$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/T5iaWZB6MvxeZJkNWiSlQqh1tw0.roa File: T5iaWZB6MvxeZJkNWiSlQqh1tw0.roa (raw, json) Hash identifier: 9s/qDQ9WUW6+lnXab/v/KJ00vd9ohcKJqjHkOzBxn8E= Subject key identifier: 4F:98:9A:59:90:7A:32:FC:5E:64:99:0D:5A:24:A5:42:A8:75:B7:0D Certificate issuer: /CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Certificate serial: 0BF9 Authority key identifier: 8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/T5iaWZB6MvxeZJkNWiSlQqh1tw0.roa Signing time: Mon 26 Aug 2024 05:26:24 +0000 ROA not before: Mon 26 Aug 2024 05:26:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.42.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3065 (0xbf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Validity Not Before: Aug 26 05:26:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4F989A59907A32FC5E64990D5A24A542A875B70D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6f:8c:ee:e5:59:10:f7:5f:59:e7:4b:ef:7b: 46:0a:7e:9f:e1:da:d9:1f:95:d6:d6:1b:9f:7a:95: 18:7b:97:ad:9c:90:8a:b3:74:72:ca:33:1f:13:00: 68:07:98:9a:d2:c3:36:6b:a1:92:55:3d:42:32:78: e5:40:d4:a8:fb:71:24:26:70:5f:ee:ca:a9:1c:30: 29:2b:cb:75:08:a0:bd:4f:f0:87:5d:8c:64:68:10: c7:4e:15:fd:02:a0:6b:e7:38:f3:73:ca:42:c9:4d: 62:da:cd:d5:0b:c6:07:b7:5e:ab:32:03:d2:d3:74: ec:f0:e0:1d:49:09:49:0e:fb:11:5a:88:f7:2c:76: d2:0e:44:57:2a:82:c4:53:d4:1c:05:09:8d:24:e8: 3f:97:5e:4e:cf:32:90:7a:1a:ad:ac:bb:16:89:17: 4e:9f:0c:96:42:c7:3c:57:21:3c:6a:2e:dd:0f:c6: 26:bd:90:3b:f2:be:65:ef:95:c6:d3:60:8e:13:bc: c4:6c:07:cc:ba:20:7a:b0:0e:58:34:2e:93:1c:f8: 73:73:93:de:87:fe:f8:46:a7:1f:1f:27:5c:d5:ec: b2:e2:c8:1c:4f:fd:b9:2a:d5:bc:e5:e2:e4:f3:ae: 7f:f4:c9:a6:8b:fb:aa:13:f2:6d:42:bc:16:4b:d3: f7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:98:9A:59:90:7A:32:FC:5E:64:99:0D:5A:24:A5:42:A8:75:B7:0D X509v3 Authority Key Identifier: keyid:8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/T5iaWZB6MvxeZJkNWiSlQqh1tw0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.42.144.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:dc:00:e2:85:34:f8:60:75:4d:b7:fb:eb:31:83:69:7a:7a: 74:e9:e9:f1:0a:bc:f0:9e:78:a4:8e:a1:13:22:d6:68:0a:55: 73:0e:17:52:46:b6:41:8a:2d:6c:c4:c8:13:d1:d7:87:75:99: 9b:56:e1:2a:c2:71:11:48:d6:e8:b3:e1:36:d8:aa:88:b7:9c: 68:ff:23:c6:57:0d:63:a0:68:fa:0c:69:7d:9d:1e:8e:ee:80: 9e:c4:22:74:96:96:17:be:f9:8c:7b:e3:12:a7:e2:57:02:f3: f9:ba:d1:c9:e7:04:8f:73:e4:a3:f5:34:cd:e5:15:49:13:db: f9:aa:fa:74:75:34:5e:e3:88:6e:cc:e0:4f:36:5d:14:19:3d: 25:35:ef:1a:bf:ff:b1:17:27:be:70:4a:56:c6:36:d4:cd:34: dd:c0:a1:ae:5a:ba:ff:04:c1:85:6b:ac:6f:44:cb:e3:dd:9f: 7b:82:9a:56:c8:6b:54:b3:d5:27:25:03:d1:d2:c6:a7:fc:65: ce:7e:5e:35:a0:46:3b:63:bf:40:a4:b2:8c:78:94:4f:67:7b: 1d:6a:88:4a:60:81:32:56:dd:25:6a:6f:e3:8a:e8:dc:ae:fc: 1c:7e:fb:3a:79:40:1e:70:d1:2a:bd:36:9b:f8:d7:ea:a4:76: d1:4b:7c:67 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICC/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEMx ODNEN0NCQTZCOUE5Q0FGRTZGNTBCRkIwMzhENjQ1RDI2REM3RjAeFw0yNDA4MjYw NTI2MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRGOTg5QTU5OTA3QTMy RkM1RTY0OTkwRDVBMjRBNTQyQTg3NUI3MEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSb4zu5VkQ919Z50vve0YKfp/h2tkfldbWG596lRh7l62ckIqz dHLKMx8TAGgHmJrSwzZroZJVPUIyeOVA1Kj7cSQmcF/uyqkcMCkry3UIoL1P8Idd jGRoEMdOFf0CoGvnOPNzykLJTWLazdULxge3XqsyA9LTdOzw4B1JCUkO+xFaiPcs dtIORFcqgsRT1BwFCY0k6D+XXk7PMpB6Gq2suxaJF06fDJZCxzxXITxqLt0Pxia9 kDvyvmXvlcbTYI4TvMRsB8y6IHqwDlg0LpMc+HNzk96H/vhGpx8fJ1zV7LLiyBxP /bkq1bzl4uTzrn/0yaaL+6oT8m1CvBZL0/eTAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUT5iaWZB6MvxeZJkNWiSlQqh1tw0wHwYDVR0jBBgwFoAUjBg9fLprmpyv5vUL +wONZF0m3H8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0tZQ0xP VUQvakJnOWZMcHJtcHl2NXZVTC13T05aRjBtM0g4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9qQmc5Zkxwcm1weXY1dlVMLXdPTlpGMG0zSDguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TS1lDTE9VRC9UNWlhV1pCNk12eGVa SmtOV2lTbFFxaDF0dzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZyqQMA0GCSqGSIb3DQEBCwUAA4IBAQBN3ADihTT4YHVNt/vrMYNpenp06enx CrzwnnikjqETItZoClVzDhdSRrZBii1sxMgT0deHdZmbVuEqwnERSNbos+E22KqI t5xo/yPGVw1joGj6DGl9nR6O7oCexCJ0lpYXvvmMe+MSp+JXAvP5utHJ5wSPc+Sj 9TTN5RVJE9v5qvp0dTRe44huzOBPNl0UGT0lNe8av/+xFye+cEpWxjbUzTTdwKGu Wrr/BMGFa6xvRMvj3Z97gppWyGtUs9UnJQPR0san/GXOfl41oEY7Y79ApLKMeJRP Z3sdaohKYIEyVt0lam/jiujcrvwcfvs6eUAecNEqvTab+NfqpHbRS3xn -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:14 2024 by rpki-client on console-ams.rpki-client.org