$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/Nlx6jzCcn3swjjdkmb2VjJMUHog.roa File: Nlx6jzCcn3swjjdkmb2VjJMUHog.roa (raw, json) Hash identifier: 47T+kPTiACsa3YiLmJqCOzyVkELw6fs4ibrPAFjQYhQ= Subject key identifier: 36:5C:7A:8F:30:9C:9F:7B:30:8E:37:64:99:BD:95:8C:93:14:1E:88 Certificate issuer: /CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Certificate serial: 0D5E Authority key identifier: 8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/Nlx6jzCcn3swjjdkmb2VjJMUHog.roa Signing time: Fri 22 Aug 2025 08:56:59 +0000 ROA not before: Fri 22 Aug 2025 08:56:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7483 IP address blocks: 43.251.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3422 (0xd5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Validity Not Before: Aug 22 08:56:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=365C7A8F309C9F7B308E376499BD958C93141E88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6a:06:c9:34:b1:b3:2e:ae:69:67:57:84:f2: 73:a2:02:65:57:a8:6c:ab:e0:b9:f3:e8:d9:fe:f9: 89:d9:2f:42:b0:3f:c3:a3:32:82:ae:af:7e:90:f9: 02:24:85:ae:92:51:bf:b1:46:ba:f6:3f:59:56:e3: a2:d7:7b:a3:3b:ba:fc:dc:95:47:9a:29:5f:ca:d8: 7e:8a:5e:77:30:63:50:78:5b:6a:74:6d:e1:6f:4d: 0c:af:33:80:48:e9:99:80:4e:5d:49:e8:22:be:ee: f2:77:69:05:1d:fd:17:23:ac:a5:de:b7:07:81:d3: c6:66:8c:77:47:56:41:75:7c:da:8c:70:d9:7e:d1: c2:18:13:db:44:86:74:97:98:ca:e1:79:0e:1a:7a: 91:39:fe:4d:2d:32:5f:fa:59:13:45:b9:d7:e4:d2: 99:ce:ce:35:40:9b:aa:b1:44:b1:ac:ae:18:3b:45: f0:68:ff:1d:7e:9a:e1:25:07:44:ea:ab:96:da:d2: 2c:42:80:1b:28:54:b4:4f:8e:6a:e8:97:85:ed:ce: 2e:60:3f:6c:fb:e2:35:1e:d9:51:3f:db:79:2a:2e: 1b:17:f0:91:bb:a2:60:25:f5:29:01:e3:4a:c7:1b: 23:97:d0:41:46:56:bd:cd:de:6a:36:63:08:c6:4b: d0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:5C:7A:8F:30:9C:9F:7B:30:8E:37:64:99:BD:95:8C:93:14:1E:88 X509v3 Authority Key Identifier: keyid:8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/Nlx6jzCcn3swjjdkmb2VjJMUHog.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.251.56.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:6e:70:89:38:75:7d:77:da:0b:5f:27:d0:b8:37:0a:9d:0b: fd:e7:0b:eb:7a:12:90:12:1c:f2:f0:15:ec:4b:94:6a:ba:a4: e5:15:2a:21:a4:09:12:3c:3f:3a:7c:46:3a:db:96:8d:86:e3: 1f:3f:81:08:77:ad:c1:bf:59:a6:74:17:79:20:ec:e6:f8:30: 0b:c0:46:46:d8:41:c3:23:65:26:5a:b0:77:a7:fe:1a:59:39: 35:ee:44:69:ba:6e:84:08:8d:ac:ab:68:f5:af:8a:e4:e9:e1: 8d:5e:c6:94:e9:40:2d:e6:f8:6b:65:9d:27:5a:ea:73:d6:dc: c7:3d:1d:91:0a:a3:b0:b2:88:15:ba:e3:89:5e:27:5c:25:0a: ce:00:ad:92:c5:b8:42:2b:32:26:b8:5e:7b:66:e6:78:89:4c: f6:2e:c1:90:f2:d2:95:85:9f:36:fb:79:d9:56:68:01:9d:26: dc:a9:30:25:2c:0f:ff:f7:ab:c1:f6:bf:8b:bb:93:95:b9:fc: e5:fc:a0:45:7f:89:aa:af:c2:81:71:2b:34:4f:65:22:f7:9e: 74:d9:93:ce:dd:b9:65:30:39:1d:82:08:41:ef:47:3f:fa:54: 13:d3:6f:65:e1:9b:a1:70:56:9c:94:8e:31:43:a0:dc:c9:e6: dd:3e:84:b0 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEMx ODNEN0NCQTZCOUE5Q0FGRTZGNTBCRkIwMzhENjQ1RDI2REM3RjAeFw0yNTA4MjIw ODU2NTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM2NUM3QThGMzA5QzlG N0IzMDhFMzc2NDk5QkQ5NThDOTMxNDFFODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDagbJNLGzLq5pZ1eE8nOiAmVXqGyr4Lnz6Nn++YnZL0KwP8Oj MoKur36Q+QIkha6SUb+xRrr2P1lW46LXe6M7uvzclUeaKV/K2H6KXncwY1B4W2p0 beFvTQyvM4BI6ZmATl1J6CK+7vJ3aQUd/RcjrKXetweB08ZmjHdHVkF1fNqMcNl+ 0cIYE9tEhnSXmMrheQ4aepE5/k0tMl/6WRNFudfk0pnOzjVAm6qxRLGsrhg7RfBo /x1+muElB0Tqq5ba0ixCgBsoVLRPjmrol4Xtzi5gP2z74jUe2VE/23kqLhsX8JG7 omAl9SkB40rHGyOX0EFGVr3N3mo2YwjGS9C1AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUNlx6jzCcn3swjjdkmb2VjJMUHogwHwYDVR0jBBgwFoAUjBg9fLprmpyv5vUL +wONZF0m3H8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0tZQ0xP VUQvakJnOWZMcHJtcHl2NXZVTC13T05aRjBtM0g4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9qQmc5Zkxwcm1weXY1dlVMLXdPTlpGMG0zSDguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TS1lDTE9VRC9ObHg2anpDY24zc3dq amRrbWIyVmpKTVVIb2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCK/s4MA0GCSqGSIb3DQEBCwUAA4IBAQBqbnCJOHV9d9oLXyfQuDcKnQv95wvr ehKQEhzy8BXsS5RquqTlFSohpAkSPD86fEY625aNhuMfP4EId63Bv1mmdBd5IOzm +DALwEZG2EHDI2UmWrB3p/4aWTk17kRpum6ECI2sq2j1r4rk6eGNXsaU6UAt5vhr ZZ0nWupz1tzHPR2RCqOwsogVuuOJXidcJQrOAK2SxbhCKzImuF57ZuZ4iUz2LsGQ 8tKVhZ82+3nZVmgBnSbcqTAlLA//96vB9r+Lu5OVufzl/KBFf4mqr8KBcSs0T2Ui 95502ZPO3bllMDkdgghB70c/+lQT029l4ZuhcFaclI4xQ6DcyebdPoSw -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:21 2025 by rpki-client