$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/jUUztXPLrNHUrPRBZrkyPyZTUS8.roa File: jUUztXPLrNHUrPRBZrkyPyZTUS8.roa (raw, json) Hash identifier: B9Xc/WH96BuXPiYB5hkP9Wfx2AxjywQtbT4jZg13PkA= Subject key identifier: 8D:45:33:B5:73:CB:AC:D1:D4:AC:F4:41:66:B9:32:3F:26:53:51:2F Certificate issuer: /CN=34F47974E551C20236C3D89395F57F3BA02B57B7 Certificate serial: 0D31 Authority key identifier: 34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/jUUztXPLrNHUrPRBZrkyPyZTUS8.roa Signing time: Fri 22 Aug 2025 08:51:52 +0000 ROA not before: Fri 22 Aug 2025 08:51:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 395793 IP address blocks: 103.129.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3377 (0xd31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34F47974E551C20236C3D89395F57F3BA02B57B7 Validity Not Before: Aug 22 08:51:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8D4533B573CBACD1D4ACF44166B9323F2653512F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:40:c2:89:65:54:45:88:1f:81:fa:2a:d5:7b: b1:26:f1:98:82:5d:7f:70:cb:df:9c:ae:e2:55:99: 12:55:6f:6b:76:41:2a:a8:6d:6b:58:e1:f8:0d:9d: 60:a7:32:7e:a7:33:53:41:bb:ee:8e:6f:7f:36:34: 87:75:60:9d:d3:5d:19:af:82:e3:23:f5:e7:fa:b5: f8:0b:25:22:03:69:df:bc:53:96:02:0f:78:ed:69: 06:49:28:34:09:e3:bc:f6:60:2f:21:52:30:30:42: 29:c2:da:04:a9:1d:8e:8e:11:13:d1:db:a9:0f:4e: e2:b4:d5:ac:fd:76:16:34:d4:4e:b6:de:bc:1c:cc: 07:65:09:60:9a:24:aa:4d:6d:96:d8:b4:8b:10:91: 0e:36:d5:f5:a7:37:ba:89:14:bc:14:a4:8e:de:b4: e4:8e:8e:7c:e9:cf:f7:ef:99:97:f4:20:85:60:8c: 09:52:c4:f3:09:8c:e3:5c:07:0a:06:83:9e:8e:ad: 04:65:96:24:65:44:18:30:b4:0e:d1:ab:b1:92:f4: f7:49:46:27:97:b5:3d:5c:55:f4:7b:b0:5f:c4:45: df:12:c9:2a:f5:d9:44:32:d1:e7:fd:b1:f6:9e:ab: 56:92:44:4f:b0:cd:0b:ca:75:2a:11:99:a7:db:fd: 6d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:45:33:B5:73:CB:AC:D1:D4:AC:F4:41:66:B9:32:3F:26:53:51:2F X509v3 Authority Key Identifier: keyid:34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/jUUztXPLrNHUrPRBZrkyPyZTUS8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.129.162.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:61:96:d0:6b:0d:15:4c:7a:95:85:56:4e:b9:84:ee:39:ae: 0b:37:ba:82:9b:97:e9:72:e7:2c:82:65:c4:71:38:2d:6e:77: 4c:15:d2:fb:1b:c7:39:76:c1:ec:35:ab:13:f4:d7:88:4c:26: d9:72:59:bd:76:b1:05:13:f4:61:2b:7b:9e:b8:26:48:e9:ad: 6e:c3:ff:0d:94:f4:fd:ba:6f:0a:07:6e:0a:0f:69:ec:f2:23: d8:af:57:8d:bd:f2:e0:62:d0:95:f2:ac:4b:59:0b:c3:f3:59: cc:93:d2:7c:3e:b4:2e:73:b6:fb:72:c4:e9:75:04:63:bd:8f: 6b:b1:d0:e7:ac:35:95:d3:88:97:e5:18:e2:c4:c3:3b:c6:d7: d9:27:90:f2:97:f2:c8:94:1b:51:66:e2:f1:2f:c3:6e:2a:d9: 22:f1:60:ea:d4:79:11:fd:00:a6:0a:36:37:2d:da:b9:4c:7c: 00:53:27:01:6c:52:98:7b:1b:8f:93:26:51:7c:2d:31:38:57: cf:ea:f0:75:70:b7:c2:48:e1:9a:ed:46:32:07:09:54:01:bd: 87:08:b8:65:f8:91:bb:26:be:6d:04:27:17:5d:36:8a:d5:2d: c1:13:7e:dc:86:72:e2:c8:b9:f2:ba:fa:c5:b1:7b:98:44:83: a0:99:6a:97 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDTEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRG NDc5NzRFNTUxQzIwMjM2QzNEODkzOTVGNTdGM0JBMDJCNTdCNzAeFw0yNTA4MjIw ODUxNTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhENDUzM0I1NzNDQkFD RDFENEFDRjQ0MTY2QjkzMjNGMjY1MzUxMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9QMKJZVRFiB+B+irVe7Em8ZiCXX9wy9+cruJVmRJVb2t2QSqo bWtY4fgNnWCnMn6nM1NBu+6Ob382NId1YJ3TXRmvguMj9ef6tfgLJSIDad+8U5YC D3jtaQZJKDQJ47z2YC8hUjAwQinC2gSpHY6OERPR26kPTuK01az9dhY01E623rwc zAdlCWCaJKpNbZbYtIsQkQ421fWnN7qJFLwUpI7etOSOjnzpz/fvmZf0IIVgjAlS xPMJjONcBwoGg56OrQRlliRlRBgwtA7Rq7GS9PdJRieXtT1cVfR7sF/ERd8SySr1 2UQy0ef9sfaeq1aSRE+wzQvKdSoRmafb/W3FAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUjUUztXPLrNHUrPRBZrkyPyZTUS8wHwYDVR0jBBgwFoAUNPR5dOVRwgI2w9iT lfV/O6ArV7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9SSUNM T1VEL05QUjVkT1ZSd2dJMnc5aVRsZlZfTzZBclY3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTlBSNWRPVlJ3Z0kydzlpVGxmVl9PNkFyVjdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9SSUNMT1VEL2pVVXp0WFBMck5I VXJQUkJacmt5UHlaVFVTOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABngaIwDQYJKoZIhvcNAQELBQADggEBAA5hltBrDRVMepWFVk65hO45rgs3 uoKbl+ly5yyCZcRxOC1ud0wV0vsbxzl2wew1qxP014hMJtlyWb12sQUT9GEre564 JkjprW7D/w2U9P26bwoHbgoPaezyI9ivV4298uBi0JXyrEtZC8PzWcyT0nw+tC5z tvtyxOl1BGO9j2ux0OesNZXTiJflGOLEwzvG19knkPKX8siUG1Fm4vEvw24q2SLx YOrUeRH9AKYKNjct2rlMfABTJwFsUph7G4+TJlF8LTE4V8/q8HVwt8JI4ZrtRjIH CVQBvYcIuGX4kbsmvm0EJxddNorVLcETftyGcuLIufK6+sWxe5hEg6CZapc= -----END CERTIFICATE-----Generated at Sun Aug 24 05:04:37 2025 by rpki-client