$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/LgwD6ehMKHfum2dJ0YD85gTPEg0.roa File: LgwD6ehMKHfum2dJ0YD85gTPEg0.roa (raw, json) Hash identifier: rZ5F1t8mzakV2MDVh0fWjWx8F4sigyp8RUL0nsRqUvs= Subject key identifier: 2E:0C:03:E9:E8:4C:28:77:EE:9B:67:49:D1:80:FC:E6:04:CF:12:0D Certificate issuer: /CN=34F47974E551C20236C3D89395F57F3BA02B57B7 Certificate serial: 0C42 Authority key identifier: 34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/LgwD6ehMKHfum2dJ0YD85gTPEg0.roa Signing time: Mon 10 Feb 2025 14:03:55 +0000 ROA not before: Mon 10 Feb 2025 14:03:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 395793 IP address blocks: 103.129.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3138 (0xc42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34F47974E551C20236C3D89395F57F3BA02B57B7 Validity Not Before: Feb 10 14:03:55 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2E0C03E9E84C2877EE9B6749D180FCE604CF120D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:71:76:c4:5b:bb:e9:f4:eb:67:52:e9:7a:b8: 47:9a:82:52:b8:09:64:4e:02:f5:71:00:5e:e9:20: f8:ac:ce:28:18:76:49:b0:30:58:94:f4:57:fd:33: a8:6c:fd:67:3d:4a:ce:95:89:3d:a3:ed:64:b3:78: 22:88:f3:c4:79:1a:5c:32:21:08:2c:ad:96:34:35: 35:47:40:50:4c:34:79:ef:29:f2:c1:0a:14:d6:d0: 61:17:50:a5:25:e9:e9:a8:3d:db:47:db:78:3b:d5: 5d:bd:db:1e:1a:26:07:c6:07:09:e0:3a:13:ab:67: 37:6f:a7:ca:3a:12:d5:6f:36:54:5d:9b:f5:b6:07: fe:a2:34:ab:54:f7:1c:50:a1:a8:7f:83:db:96:a2: 1e:17:d2:bf:a4:e5:e1:06:84:c5:cb:be:45:f2:c0: 7d:2d:ac:b2:99:9a:48:b8:87:1d:d7:98:42:df:0b: e2:3a:26:73:db:a7:84:a3:0a:a6:89:d3:21:00:5a: 30:54:06:86:18:76:f4:87:b4:4f:45:3d:7d:89:83: 4f:89:86:02:4d:15:0f:65:f3:0f:02:ee:8d:4c:03: 90:25:5f:e2:d8:b3:37:d8:5b:ad:9e:a4:b7:b1:c9: 28:99:bb:3d:c0:d7:f1:81:95:d0:f7:d1:71:9d:70: c3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:0C:03:E9:E8:4C:28:77:EE:9B:67:49:D1:80:FC:E6:04:CF:12:0D X509v3 Authority Key Identifier: keyid:34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/LgwD6ehMKHfum2dJ0YD85gTPEg0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.129.161.0/24 Signature Algorithm: sha256WithRSAEncryption 94:1d:e2:48:e7:d5:cd:92:8a:88:b5:dc:1e:a9:69:db:56:49: 76:94:01:16:8e:69:fa:85:cb:18:fc:17:3e:d6:b0:19:cf:ac: 89:66:6c:c7:96:5b:9b:b4:49:ac:c4:e4:e4:c9:90:3a:df:e7: 77:dc:1a:f8:3c:e7:45:b1:d7:00:96:36:6f:82:33:58:55:3b: b3:25:d3:57:58:19:79:0d:8b:25:6e:56:3f:af:90:82:75:f2: 26:21:26:a2:17:12:13:7e:77:40:87:5d:0c:2c:5e:3b:f5:b9: 21:49:d6:8c:76:16:b9:5f:df:a2:5a:a3:4a:2a:bc:78:64:5c: fa:f5:75:bf:67:7c:07:0e:35:26:d9:11:48:da:13:8e:26:c7: 39:76:f0:ba:0c:8c:d1:2b:70:cc:22:0b:73:f4:b9:77:0f:a6: b1:e0:7b:bb:28:df:8d:03:f9:60:17:4f:a8:ad:dd:40:1d:ac: 3b:7b:74:19:2a:59:b2:d3:e6:a6:a7:f2:b5:2f:d4:43:00:28: aa:5d:07:95:9b:89:73:56:aa:74:e2:28:5c:5e:f0:df:04:ff: 19:f7:38:93:d2:f1:30:7c:50:33:f1:40:c4:80:94:eb:41:d0: b1:ae:07:72:e4:9f:89:ac:22:aa:3b:cb:f4:af:d9:bf:b8:44: 73:c5:8b:87 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDEIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRG NDc5NzRFNTUxQzIwMjM2QzNEODkzOTVGNTdGM0JBMDJCNTdCNzAeFw0yNTAyMTAx NDAzNTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJFMEMwM0U5RTg0QzI4 NzdFRTlCNjc0OUQxODBGQ0U2MDRDRjEyMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3cXbEW7vp9OtnUul6uEeaglK4CWROAvVxAF7pIPiszigYdkmw MFiU9Ff9M6hs/Wc9Ss6ViT2j7WSzeCKI88R5GlwyIQgsrZY0NTVHQFBMNHnvKfLB ChTW0GEXUKUl6emoPdtH23g71V292x4aJgfGBwngOhOrZzdvp8o6EtVvNlRdm/W2 B/6iNKtU9xxQoah/g9uWoh4X0r+k5eEGhMXLvkXywH0trLKZmki4hx3XmELfC+I6 JnPbp4SjCqaJ0yEAWjBUBoYYdvSHtE9FPX2Jg0+JhgJNFQ9l8w8C7o1MA5AlX+LY szfYW62epLexySiZuz3A1/GBldD30XGdcMNbAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQULgwD6ehMKHfum2dJ0YD85gTPEg0wHwYDVR0jBBgwFoAUNPR5dOVRwgI2w9iT lfV/O6ArV7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9SSUNM T1VEL05QUjVkT1ZSd2dJMnc5aVRsZlZfTzZBclY3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTlBSNWRPVlJ3Z0kydzlpVGxmVl9PNkFyVjdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9SSUNMT1VEL0xnd0Q2ZWhNS0hm dW0yZEowWUQ4NWdUUEVnMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABngaEwDQYJKoZIhvcNAQELBQADggEBAJQd4kjn1c2Sioi13B6padtWSXaU ARaOafqFyxj8Fz7WsBnPrIlmbMeWW5u0SazE5OTJkDrf53fcGvg850Wx1wCWNm+C M1hVO7Ml01dYGXkNiyVuVj+vkIJ18iYhJqIXEhN+d0CHXQwsXjv1uSFJ1ox2Frlf 36Jao0oqvHhkXPr1db9nfAcONSbZEUjaE44mxzl28LoMjNErcMwiC3P0uXcPprHg e7so340D+WAXT6it3UAdrDt7dBkqWbLT5qan8rUv1EMAKKpdB5WbiXNWqnTiKFxe 8N8E/xn3OJPS8TB8UDPxQMSAlOtB0LGuB3Lkn4msIqo7y/Sv2b+4RHPFi4c= -----END CERTIFICATE-----Generated at Sat Apr 5 23:14:30 2025 by rpki-client