$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/ezZC7rzpy137xA8VfELVg3OixSI.roa File: ezZC7rzpy137xA8VfELVg3OixSI.roa (raw, json) Hash identifier: nidseOllyNCj1Y/OqQFt4jf5FyNkJqWAZG6llktbUHE= Subject key identifier: 7B:36:42:EE:BC:E9:CB:5D:FB:C4:0F:15:7C:42:D5:83:73:A2:C5:22 Certificate issuer: /CN=34F47974E551C20236C3D89395F57F3BA02B57B7 Certificate serial: 0D32 Authority key identifier: 34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/ezZC7rzpy137xA8VfELVg3OixSI.roa Signing time: Fri 22 Aug 2025 08:51:52 +0000 ROA not before: Fri 22 Aug 2025 08:51:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 395793 IP address blocks: 103.129.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3378 (0xd32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34F47974E551C20236C3D89395F57F3BA02B57B7 Validity Not Before: Aug 22 08:51:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7B3642EEBCE9CB5DFBC40F157C42D58373A2C522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:85:d8:77:4a:72:93:79:e6:bb:78:80:1c:b7: 96:04:9b:d5:c6:53:ab:62:64:0e:6d:ae:26:67:26: 4e:19:86:96:66:f7:fe:d0:83:10:03:96:92:76:5b: ec:13:c9:b4:21:15:38:48:d7:e8:d7:30:ac:c7:91: 21:16:f4:5c:be:17:61:d0:6b:6a:6c:ee:a4:9f:25: 1a:0b:6f:5e:0f:a2:69:19:1d:35:67:90:16:2c:18: e5:0b:83:02:d7:92:31:0b:4e:44:c6:45:d9:15:2d: df:bc:81:de:32:07:3b:03:52:32:f7:e5:bd:5d:2d: ca:42:ad:2e:7f:e1:0c:ce:6c:c2:e3:42:f1:83:f3: bd:91:d5:67:99:dc:64:39:f0:f1:c8:b1:90:20:ae: bd:f1:69:84:06:53:21:e2:98:32:75:e7:02:8f:0b: 4c:c9:02:53:d4:7a:94:3a:d0:59:f8:f9:75:b8:c9: 98:9d:93:47:94:d4:bd:65:3e:c3:88:df:76:f3:0a: 5f:b8:06:c7:eb:5b:d4:16:10:84:32:fd:0c:ae:39: 27:67:cb:ab:ae:67:75:82:2c:7e:0b:0a:66:b8:2a: f5:6f:ac:9e:f9:9d:06:df:d2:93:71:dd:c8:16:7c: 4a:36:21:e7:1d:38:90:7b:7f:02:f7:5f:61:67:4c: 5d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:36:42:EE:BC:E9:CB:5D:FB:C4:0F:15:7C:42:D5:83:73:A2:C5:22 X509v3 Authority Key Identifier: keyid:34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/ezZC7rzpy137xA8VfELVg3OixSI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.129.161.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:a4:1e:66:cd:09:52:5e:e2:fe:98:af:6c:ac:52:ad:98:de: 65:10:f7:df:4d:77:49:5f:9c:b7:23:3c:45:60:1f:d9:a0:37: cc:a9:7b:b8:1d:d6:fd:87:31:47:25:ea:0f:2f:c4:57:f9:48: 28:bf:95:87:ba:0d:eb:a7:33:d0:42:23:5c:ea:c7:f7:d5:b9: 09:3c:19:91:ce:b4:63:f7:06:c0:12:35:6a:e2:43:b7:d6:1b: b5:0e:41:63:87:3e:80:de:f4:8b:79:71:a9:d8:ab:2a:66:78: 84:2f:e0:4f:cd:90:3f:bc:02:bc:87:0e:75:d7:1f:23:5b:7f: 22:3f:0a:12:00:bc:7d:ec:cd:12:00:b7:a0:29:5e:78:47:c2: f9:0c:70:09:3d:1f:3c:3b:3e:2c:2d:70:80:f3:55:bd:c5:d1: ee:b6:1a:6c:1d:33:68:b4:0f:7f:ab:e2:4a:67:d5:65:6a:57: d5:97:f3:4e:d5:52:b0:38:aa:fa:9e:d4:b1:2e:b1:6c:b1:58: 33:92:3d:c9:0e:48:4a:96:4b:3c:9f:27:c2:9e:29:22:8b:d0: b1:46:32:61:d3:7a:d2:b9:bd:15:6f:88:58:dd:61:3f:fb:46: 84:a2:45:ea:6d:95:c4:ab:9c:aa:40:34:2b:30:51:4b:c1:de: 41:51:9a:c5 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDTIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRG NDc5NzRFNTUxQzIwMjM2QzNEODkzOTVGNTdGM0JBMDJCNTdCNzAeFw0yNTA4MjIw ODUxNTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdCMzY0MkVFQkNFOUNC NURGQkM0MEYxNTdDNDJENTgzNzNBMkM1MjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXhdh3SnKTeea7eIAct5YEm9XGU6tiZA5triZnJk4ZhpZm9/7Q gxADlpJ2W+wTybQhFThI1+jXMKzHkSEW9Fy+F2HQa2ps7qSfJRoLb14PomkZHTVn kBYsGOULgwLXkjELTkTGRdkVLd+8gd4yBzsDUjL35b1dLcpCrS5/4QzObMLjQvGD 872R1WeZ3GQ58PHIsZAgrr3xaYQGUyHimDJ15wKPC0zJAlPUepQ60Fn4+XW4yZid k0eU1L1lPsOI33bzCl+4BsfrW9QWEIQy/QyuOSdny6uuZ3WCLH4LCma4KvVvrJ75 nQbf0pNx3cgWfEo2IecdOJB7fwL3X2FnTF0bAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUezZC7rzpy137xA8VfELVg3OixSIwHwYDVR0jBBgwFoAUNPR5dOVRwgI2w9iT lfV/O6ArV7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9SSUNM T1VEL05QUjVkT1ZSd2dJMnc5aVRsZlZfTzZBclY3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTlBSNWRPVlJ3Z0kydzlpVGxmVl9PNkFyVjdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9SSUNMT1VEL2V6WkM3cnpweTEz N3hBOFZmRUxWZzNPaXhTSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABngaEwDQYJKoZIhvcNAQELBQADggEBAH+kHmbNCVJe4v6Yr2ysUq2Y3mUQ 999Nd0lfnLcjPEVgH9mgN8ype7gd1v2HMUcl6g8vxFf5SCi/lYe6DeunM9BCI1zq x/fVuQk8GZHOtGP3BsASNWriQ7fWG7UOQWOHPoDe9It5canYqypmeIQv4E/NkD+8 AryHDnXXHyNbfyI/ChIAvH3szRIAt6ApXnhHwvkMcAk9Hzw7PiwtcIDzVb3F0e62 GmwdM2i0D3+r4kpn1WVqV9WX807VUrA4qvqe1LEusWyxWDOSPckOSEqWSzyfJ8Ke KSKL0LFGMmHTetK5vRVviFjdYT/7RoSiReptlcSrnKpANCswUUvB3kFRmsU= -----END CERTIFICATE-----Generated at Sun Aug 24 05:10:29 2025 by rpki-client