$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/4uFAvREz6WHYJM9t5sMRX_uMrsA.roa File: 4uFAvREz6WHYJM9t5sMRX_uMrsA.roa (raw, json) Hash identifier: E9LdAQ4RtZWlAyYr8dnVkoYYiv/TlGR2iNJ8AYgmFYY= Subject key identifier: E2:E1:40:BD:11:33:E9:61:D8:24:CF:6D:E6:C3:11:5F:FB:8C:AE:C0 Certificate issuer: /CN=A2FB739525B742A28A743315C6C88E766A7E0DC3 Certificate serial: 0FB6 Authority key identifier: A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/4uFAvREz6WHYJM9t5sMRX_uMrsA.roa Signing time: Fri 22 Aug 2025 08:51:13 +0000 ROA not before: Fri 22 Aug 2025 08:51:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131618 IP address blocks: 103.135.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4022 (0xfb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2FB739525B742A28A743315C6C88E766A7E0DC3 Validity Not Before: Aug 22 08:51:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E2E140BD1133E961D824CF6DE6C3115FFB8CAEC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:99:76:60:29:82:63:9d:70:03:c5:0e:3d:c2: 7b:48:66:0f:7e:3a:06:d3:30:fe:6c:e4:91:a6:69: 49:88:fb:95:b5:ac:41:13:89:1d:45:62:68:e9:d2: 97:b2:c7:c3:e0:25:f7:04:fb:21:8f:ee:df:33:33: c3:0d:19:d0:d4:40:c6:20:4f:9b:2c:93:de:07:f4: 23:06:a8:68:08:62:60:90:7d:cc:98:4b:8c:9e:8b: 02:ba:14:e4:90:c1:01:36:47:4b:b3:6f:29:36:51: 98:19:1b:b3:1b:49:73:c8:05:c3:7b:6d:14:ed:a1: d2:44:51:46:14:89:f6:b7:26:70:24:ae:60:8b:13: f9:9e:6f:9b:a3:59:31:89:09:61:4d:6f:28:48:31: 2c:4c:04:05:31:66:d5:09:88:b6:3f:5d:35:84:fc: a6:f5:23:e5:97:48:3f:28:3a:49:34:e1:6d:0a:27: ac:85:88:ad:4d:5d:37:7b:b9:bb:be:c3:00:d5:b1: d0:80:87:73:6a:b9:c3:7c:ed:05:01:3a:be:81:d4: 60:de:0d:46:33:e2:89:f1:26:33:90:4b:c1:97:01: 0d:e3:b4:7a:e2:99:93:25:cc:46:27:34:29:b3:14: 7a:d6:d6:2c:f3:d6:ff:71:5e:da:8d:aa:f6:25:6a: 2b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E1:40:BD:11:33:E9:61:D8:24:CF:6D:E6:C3:11:5F:FB:8C:AE:C0 X509v3 Authority Key Identifier: keyid:A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/4uFAvREz6WHYJM9t5sMRX_uMrsA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.117.0/24 Signature Algorithm: sha256WithRSAEncryption 99:53:07:2d:70:3d:23:50:79:ee:2f:cb:89:4e:18:bd:9a:6e: 79:76:36:7a:8a:55:45:50:b0:3e:24:93:00:c7:27:9a:2d:ba: a7:ca:5c:d8:97:77:b1:87:60:42:8a:7c:49:96:2e:87:ed:5c: 9f:fb:3f:64:3a:42:cd:f2:1e:f9:62:35:38:66:d5:7e:cc:26: 08:3a:0e:c1:59:97:dd:0b:96:cf:ee:af:e3:85:06:1a:4a:cf: a6:04:df:0f:6d:b0:cb:20:4d:fb:92:cf:d3:44:61:2d:a8:02: 13:38:1d:2c:fc:96:4f:dd:db:99:68:a0:29:3c:bd:f0:f0:2c: be:02:7b:37:e7:62:d4:fe:88:4e:ef:1a:b0:e8:1e:d4:7f:f7: d7:d6:19:e6:c6:66:39:df:56:73:33:e8:4c:8b:5d:69:ee:28: c8:1b:ae:73:68:61:2a:e9:76:2c:de:16:2b:ce:0c:90:df:f6: 4a:bd:14:5f:d4:e3:82:10:25:04:6f:dc:f2:01:09:70:8f:10: 9d:dc:48:6d:f5:4a:3a:b3:66:00:90:47:8c:4b:ba:90:8b:04: f2:7e:93:61:10:c0:f3:b2:76:2f:fe:21:c0:67:eb:d6:c5:62: 2a:b7:1d:8d:d4:df:e6:a0:05:d0:7f:7d:73:48:bd:dd:67:25: 8b:30:02:a2 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICD7YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTJG QjczOTUyNUI3NDJBMjhBNzQzMzE1QzZDODhFNzY2QTdFMERDMzAeFw0yNTA4MjIw ODUxMTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUyRTE0MEJEMTEzM0U5 NjFEODI0Q0Y2REU2QzMxMTVGRkI4Q0FFQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD3mXZgKYJjnXADxQ49wntIZg9+OgbTMP5s5JGmaUmI+5W1rEET iR1FYmjp0peyx8PgJfcE+yGP7t8zM8MNGdDUQMYgT5ssk94H9CMGqGgIYmCQfcyY S4yeiwK6FOSQwQE2R0uzbyk2UZgZG7MbSXPIBcN7bRTtodJEUUYUifa3JnAkrmCL E/meb5ujWTGJCWFNbyhIMSxMBAUxZtUJiLY/XTWE/Kb1I+WXSD8oOkk04W0KJ6yF iK1NXTd7ubu+wwDVsdCAh3NqucN87QUBOr6B1GDeDUYz4onxJjOQS8GXAQ3jtHri mZMlzEYnNCmzFHrW1izz1v9xXtqNqvYlaisNAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU4uFAvREz6WHYJM9t5sMRX/uMrsAwHwYDVR0jBBgwFoAUovtzlSW3QqKKdDMV xsiOdmp+DcMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNJQUNM T1VEL292dHpsU1czUXFLS2RETVZ4c2lPZG1wLURjTS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0Evb3Z0emxTVzNRcUtLZERNVnhzaU9kbXAtRGNNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNJQUNMT1VELzR1RkF2UkV6NldI WUpNOXQ1c01SWF91TXJzQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnh3UwDQYJKoZIhvcNAQELBQADggEBAJlTBy1wPSNQee4vy4lOGL2abnl2 NnqKVUVQsD4kkwDHJ5otuqfKXNiXd7GHYEKKfEmWLoftXJ/7P2Q6Qs3yHvliNThm 1X7MJgg6DsFZl90Lls/ur+OFBhpKz6YE3w9tsMsgTfuSz9NEYS2oAhM4HSz8lk/d 25looCk8vfDwLL4CezfnYtT+iE7vGrDoHtR/99fWGebGZjnfVnMz6EyLXWnuKMgb rnNoYSrpdizeFivODJDf9kq9FF/U44IQJQRv3PIBCXCPEJ3cSG31SjqzZgCQR4xL upCLBPJ+k2EQwPOydi/+IcBn69bFYiq3HY3U3+agBdB/fXNIvd1nJYswAqI= -----END CERTIFICATE-----Generated at Sun Aug 24 09:05:50 2025 by rpki-client