$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/2aRKNRvGK7v-pQWwpL9JQRIR068.roa File: 2aRKNRvGK7v-pQWwpL9JQRIR068.roa (raw, json) Hash identifier: Q1n89QRIznvsps+db314Opqynw3pllLtDzlBS61KBFA= Subject key identifier: D9:A4:4A:35:1B:C6:2B:BB:FE:A5:05:B0:A4:BF:49:41:12:11:D3:AF Certificate issuer: /CN=A2FB739525B742A28A743315C6C88E766A7E0DC3 Certificate serial: 0EC4 Authority key identifier: A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/2aRKNRvGK7v-pQWwpL9JQRIR068.roa Signing time: Mon 10 Feb 2025 14:02:45 +0000 ROA not before: Mon 10 Feb 2025 14:02:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131618 IP address blocks: 103.135.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 22:26:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3780 (0xec4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2FB739525B742A28A743315C6C88E766A7E0DC3 Validity Not Before: Feb 10 14:02:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D9A44A351BC62BBBFEA505B0A4BF49411211D3AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:60:4d:62:0a:ea:e4:39:29:4a:25:58:74:14: 04:f4:95:e1:79:f9:21:95:f9:94:94:c4:0c:1e:09: f2:90:f9:3b:0e:86:c8:aa:0d:87:a4:86:21:d8:9f: 1f:7c:44:64:d3:bb:81:e3:8c:0b:c4:2b:30:db:5a: 36:7b:c5:c5:50:c1:60:79:b4:58:df:7f:5d:b8:25: a5:3c:14:43:67:37:13:eb:a4:41:19:c3:33:2e:6a: 1d:93:bd:52:e7:eb:b2:f5:72:c2:03:d8:48:bd:82: 61:45:77:10:78:39:b3:5b:70:93:9a:1a:98:d8:f5: 32:48:34:0c:a8:03:db:30:dd:f4:bd:b5:fb:be:f4: 6a:24:fb:19:13:51:97:6a:b8:ce:21:8b:fb:62:da: 0b:5c:0f:df:6c:5d:1e:3d:c0:b1:e4:08:18:43:c8: 18:13:b1:ae:51:e2:d1:3f:af:71:01:17:23:bb:b3: 3b:3c:51:14:24:2c:5a:68:b3:b2:8e:d8:71:45:0b: 8d:81:2b:19:16:8e:d9:62:6b:19:22:b5:88:c9:f4: 59:17:34:68:da:08:66:82:70:67:48:51:47:61:4e: cc:55:35:29:96:76:51:27:15:a3:1e:e9:40:59:02: 99:c0:2f:b4:13:42:0f:6a:76:1e:9a:6e:f9:e3:28: 40:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:A4:4A:35:1B:C6:2B:BB:FE:A5:05:B0:A4:BF:49:41:12:11:D3:AF X509v3 Authority Key Identifier: keyid:A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/2aRKNRvGK7v-pQWwpL9JQRIR068.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.116.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:04:44:63:c4:4c:87:a1:13:b5:fc:d1:46:31:18:e8:18:f4: 97:6c:5a:e6:91:8a:b1:9b:bf:d8:b3:d5:fe:e5:8b:c2:74:e7: 11:ec:b5:9a:91:24:15:39:b4:e0:48:82:3a:4d:7a:bb:6b:31: d1:04:67:5b:19:2e:2c:e3:1e:42:cd:54:df:62:e8:52:13:ed: 51:d5:ef:cc:16:27:31:d1:78:f5:a2:78:37:94:d3:25:11:5e: 7e:94:1f:b6:1a:ac:40:e7:70:1f:d2:3b:40:e6:5b:d6:67:6a: bd:27:80:60:4b:8a:71:c9:52:23:d3:c3:8d:49:a2:06:4e:e1: f5:36:a7:97:e3:3f:19:ee:5b:03:c4:d0:91:88:7f:f4:88:0c: f3:4b:d3:b3:86:f7:f0:9c:8c:39:5a:46:04:6a:81:ed:0a:59: c4:c4:fb:6e:56:17:85:85:c8:c4:62:85:33:b3:ea:79:e9:f6: 6a:ec:83:57:6a:9e:5a:de:a3:9f:a8:99:2c:4c:90:fb:07:5a: f8:94:88:c8:0c:f4:54:a3:b7:18:61:bb:4e:d9:36:27:ff:fd: ee:2c:d1:e2:7e:85:72:aa:2c:f9:ec:56:14:30:f6:d0:17:49: fe:8f:9d:f7:20:92:32:7c:ec:7d:83:02:7b:05:38:23:7a:1c: 40:5d:e7:f4 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDsQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTJG QjczOTUyNUI3NDJBMjhBNzQzMzE1QzZDODhFNzY2QTdFMERDMzAeFw0yNTAyMTAx NDAyNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ5QTQ0QTM1MUJDNjJC QkJGRUE1MDVCMEE0QkY0OTQxMTIxMUQzQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBYE1iCurkOSlKJVh0FAT0leF5+SGV+ZSUxAweCfKQ+TsOhsiq DYekhiHYnx98RGTTu4HjjAvEKzDbWjZ7xcVQwWB5tFjff124JaU8FENnNxPrpEEZ wzMuah2TvVLn67L1csID2Ei9gmFFdxB4ObNbcJOaGpjY9TJINAyoA9sw3fS9tfu+ 9Gok+xkTUZdquM4hi/ti2gtcD99sXR49wLHkCBhDyBgTsa5R4tE/r3EBFyO7szs8 URQkLFpos7KO2HFFC42BKxkWjtliaxkitYjJ9FkXNGjaCGaCcGdIUUdhTsxVNSmW dlEnFaMe6UBZApnAL7QTQg9qdh6abvnjKED3AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU2aRKNRvGK7v+pQWwpL9JQRIR068wHwYDVR0jBBgwFoAUovtzlSW3QqKKdDMV xsiOdmp+DcMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNJQUNM T1VEL292dHpsU1czUXFLS2RETVZ4c2lPZG1wLURjTS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0Evb3Z0emxTVzNRcUtLZERNVnhzaU9kbXAtRGNNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNJQUNMT1VELzJhUktOUnZHSzd2 LXBRV3dwTDlKUVJJUjA2OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJnh3QwDQYJKoZIhvcNAQELBQADggEBAG8ERGPETIehE7X80UYxGOgY9Jds WuaRirGbv9iz1f7li8J05xHstZqRJBU5tOBIgjpNertrMdEEZ1sZLizjHkLNVN9i 6FIT7VHV78wWJzHRePWieDeU0yURXn6UH7YarEDncB/SO0DmW9Znar0ngGBLinHJ UiPTw41JogZO4fU2p5fjPxnuWwPE0JGIf/SIDPNL07OG9/CcjDlaRgRqge0KWcTE +25WF4WFyMRihTOz6nnp9mrsg1dqnlreo5+omSxMkPsHWviUiMgM9FSjtxhhu07Z Nif//e4s0eJ+hXKqLPnsVhQw9tAXSf6PnfcgkjJ87H2DAnsFOCN6HEBd5/Q= -----END CERTIFICATE-----Generated at Wed Feb 19 22:06:17 2025 by rpki-client