$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/HLJY5Nq_nbjQrDsWT8lJ67XwEfc.roa File: HLJY5Nq_nbjQrDsWT8lJ67XwEfc.roa (raw, json) Hash identifier: olk2v8oknSbMRrGcaArObm+JHmB0oiIWVSzSgNPIUKI= Subject key identifier: 1C:B2:58:E4:DA:BF:9D:B8:D0:AC:3B:16:4F:C9:49:EB:B5:F0:11:F7 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 15B8 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/HLJY5Nq_nbjQrDsWT8lJ67XwEfc.roa Signing time: Tue 14 Apr 2026 07:16:58 +0000 ROA not before: Tue 14 Apr 2026 07:16:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131628 IP address blocks: 175.97.216.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 20:04:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5560 (0x15b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Apr 14 07:16:58 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1CB258E4DABF9DB8D0AC3B164FC949EBB5F011F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:24:73:87:70:88:f9:cf:86:28:a2:95:da:f9: e1:aa:07:a9:49:d8:94:45:2f:e5:34:43:22:5b:c4: b1:76:b0:7e:1b:b1:d8:2e:2b:9d:48:a9:1b:30:a6: b9:5e:90:2e:63:09:9e:53:07:d9:58:5e:13:e4:82: 8e:5e:3e:cd:8d:29:4c:0a:a3:ba:89:5e:a2:6e:d5: e2:65:5f:07:32:19:93:0f:c6:5f:89:b4:04:5c:16: a3:1e:36:0d:1e:92:57:c7:f5:70:74:aa:5d:49:6b: 52:29:13:4c:2e:ab:e3:d5:1e:a3:af:da:aa:e0:50: ec:e0:f7:01:76:8f:29:90:8a:ca:9d:28:b2:23:30: 50:59:75:f4:29:4e:da:61:23:05:a6:c1:0f:2e:e7: 85:b0:c5:8d:be:78:64:a0:54:6d:67:dc:ef:96:36: 69:b1:4b:a9:88:37:87:27:d3:e1:e2:16:3e:81:e3: a7:75:df:39:0c:2b:95:56:ae:e9:2b:a0:3b:01:58: 0b:21:d1:99:e2:1b:e5:48:f0:c9:86:e3:b3:ba:7d: aa:83:05:bf:05:78:f7:ea:06:c8:c1:b0:b8:e0:9f: e5:46:6a:d2:91:f7:ed:6c:d4:c0:0d:11:8b:dd:9a: b8:89:9b:af:a6:fd:f6:c0:c1:f7:ef:5b:5d:be:53: 3d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:B2:58:E4:DA:BF:9D:B8:D0:AC:3B:16:4F:C9:49:EB:B5:F0:11:F7 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/HLJY5Nq_nbjQrDsWT8lJ67XwEfc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.97.216.0/21 Signature Algorithm: sha256WithRSAEncryption 7f:bf:84:d1:1b:ba:58:c4:ad:ab:3e:ed:42:5a:9d:ae:de:f9: e9:bb:c6:d6:a8:d6:00:02:28:c8:3b:2e:d9:2c:6b:dd:b9:ca: 3d:ca:69:c4:3c:6b:d3:68:11:c1:ab:5c:85:1a:0e:4a:3f:b6: 34:5a:3c:73:ca:75:b1:4b:f6:79:78:57:21:dd:cc:5a:20:fc: 51:9c:5e:8f:8e:bf:7c:83:e4:5e:b5:e8:81:8c:65:d1:93:f5: 00:2c:bf:67:05:a2:3d:ba:6a:c5:04:37:b9:79:14:7b:5a:e5: 86:49:09:e0:22:9a:3c:7b:1b:77:03:24:93:78:c9:fa:4e:8b: 74:7c:56:22:2c:94:67:7c:0e:ad:7a:50:c6:33:3a:d7:57:b2: b2:bb:bf:50:27:8a:31:8c:7e:9b:e9:da:52:a6:09:49:f0:e9: d3:02:ea:f0:4a:7c:74:fb:6e:a3:e7:7f:16:90:87:8c:19:ee: 19:45:b9:c6:dc:cb:6f:d5:e6:ec:e6:36:bc:a4:f8:dd:d7:c2: e6:d8:1a:84:0d:0e:a6:18:e2:fa:40:5d:e5:77:a3:3b:f7:6b: 52:74:81:25:ff:08:5c:c0:dc:88:44:23:6c:4c:4f:a9:75:d3: a2:85:4a:9c:93:51:f0:8b:dc:a1:4e:b3:6e:8e:35:7d:8e:c8: 18:95:b5:40 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFbgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNjA0MTQw NzE2NThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFDQjI1OEU0REFCRjlE QjhEMEFDM0IxNjRGQzk0OUVCQjVGMDExRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDJHOHcIj5z4YoopXa+eGqB6lJ2JRFL+U0QyJbxLF2sH4bsdgu K51IqRswprlekC5jCZ5TB9lYXhPkgo5ePs2NKUwKo7qJXqJu1eJlXwcyGZMPxl+J tARcFqMeNg0eklfH9XB0ql1Ja1IpE0wuq+PVHqOv2qrgUOzg9wF2jymQisqdKLIj MFBZdfQpTtphIwWmwQ8u54WwxY2+eGSgVG1n3O+WNmmxS6mIN4cn0+HiFj6B46d1 3zkMK5VWrukroDsBWAsh0ZniG+VI8MmG47O6faqDBb8FePfqBsjBsLjgn+VGatKR 9+1s1MANEYvdmriJm6+m/fbAwffvW12+Uz1rAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUHLJY5Nq/nbjQrDsWT8lJ67XwEfcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSExKWTVOcV9uYmpRckRz V1Q4bEo2N1h3RWZjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME A69h2DANBgkqhkiG9w0BAQsFAAOCAQEAf7+E0Ru6WMStqz7tQlqdrt756bvG1qjW AAIoyDsu2Sxr3bnKPcppxDxr02gRwatchRoOSj+2NFo8c8p1sUv2eXhXId3MWiD8 UZxej46/fIPkXrXogYxl0ZP1ACy/ZwWiPbpqxQQ3uXkUe1rlhkkJ4CKaPHsbdwMk k3jJ+k6LdHxWIiyUZ3wOrXpQxjM611eysru/UCeKMYx+m+naUqYJSfDp0wLq8Ep8 dPtuo+d/FpCHjBnuGUW5xtzLb9Xm7OY2vKT43dfC5tgahA0Ophji+kBd5XejO/dr UnSBJf8IXMDciEQjbExPqXXTooVKnJNR8IvcoU6zbo41fY7IGJW1QA== -----END CERTIFICATE-----Generated at Fri Apr 17 17:12:17 2026 by rpki-client