$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/_9ZiQehqmfABOLZ08rELNPu2Bhc.roa File: _9ZiQehqmfABOLZ08rELNPu2Bhc.roa (raw, json) Hash identifier: 5ZzbrWeX72ifFE3ny3aWIZYPSxJAdwM849wEK+DDh74= Subject key identifier: FF:D6:62:41:E8:6A:99:F0:01:38:B6:74:F2:B1:0B:34:FB:B6:06:17 Certificate issuer: /CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Certificate serial: 0C6D Authority key identifier: 8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/_9ZiQehqmfABOLZ08rELNPu2Bhc.roa Signing time: Mon 10 Feb 2025 14:20:10 +0000 ROA not before: Mon 10 Feb 2025 14:20:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 43.251.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3181 (0xc6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Validity Not Before: Feb 10 14:20:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FFD66241E86A99F00138B674F2B10B34FBB60617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a5:9e:95:83:cb:3c:9f:d0:70:9c:f9:1c:bf: b4:1f:58:9b:48:fa:24:df:3d:ec:48:6f:a9:ef:28: 02:3c:48:c4:f6:74:f6:06:96:a2:e5:0d:06:15:4c: 08:c6:04:eb:0a:af:29:19:d7:bc:b0:ff:d1:9f:20: 35:15:f6:33:de:a9:28:f9:fc:9b:e6:15:d5:b0:49: 23:cc:b8:d8:5c:c4:10:cd:80:16:53:20:89:be:73: 03:34:54:bd:0f:44:47:62:20:4b:e9:8d:ca:2a:d7: c0:06:71:53:a2:2c:6a:fc:db:2c:7d:c7:66:4e:3c: f1:78:90:d4:79:b2:f2:7e:6c:16:a8:5a:0e:f4:2c: d9:d8:2b:d5:a1:b7:be:c2:c8:95:e7:16:40:8a:7a: 58:ce:80:6e:8d:fc:42:a6:95:58:ee:22:46:02:fe: 98:35:2e:36:3b:3d:f2:1b:f5:0f:59:8d:60:5b:4c: fc:c0:95:3a:c6:b0:d6:b7:78:6e:92:8a:90:1b:9d: 3c:de:26:1d:88:23:8d:6d:0a:5f:09:a8:9e:47:d1: 8d:45:22:fe:75:cf:ec:af:06:95:b9:0c:68:08:86: ed:0b:6e:88:ee:51:27:97:cf:97:f6:67:7a:e6:70: 76:30:12:3f:82:c0:14:d0:f9:3d:ff:94:4f:b7:a8: 43:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:D6:62:41:E8:6A:99:F0:01:38:B6:74:F2:B1:0B:34:FB:B6:06:17 X509v3 Authority Key Identifier: keyid:8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/_9ZiQehqmfABOLZ08rELNPu2Bhc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.251.56.0/22 Signature Algorithm: sha256WithRSAEncryption ae:0b:fb:5a:e4:b7:c9:9b:9d:fd:30:53:42:e8:76:43:93:d1: b5:de:d5:a4:22:79:32:e1:cd:c3:b5:54:7d:f8:cc:db:2c:53: 28:74:17:98:b6:44:6e:8c:af:87:fb:21:0a:7d:96:f0:aa:bb: 44:b1:1f:7d:a4:e4:a1:eb:88:74:b2:23:de:9d:a2:c7:af:5a: 57:92:a6:b2:d5:54:ed:aa:4d:fe:dd:23:8d:0c:0f:2e:c1:0e: 6a:3a:87:0f:51:67:42:aa:13:a3:6e:46:f1:e5:ac:36:e6:81: 1a:82:39:3f:c7:6f:c7:f1:d8:32:74:4a:86:ab:07:6e:f8:99: b0:7c:3f:e1:e6:6b:05:77:5c:51:7b:05:9a:bb:1b:b5:f2:23: 66:1a:a6:59:1c:64:0e:08:86:2b:ad:23:33:4c:f1:94:96:76: 62:46:d3:0c:e6:40:5e:6e:ce:45:7a:f6:69:39:12:c9:f1:33: 46:da:b8:fe:14:cf:f5:d1:73:8c:c1:40:1d:1e:81:0b:78:72: 7d:1d:b2:76:28:bc:cf:9b:23:07:62:96:37:08:fd:3b:48:7e: 49:44:ec:94:c1:ac:a1:10:27:ea:e3:59:7e:50:0f:fd:8e:1a: 04:44:a9:f1:d7:67:49:8e:31:4b:cb:30:02:d2:89:71:13:d5: 17:48:d1:8a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDG0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEMx ODNEN0NCQTZCOUE5Q0FGRTZGNTBCRkIwMzhENjQ1RDI2REM3RjAeFw0yNTAyMTAx NDIwMTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZGRDY2MjQxRTg2QTk5 RjAwMTM4QjY3NEYyQjEwQjM0RkJCNjA2MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtpZ6Vg8s8n9BwnPkcv7QfWJtI+iTfPexIb6nvKAI8SMT2dPYG lqLlDQYVTAjGBOsKrykZ17yw/9GfIDUV9jPeqSj5/JvmFdWwSSPMuNhcxBDNgBZT IIm+cwM0VL0PREdiIEvpjcoq18AGcVOiLGr82yx9x2ZOPPF4kNR5svJ+bBaoWg70 LNnYK9Wht77CyJXnFkCKeljOgG6N/EKmlVjuIkYC/pg1LjY7PfIb9Q9ZjWBbTPzA lTrGsNa3eG6SipAbnTzeJh2II41tCl8JqJ5H0Y1FIv51z+yvBpW5DGgIhu0Lboju USeXz5f2Z3rmcHYwEj+CwBTQ+T3/lE+3qEN/AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU/9ZiQehqmfABOLZ08rELNPu2BhcwHwYDVR0jBBgwFoAUjBg9fLprmpyv5vUL +wONZF0m3H8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0tZQ0xP VUQvakJnOWZMcHJtcHl2NXZVTC13T05aRjBtM0g4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9qQmc5Zkxwcm1weXY1dlVMLXdPTlpGMG0zSDguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TS1lDTE9VRC9fOVppUWVocW1mQUJP TFowOHJFTE5QdTJCaGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCK/s4MA0GCSqGSIb3DQEBCwUAA4IBAQCuC/ta5LfJm539MFNC6HZDk9G13tWk Inky4c3DtVR9+MzbLFModBeYtkRujK+H+yEKfZbwqrtEsR99pOSh64h0siPenaLH r1pXkqay1VTtqk3+3SONDA8uwQ5qOocPUWdCqhOjbkbx5aw25oEagjk/x2/H8dgy dEqGqwdu+JmwfD/h5msFd1xRewWauxu18iNmGqZZHGQOCIYrrSMzTPGUlnZiRtMM 5kBebs5FevZpORLJ8TNG2rj+FM/10XOMwUAdHoELeHJ9HbJ2KLzPmyMHYpY3CP07 SH5JROyUwayhECfq41l+UA/9jhoERKnx12dJjjFLyzAC0olxE9UXSNGK -----END CERTIFICATE-----Generated at Fri Apr 18 23:47:41 2025 by rpki-client