$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/a9vGf-hoH_ilwssf6O9bFlGzHvI.roa File: a9vGf-hoH_ilwssf6O9bFlGzHvI.roa (raw, json) Hash identifier: T+B56Q2JOJ2hJZ5av8kEdL7m2kC2yIh5IqjmtmpiyY4= Subject key identifier: 6B:DB:C6:7F:E8:68:1F:F8:A5:C2:CB:1F:E8:EF:5B:16:51:B3:1E:F2 Certificate issuer: /CN=834D79F4126BF9E9DC0B32B86764E7D602514E01 Certificate serial: 03B9 Authority key identifier: 83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/a9vGf-hoH_ilwssf6O9bFlGzHvI.roa Signing time: Mon 31 Mar 2025 03:41:59 +0000 ROA not before: Mon 31 Mar 2025 03:41:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 40065 IP address blocks: 103.175.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 953 (0x3b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=834D79F4126BF9E9DC0B32B86764E7D602514E01 Validity Not Before: Mar 31 03:41:59 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6BDBC67FE8681FF8A5C2CB1FE8EF5B1651B31EF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5c:54:84:e4:3d:1a:17:63:fd:e4:1f:7e:e4: 26:6a:48:c6:83:a6:d1:5e:a0:7c:fb:36:5d:4f:2a: 87:62:2b:9d:a2:ee:87:1a:de:94:5f:ea:14:38:00: c4:34:13:76:1a:f2:03:e2:d5:a3:b4:cc:fa:be:48: 50:01:dc:f5:f2:a5:76:db:43:ed:5e:ce:d5:df:b5: 7f:b6:d4:69:f6:3c:ce:53:82:14:19:d8:f1:1b:ab: 96:90:50:90:62:b1:53:d5:7d:d5:53:c8:49:1f:a2: d8:76:38:a1:ab:d8:c0:48:ce:5e:24:58:de:08:5e: 10:88:62:72:d3:a5:01:50:bc:10:65:0e:f0:82:ff: a5:19:57:0d:7b:1a:c0:ef:ef:ea:03:e5:a6:65:a2: ab:0c:71:de:a2:6f:b8:67:8e:25:d5:fd:75:66:25: 63:07:e7:56:bb:f0:ce:db:27:9d:13:e1:25:ec:bc: 59:c4:54:ad:27:aa:e3:91:b2:2d:fc:b1:c2:21:49: 36:7f:fa:ca:f5:c2:e7:1e:71:9b:3e:e3:7e:5f:4c: 04:a4:b0:c2:cc:39:ab:78:a3:59:eb:1c:10:b0:ae: 2b:47:35:55:ea:82:f0:37:fe:4f:ba:76:e6:17:ff: 60:44:45:83:f3:42:6c:f4:fc:fa:d3:b0:a3:f5:ea: a5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:DB:C6:7F:E8:68:1F:F8:A5:C2:CB:1F:E8:EF:5B:16:51:B3:1E:F2 X509v3 Authority Key Identifier: keyid:83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/a9vGf-hoH_ilwssf6O9bFlGzHvI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.175.166.0/23 Signature Algorithm: sha256WithRSAEncryption 02:2f:10:39:a5:0b:20:fd:a6:bd:66:66:d4:6d:42:85:e6:69: 6d:25:24:08:3e:98:03:98:93:1e:c1:af:28:75:db:4c:05:97: d7:5c:d9:9b:58:35:7b:d2:df:5e:8b:94:8b:8e:1b:81:d3:b6: c4:4d:84:0b:eb:f3:2e:e7:f2:5d:45:79:74:f7:5e:41:9a:71: be:eb:01:26:08:1e:ef:be:e2:22:46:7b:7c:e6:34:b5:14:dd: 82:0b:85:5a:5b:2a:ae:ad:ab:6c:3b:ce:f8:f2:07:b0:a7:6e: 86:8f:fd:32:ba:ea:58:a9:3f:99:af:a9:8d:c4:b6:6f:7f:7e: 7b:f0:5c:4d:95:eb:f6:27:55:ff:88:4b:3b:22:74:16:37:f5: 15:e4:8b:09:4b:db:a3:21:ec:b1:07:5e:1b:68:49:4b:80:5e: 37:30:79:19:fd:56:19:03:88:1c:b7:7f:0f:bf:3f:c5:7c:f8: 01:a8:a7:67:f3:ee:42:82:e8:45:f6:a0:2a:78:07:09:3d:d2: 98:63:d2:80:3c:33:7d:0c:65:f5:ce:51:83:5e:cd:24:b3:de: cc:ff:a0:68:e7:48:e1:3f:b3:bb:c9:b7:e2:b5:5c:b1:08:1b: 4c:7f:3c:88:09:c2:db:e6:b9:a0:22:69:06:59:fe:79:31:e6: 1e:4e:f2:54 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICA7kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODM0 RDc5RjQxMjZCRjlFOURDMEIzMkI4Njc2NEU3RDYwMjUxNEUwMTAeFw0yNTAzMzEw MzQxNTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZCREJDNjdGRTg2ODFG RjhBNUMyQ0IxRkU4RUY1QjE2NTFCMzFFRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2XFSE5D0aF2P95B9+5CZqSMaDptFeoHz7Nl1PKodiK52i7oca 3pRf6hQ4AMQ0E3Ya8gPi1aO0zPq+SFAB3PXypXbbQ+1eztXftX+21Gn2PM5TghQZ 2PEbq5aQUJBisVPVfdVTyEkfoth2OKGr2MBIzl4kWN4IXhCIYnLTpQFQvBBlDvCC /6UZVw17GsDv7+oD5aZloqsMcd6ib7hnjiXV/XVmJWMH51a78M7bJ50T4SXsvFnE VK0nquORsi38scIhSTZ/+sr1wucecZs+435fTASksMLMOat4o1nrHBCwritHNVXq gvA3/k+6duYX/2BERYPzQmz0/PrTsKP16qXpAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUa9vGf+hoH/ilwssf6O9bFlGzHvIwHwYDVR0jBBgwFoAUg0159BJr+encCzK4 Z2Tn1gJRTgEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURO T0RFL2cwMTU5QkpyLWVuY0N6SzRaMlRuMWdKUlRnRS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvZzAxNTlCSnItZW5jQ3pLNFoyVG4xZ0pSVGdFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVUROT0RFL2E5dkdmLWhvSF9p bHdzc2Y2TzliRmxHekh2SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnr6YwDQYJKoZIhvcNAQELBQADggEBAAIvEDmlCyD9pr1mZtRtQoXmaW0l JAg+mAOYkx7Bryh120wFl9dc2ZtYNXvS316LlIuOG4HTtsRNhAvr8y7n8l1FeXT3 XkGacb7rASYIHu++4iJGe3zmNLUU3YILhVpbKq6tq2w7zvjyB7CnboaP/TK66lip P5mvqY3Etm9/fnvwXE2V6/YnVf+ISzsidBY39RXkiwlL26Mh7LEHXhtoSUuAXjcw eRn9VhkDiBy3fw+/P8V8+AGop2fz7kKC6EX2oCp4Bwk90phj0oA8M30MZfXOUYNe zSSz3sz/oGjnSOE/s7vJt+K1XLEIG0x/PIgJwtvmuaAiaQZZ/nkx5h5O8lQ= -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:06 2025 by rpki-client