$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/bbstLVEQE0p6ZmC7BJfFHS7WBVs.roa File: bbstLVEQE0p6ZmC7BJfFHS7WBVs.roa (raw, json) Hash identifier: j09pN1tkREjIdcY2Mk065fULRB4ezBOj3akvD1/HK0U= Subject key identifier: 6D:BB:2D:2D:51:10:13:4A:7A:66:60:BB:04:97:C5:1D:2E:D6:05:5B Certificate issuer: /CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Certificate serial: 0BAC Authority key identifier: 8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/bbstLVEQE0p6ZmC7BJfFHS7WBVs.roa Signing time: Mon 20 May 2024 15:07:01 +0000 ROA not before: Mon 20 May 2024 15:07:01 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7483 IP address blocks: 43.251.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2988 (0xbac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Validity Not Before: May 20 15:07:01 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6DBB2D2D5110134A7A6660BB0497C51D2ED6055B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:66:18:c9:3b:4c:18:00:ce:91:21:8f:61:cd: 51:b8:fd:1f:74:50:62:ae:15:6e:07:03:95:1e:9f: bb:87:87:d1:8d:33:42:5e:3e:b4:40:de:ef:ff:ad: 48:09:ed:e4:36:76:55:f2:19:ae:e3:e3:93:54:06: 65:f8:c3:17:dc:32:2a:bc:c2:2f:4d:8e:f1:64:5f: 66:6d:96:4f:a5:b0:cb:ef:a8:07:51:e6:26:f8:9c: 80:d2:5e:81:49:91:f4:9d:0b:96:3f:aa:9a:3c:1a: 82:ec:9c:b6:ae:36:4a:22:2a:37:71:0d:3d:4a:fa: 25:41:06:06:06:9c:0d:f0:2c:21:3b:c1:d2:b9:7a: 0d:be:56:36:44:08:74:eb:56:6e:38:0b:7b:76:80: c5:c5:0f:79:aa:57:02:26:d1:34:a3:9b:15:d1:09: d3:47:e9:28:a5:5d:85:3f:74:06:89:51:e2:49:ca: 40:da:8f:99:5e:10:a1:13:93:6d:88:1b:ed:a3:62: 06:3a:3c:2a:79:f0:a4:46:31:a0:05:4e:ef:45:18: 34:be:bb:a2:93:ea:52:be:0e:31:6c:c3:97:20:78: e8:7d:be:da:8c:e4:70:4b:ce:ec:d3:14:7a:22:ef: 10:da:05:f2:32:ad:14:b4:43:a3:5f:bb:36:a2:59: fb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BB:2D:2D:51:10:13:4A:7A:66:60:BB:04:97:C5:1D:2E:D6:05:5B X509v3 Authority Key Identifier: keyid:8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/bbstLVEQE0p6ZmC7BJfFHS7WBVs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.251.56.0/22 Signature Algorithm: sha256WithRSAEncryption a6:90:72:39:0f:39:c6:15:44:84:59:91:db:4a:08:d6:65:16: e1:33:11:29:d2:00:c6:4d:ad:8b:ae:fa:6d:7b:53:0a:89:64: 8c:9a:35:b6:18:b1:f0:cc:87:4a:5a:26:fb:71:10:e7:d0:fa: f2:7b:4c:ae:75:93:05:0d:81:6a:f4:d1:9e:df:49:7f:cf:60: b4:ff:6e:b6:1e:7b:dc:05:04:87:d3:04:0c:e6:f5:82:13:fd: f7:32:c5:0d:ff:08:94:d8:61:63:b2:df:6f:66:55:6d:8d:45: d3:71:f4:f7:c8:b0:97:e5:b3:f0:c7:26:70:18:b7:b6:99:ab: 84:39:7f:04:ad:57:bb:49:d7:62:43:64:34:3d:cd:11:9f:e4: 0e:e5:38:4e:35:e4:81:9e:33:fe:49:28:29:c8:07:ec:99:b0: 17:93:ac:d1:54:77:a7:4f:cd:66:15:0d:25:b1:a9:0d:ee:f3: 47:e6:b9:5e:bb:b7:c4:e3:e2:fa:91:68:f4:6d:f6:dc:d4:3a: 37:7f:b0:08:73:7a:d3:86:83:0c:70:a6:e1:fd:3b:c2:92:88: 58:50:83:54:27:17:e0:06:eb:52:0a:23:ff:f5:e2:80:53:65: 63:47:81:2e:82:c9:4e:7e:c1:81:b9:ef:82:a2:20:05:9a:fa: 8c:dd:74:25 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICC6wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEMx ODNEN0NCQTZCOUE5Q0FGRTZGNTBCRkIwMzhENjQ1RDI2REM3RjAeFw0yNDA1MjAx NTA3MDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZEQkIyRDJENTExMDEz NEE3QTY2NjBCQjA0OTdDNTFEMkVENjA1NUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrZhjJO0wYAM6RIY9hzVG4/R90UGKuFW4HA5Uen7uHh9GNM0Je PrRA3u//rUgJ7eQ2dlXyGa7j45NUBmX4wxfcMiq8wi9NjvFkX2Ztlk+lsMvvqAdR 5ib4nIDSXoFJkfSdC5Y/qpo8GoLsnLauNkoiKjdxDT1K+iVBBgYGnA3wLCE7wdK5 eg2+VjZECHTrVm44C3t2gMXFD3mqVwIm0TSjmxXRCdNH6SilXYU/dAaJUeJJykDa j5leEKETk22IG+2jYgY6PCp58KRGMaAFTu9FGDS+u6KT6lK+DjFsw5cgeOh9vtqM 5HBLzuzTFHoi7xDaBfIyrRS0Q6NfuzaiWfvJAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUbbstLVEQE0p6ZmC7BJfFHS7WBVswHwYDVR0jBBgwFoAUjBg9fLprmpyv5vUL +wONZF0m3H8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0tZQ0xP VUQvakJnOWZMcHJtcHl2NXZVTC13T05aRjBtM0g4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9qQmc5Zkxwcm1weXY1dlVMLXdPTlpGMG0zSDguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TS1lDTE9VRC9iYnN0TFZFUUUwcDZa bUM3QkpmRkhTN1dCVnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCK/s4MA0GCSqGSIb3DQEBCwUAA4IBAQCmkHI5DznGFUSEWZHbSgjWZRbhMxEp 0gDGTa2Lrvpte1MKiWSMmjW2GLHwzIdKWib7cRDn0Prye0yudZMFDYFq9NGe30l/ z2C0/262HnvcBQSH0wQM5vWCE/33MsUN/wiU2GFjst9vZlVtjUXTcfT3yLCX5bPw xyZwGLe2mauEOX8ErVe7SddiQ2Q0Pc0Rn+QO5ThONeSBnjP+SSgpyAfsmbAXk6zR VHenT81mFQ0lsakN7vNH5rleu7fE4+L6kWj0bfbc1Do3f7AIc3rThoMMcKbh/TvC kohYUINUJxfgButSCiP/9eKAU2VjR4EugslOfsGBue+CoiAFmvqM3XQl -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:43 2024 by rpki-client on console-fra.rpki-client.org