94:b3:3c:b5:fd:9e:96:53:d1: 5a:a1:6e:55:c7:b9:a7:b1:fc:52:44:c1:0d:99:b3: 76:05:5c:d3:b4:ea:d1:1b:92:26:a5:62:ef:29:b5: 01:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:EC:37:81:FB:3D:A5:66:BF:01:7E:08:93:29:BA:6D:1F:5D:60:5C X509v3 Authority Key Identifier: keyid:9B:01:D5:A4:96:75:5D:F6:9A:C9:2F:EC:3B:D6:4F:FE:4A:EA:51:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PROFOND/0/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PROFOND/0/AS38841.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.77.71.0/24 Signature Algorithm: sha256WithRSAEncryption 44:0d:0e:9c:26:db:0e:93:3f:09:b4:52:ee:f4:54:f4:ec:20: ef:5d:89:9f:77:b9:9f:9c:19:10:33:e7:d5:f8:97:53:9b:15: a0:62:d7:24:1f:e4:46:bd:c2:8f:c9:2e:bc:69:8b:42:e3:a9: ea:f5:23:3a:30:53:12:77:44:21:1a:ac:fb:52:f5:12:d6:8a: ea:81:41:0f:c8:4d:8b:02:26:1a:08:19:4b:58:f7:de:cb:75: a6:13:9a:2f:24:f2:66:d5:91:23:55:45:fa:a1:3d:eb:8c:66: bf:1f:0d:74:0c:b9:c9:87:b1:8e:19:5c:2e:0c:89:6a:13:af: 34:9a:dc:84:47:e8:be:84:ae:81:85:17:14:cf:29:b9:c1:f0: e4:f5:e5:31:fa:47:45:26:c0:1d:61:c8:0f:dd:d7:27:b2:74: 82:59:4c:5f:a8:57:d5:a7:05:ef:b6:25:48:ac:77:e3:1f:51: 21:37:87:bb:d3:f9:57:92:f5:87:14:13:6c:c0:19:c5:b7:05: 06:7b:1a:93:97:cd:7b:a5:90:92:09:80:85:2f:92:fd:d4:35: bf:61:54:d1:71:ac:7e:00:dc:ef:8d:98:39:e9:79:69:7e:ed: ae:65:01:b0:37:2d:af:90:03:03:9b:f7:1d:6e:87:c6:b4:d5: 19:c2:06:d0 -----BEGIN CERTIFICATE----- MIIErDCCA5SgAwIBAgIUIdDfr9X2gv4NzXF7n95s+a4rlkUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIwMUQ1QTQ5Njc1NURGNjlBQzkyRkVDM0JENjRGRkU0 QUVBNTFGNTAeFw0yNjA1MTQwOTU5NTZaFw0yNzA1MTMxMDA0NTZaMDMxMTAvBgNV BAMTKEQ1RUMzNzgxRkIzREE1NjZCRjAxN0UwODkzMjlCQTZEMUY1RDYwNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM1z2iP0XHFPe4HhNTV9P8GRxC 2kse9Gz0kxEQkl0FKQ9UwcU5yDK0xmcRN2TD91CzkdoguhSeM4h5T/0fCRa9o0Hw hmjDabaaOw2All43MYuZ8QlGOrXV8OPYiA2CP1YnxWGsnlEUg5vkW4nxHgOVeGd/ Su3uwndW4+50gG5vY82/0dOVFDV3K2CcSBoYRCpnlEWq58CUgUgb7iEkDaaCS0sm +HTCS6jyjhxN8FLCv5fKO71K5DcAIro/2c8gREX1Kc4gYW/FYWn0xtWsRBnVpZJz /xpSDZSzPLX9npZT0VqhblXHuaex/FJEwQ2Zs3YFXNO06tEbkialYu8ptQHDAgMB AAGjggG2MIIBsjAdBgNVHQ4EFgQU1ew3gfs9pWa/AX4Ikym6bR9dYFwwHwYDVR0j BBgwFoAUmwHVpJZ1XfaayS/sO9ZP/krqUfUwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFJPRk9O RC8wLzlCMDFENUE0OTY3NTVERjY5QUM5MkZFQzNCRDY0RkZFNEFFQTUxRjUuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvOUIwMUQ1QTQ5Njc1NURGNjlBQzkyRkVDM0JE NjRGRkU0QUVBNTFGNS5jZXIwTgYIKwYBBQUHAQsEQjBAMD4GCCsGAQUFBzALhjJy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BST0ZPTkQvMC9BUzM4ODQxLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy01HMA0GCSqGSIb3DQEBCwUAA4IBAQBEDQ6cJtsOkz8JtFLu9FT0 7CDvXYmfd7mfnBkQM+fV+JdTmxWgYtckH+RGvcKPyS68aYtC46nq9SM6MFMSd0Qh Gqz7UvUS1orqgUEPyE2LAiYaCBlLWPfey3WmE5ovJPJm1ZEjVUX6oT3rjGa/Hw10 DLnJh7GOGVwuDIlqE680mtyER+i+hK6BhRcUzym5wfDk9eUx+kdFJsAdYcgP3dcn snSCWUxfqFfVpwXvtiVIrHfjH1EhN4e70/lXkvWHFBNswBnFtwUGexqTl817pZCS CYCFL5L91DW/YVTRcax+ANzvjZg56Xlpfu2uZQGwNy2vkAMDm/cdbofGtNUZwgbQ -----END CERTIFICATE-----Generated at Sat Jun 13 13:38:27 2026 by rpki-client