$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/UjiwU0S0_A1tRhT4oZf8OWVr3Q0.roa File: UjiwU0S0_A1tRhT4oZf8OWVr3Q0.roa (raw, json) Hash identifier: JpG4UuiDY03YoL2EzWxy+i0nFkl0lpJSOTNB2DEyQXY= Subject key identifier: 52:38:B0:53:44:B4:FC:0D:6D:46:14:F8:A1:97:FC:39:65:6B:DD:0D Certificate issuer: /CN=34F47974E551C20236C3D89395F57F3BA02B57B7 Certificate serial: 0D34 Authority key identifier: 34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/UjiwU0S0_A1tRhT4oZf8OWVr3Q0.roa Signing time: Fri 22 Aug 2025 08:51:52 +0000 ROA not before: Fri 22 Aug 2025 08:51:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 214766 IP address blocks: 103.129.160.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3380 (0xd34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34F47974E551C20236C3D89395F57F3BA02B57B7 Validity Not Before: Aug 22 08:51:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5238B05344B4FC0D6D4614F8A197FC39656BDD0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:18:42:74:5b:88:a8:e9:d8:70:a5:f0:d5:6c: 4d:96:65:ee:a8:3a:c0:b2:f2:d5:a2:3b:d0:97:aa: e0:58:31:80:dd:1c:22:74:7a:58:e8:e7:05:18:72: 4d:c7:ab:53:ab:8a:f1:2c:73:e9:ca:a0:0b:a8:41: 9b:2c:3e:f7:db:3c:d4:9c:69:7a:07:28:eb:81:17: 7b:74:18:ee:3e:eb:50:43:58:51:b5:f2:1e:b3:19: ad:3b:b7:14:55:f2:d0:c5:40:a1:6c:9c:83:2a:5e: 69:d5:5e:97:9a:ec:5d:12:04:98:23:bc:74:b7:5f: 3f:b5:7a:6d:f9:1f:23:8d:28:dc:ff:43:72:c9:5e: c4:62:a0:6a:27:cc:f8:1c:01:d3:e7:13:7e:de:bb: e1:e2:3a:cd:2b:95:d1:97:19:64:7f:a0:4e:05:fd: 80:f0:f9:3f:09:1d:db:6c:a8:94:ab:6f:59:ee:f0: e3:71:8e:63:c6:34:73:e5:62:56:a3:b4:33:6e:91: cc:4c:42:e6:af:ad:d7:7a:b4:39:2c:cb:23:8e:91: 0a:3e:ca:72:d2:29:a9:ac:2a:2d:39:4c:6c:e2:1a: 19:e7:27:24:5b:e2:0e:65:4f:27:d6:5f:59:8b:4d: cb:27:7b:4f:50:8b:9d:81:c7:9b:24:74:a3:eb:78: 02:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:38:B0:53:44:B4:FC:0D:6D:46:14:F8:A1:97:FC:39:65:6B:DD:0D X509v3 Authority Key Identifier: keyid:34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/UjiwU0S0_A1tRhT4oZf8OWVr3Q0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.129.160.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:c2:d7:b4:37:0e:d8:e4:bf:86:c8:4d:23:35:3c:74:48:a0: fd:05:31:44:06:4c:f4:c4:7a:a8:2a:6e:de:d8:97:76:aa:b7: 68:36:05:ac:a9:fd:94:fa:d3:55:a8:99:0c:08:c8:65:79:6d: 6d:48:ae:2b:76:09:3e:a6:eb:34:1c:3f:50:0f:65:20:67:9d: 76:f6:a7:9a:c4:55:9a:1a:89:17:29:fd:16:ea:10:db:c4:89: dc:fe:81:58:35:38:99:f5:37:31:10:e7:1a:08:5a:29:7d:38: 9e:21:09:b2:03:fa:32:e5:1a:85:fd:66:f2:63:43:86:2a:1d: 4e:0c:4a:29:95:f0:86:f9:8b:92:1b:b2:13:46:30:45:bc:23: 6a:46:6f:7f:8c:15:b1:93:7f:f1:08:17:29:91:a1:ab:d6:d7: 2a:aa:16:e0:72:30:7f:0f:27:0c:e2:9b:55:88:7d:8c:d5:02: a5:ed:d3:15:9a:81:d3:41:49:74:83:5b:ed:10:fe:e5:7d:81: db:6d:14:f9:cc:7c:76:4b:b3:08:30:10:e2:09:d7:85:3b:e5: 11:63:39:c5:92:4e:42:60:af:a2:b5:42:85:90:c7:27:56:f3: 0a:1d:4a:78:a0:87:ee:42:e8:90:c2:78:92:40:c0:6f:df:41: c8:81:4d:2d -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDTQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRG NDc5NzRFNTUxQzIwMjM2QzNEODkzOTVGNTdGM0JBMDJCNTdCNzAeFw0yNTA4MjIw ODUxNTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUyMzhCMDUzNDRCNEZD MEQ2RDQ2MTRGOEExOTdGQzM5NjU2QkREMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOGEJ0W4io6dhwpfDVbE2WZe6oOsCy8tWiO9CXquBYMYDdHCJ0 eljo5wUYck3Hq1OrivEsc+nKoAuoQZssPvfbPNScaXoHKOuBF3t0GO4+61BDWFG1 8h6zGa07txRV8tDFQKFsnIMqXmnVXpea7F0SBJgjvHS3Xz+1em35HyONKNz/Q3LJ XsRioGonzPgcAdPnE37eu+HiOs0rldGXGWR/oE4F/YDw+T8JHdtsqJSrb1nu8ONx jmPGNHPlYlajtDNukcxMQuavrdd6tDksyyOOkQo+ynLSKamsKi05TGziGhnnJyRb 4g5lTyfWX1mLTcsne09Qi52Bx5skdKPreALnAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUUjiwU0S0/A1tRhT4oZf8OWVr3Q0wHwYDVR0jBBgwFoAUNPR5dOVRwgI2w9iT lfV/O6ArV7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9SSUNM T1VEL05QUjVkT1ZSd2dJMnc5aVRsZlZfTzZBclY3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTlBSNWRPVlJ3Z0kydzlpVGxmVl9PNkFyVjdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9SSUNMT1VEL1VqaXdVMFMwX0Ex dFJoVDRvWmY4T1dWcjNRMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJngaAwDQYJKoZIhvcNAQELBQADggEBAHzC17Q3Dtjkv4bITSM1PHRIoP0F MUQGTPTEeqgqbt7Yl3aqt2g2Bayp/ZT601WomQwIyGV5bW1Irit2CT6m6zQcP1AP ZSBnnXb2p5rEVZoaiRcp/RbqENvEidz+gVg1OJn1NzEQ5xoIWil9OJ4hCbID+jLl GoX9ZvJjQ4YqHU4MSimV8Ib5i5IbshNGMEW8I2pGb3+MFbGTf/EIFymRoavW1yqq FuByMH8PJwzim1WIfYzVAqXt0xWagdNBSXSDW+0Q/uV9gdttFPnMfHZLswgwEOIJ 14U75RFjOcWSTkJgr6K1QoWQxydW8wodSnigh+5C6JDCeJJAwG/fQciBTS0= -----END CERTIFICATE-----Generated at Sun Aug 24 05:10:24 2025 by rpki-client