$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/VDgD7_mMfjcI3UjUMa65QP3v6pA.roa File: VDgD7_mMfjcI3UjUMa65QP3v6pA.roa (raw, json) Hash identifier: RJCCa6G3p8tOq3SFKPNo+lxMNQEBkw07uytWOFSspdE= Subject key identifier: 54:38:03:EF:F9:8C:7E:37:08:DD:48:D4:31:AE:B9:40:FD:EF:EA:90 Certificate issuer: /CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Certificate serial: 0AF3 Authority key identifier: 8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/VDgD7_mMfjcI3UjUMa65QP3v6pA.roa Signing time: Fri 01 Sep 2023 09:45:30 +0000 ROA not before: Fri 01 Sep 2023 09:45:30 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131618 IP address blocks: 103.129.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 May 2024 19:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2803 (0xaf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Validity Not Before: Sep 1 09:45:30 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=543803EFF98C7E3708DD48D431AEB940FDEFEA90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8c:ad:6d:3a:13:24:1f:09:f9:61:e1:1e:10: 37:f1:46:a0:19:7c:5c:3f:73:f9:43:68:ba:a7:3d: 92:7f:be:7c:2d:58:2c:d6:4a:df:ae:3b:1d:62:28: eb:cf:09:66:bf:aa:6f:b9:66:84:12:9a:fa:12:d8: f0:a5:9f:60:5c:76:38:c9:5d:8e:1c:51:7d:1a:49: 92:53:a6:fb:44:20:13:28:83:01:0a:3b:6c:a1:76: 99:c8:20:e1:e3:c7:05:13:54:75:ae:a6:ed:7c:2a: 1e:4e:aa:84:5f:f5:8d:e6:72:a5:34:ac:bf:56:e0: 4c:53:07:26:ba:fd:29:82:cd:e6:65:c2:95:74:15: a6:fe:2e:e8:ad:a1:9e:0e:c9:eb:6b:e6:cc:f0:0d: 63:0a:55:54:69:87:e4:a4:ce:b2:15:70:1e:9b:40: d6:59:d5:b5:ac:b1:7f:19:5b:86:c1:57:17:fc:ce: ed:1e:c6:9d:8f:cc:fd:8d:8b:ce:5a:8c:2f:23:e3: c0:c1:2c:89:1a:c2:35:c2:b0:93:a1:f0:8e:18:5f: 76:e8:08:ad:66:4a:7d:7d:4e:7c:83:e4:74:30:4b: 81:6b:a4:e8:00:03:90:1b:d5:3e:49:37:bc:dc:04: c6:b9:72:4d:55:aa:da:83:ec:fd:a6:50:12:29:6f: 43:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:38:03:EF:F9:8C:7E:37:08:DD:48:D4:31:AE:B9:40:FD:EF:EA:90 X509v3 Authority Key Identifier: keyid:8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/VDgD7_mMfjcI3UjUMa65QP3v6pA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.129.136.0/22 Signature Algorithm: sha256WithRSAEncryption 00:f3:e0:47:f8:aa:2e:e2:2e:34:d6:2d:f9:c2:9d:7b:cb:cf: 7d:bb:b1:d5:2c:19:d7:77:9c:0a:45:43:ea:35:f2:75:e4:95: d7:17:fa:45:9f:06:cf:f6:83:e2:54:12:16:84:af:c6:81:2d: 25:fb:67:4d:9f:a7:a8:71:74:b1:09:59:ae:7b:a6:b7:4b:21: 26:e6:8c:e1:7e:a2:aa:b6:e7:75:5f:42:5c:1b:b0:6d:25:c0: e2:a3:81:51:9e:83:64:1e:bb:bb:56:16:52:b3:61:63:0d:31: 64:67:9a:65:87:d7:a8:7a:cd:7e:6b:e4:53:19:38:f6:c4:44: f4:55:96:6e:af:30:6c:cc:65:6a:08:67:2f:0a:fe:fa:0e:93: 7a:4a:5d:ab:fd:ef:6e:35:bf:06:14:a4:d8:da:88:9b:18:da: 6d:90:3c:f5:3d:e2:d8:14:d7:62:6c:45:8f:ee:7a:28:7e:22: bc:6c:11:9a:4f:37:8a:5c:09:90:42:c3:a7:e1:4c:fa:55:9a: a3:a8:ac:c5:5b:d6:de:c8:88:e0:6c:1b:8b:e4:b8:8a:58:71: 3d:de:df:ad:cc:ea:9a:26:7e:e9:28:9f:f5:f0:ad:89:99:1f: 38:bb:48:a9:4b:74:1f:dd:aa:d7:6a:46:2a:98:27:0b:96:f5: 14:ff:ff:ce -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICCvMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEMx ODNEN0NCQTZCOUE5Q0FGRTZGNTBCRkIwMzhENjQ1RDI2REM3RjAeFw0yMzA5MDEw OTQ1MzBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDU0MzgwM0VGRjk4QzdF MzcwOERENDhENDMxQUVCOTQwRkRFRkVBOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+jK1tOhMkHwn5YeEeEDfxRqAZfFw/c/lDaLqnPZJ/vnwtWCzW St+uOx1iKOvPCWa/qm+5ZoQSmvoS2PCln2BcdjjJXY4cUX0aSZJTpvtEIBMogwEK O2yhdpnIIOHjxwUTVHWupu18Kh5OqoRf9Y3mcqU0rL9W4ExTBya6/SmCzeZlwpV0 Fab+LuitoZ4Oyetr5szwDWMKVVRph+SkzrIVcB6bQNZZ1bWssX8ZW4bBVxf8zu0e xp2PzP2Ni85ajC8j48DBLIkawjXCsJOh8I4YX3boCK1mSn19TnyD5HQwS4FrpOgA A5Ab1T5JN7zcBMa5ck1VqtqD7P2mUBIpb0MTAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUVDgD7/mMfjcI3UjUMa65QP3v6pAwHwYDVR0jBBgwFoAUjBg9fLprmpyv5vUL +wONZF0m3H8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0tZQ0xP VUQvakJnOWZMcHJtcHl2NXZVTC13T05aRjBtM0g4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9qQmc5Zkxwcm1weXY1dlVMLXdPTlpGMG0zSDguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TS1lDTE9VRC9WRGdEN19tTWZqY0kz VWpVTWE2NVFQM3Y2cEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ4GIMA0GCSqGSIb3DQEBCwUAA4IBAQAA8+BH+Kou4i401i35wp17y899u7HV LBnXd5wKRUPqNfJ15JXXF/pFnwbP9oPiVBIWhK/GgS0l+2dNn6eocXSxCVmue6a3 SyEm5ozhfqKqtud1X0JcG7BtJcDio4FRnoNkHru7VhZSs2FjDTFkZ5plh9eoes1+ a+RTGTj2xET0VZZurzBszGVqCGcvCv76DpN6Sl2r/e9uNb8GFKTY2oibGNptkDz1 PeLYFNdibEWP7noofiK8bBGaTzeKXAmQQsOn4Uz6VZqjqKzFW9beyIjgbBuL5LiK WHE93t+tzOqaJn7pKJ/18K2JmR84u0ipS3Qf3arXakYqmCcLlvUU///O -----END CERTIFICATE-----Generated at Fri May 17 07:36:26 2024 by rpki-client on console-fra.rpki-client.org