$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/O5Qb8PD-vk1_L925CXv_FLUkBaU.roa File: O5Qb8PD-vk1_L925CXv_FLUkBaU.roa (raw, json) Hash identifier: xkRdsYpNZtmgdSFNqqx0qLrwYznhrPp9JHIZ8oBt4jo= Subject key identifier: 3B:94:1B:F0:F0:FE:BE:4D:7F:2F:DD:B9:09:7B:FF:14:B5:24:05:A5 Certificate issuer: /CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Certificate serial: 0D89 Authority key identifier: 8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/O5Qb8PD-vk1_L925CXv_FLUkBaU.roa Signing time: Thu 16 Oct 2025 03:00:25 +0000 ROA not before: Thu 16 Oct 2025 03:00:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131603 IP address blocks: 202.148.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 22:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3465 (0xd89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Validity Not Before: Oct 16 03:00:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3B941BF0F0FEBE4D7F2FDDB9097BFF14B52405A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:36:74:de:38:cb:89:e3:ad:57:c7:24:28:34: 18:1a:d4:40:1a:fe:df:27:94:ee:17:ca:9b:43:75: 89:f0:a1:d4:e5:2f:e6:67:a4:39:ee:7e:1f:23:7b: 9f:e0:fb:d0:4b:83:46:40:4e:7e:a2:e0:47:f2:2b: 5d:cb:49:4a:c5:e3:5c:0c:3f:04:5c:9a:b6:cb:75: ab:12:01:df:8a:55:c4:93:cd:32:6e:da:85:18:e0: a9:33:91:52:1c:0e:84:9b:02:43:04:2e:8d:9d:ff: 47:11:3b:77:50:69:80:bf:7d:b3:15:0b:f8:c8:ca: 61:d8:e6:c4:c2:93:30:da:ea:d2:b0:d7:6f:85:a6: 7e:c8:45:0c:84:a6:d5:c3:94:1a:2a:58:6c:23:98: ed:af:a8:ab:31:bf:2c:5d:d4:9a:f5:b9:3a:08:44: 13:d2:84:31:55:98:73:dd:04:5e:cb:fe:1f:6d:f1: 3d:25:86:5f:c8:e3:27:d6:93:bf:ac:5e:93:dd:84: e9:2a:09:a6:3c:7d:6a:13:57:93:51:38:33:98:3e: aa:37:0c:c0:33:b8:43:83:1d:d1:ad:1d:5e:71:d5: d0:fc:81:62:0f:e6:87:91:82:55:a1:fa:a6:eb:c6: 32:7a:3e:f3:e4:d2:9b:6a:32:da:0e:16:86:06:f9: f0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:94:1B:F0:F0:FE:BE:4D:7F:2F:DD:B9:09:7B:FF:14:B5:24:05:A5 X509v3 Authority Key Identifier: keyid:8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/O5Qb8PD-vk1_L925CXv_FLUkBaU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.148.216.0/23 Signature Algorithm: sha256WithRSAEncryption 86:6c:a5:b3:24:5f:e8:47:6e:17:e2:da:e2:6b:e0:97:57:bf: 95:ce:58:84:c8:79:96:a7:94:bb:45:76:a0:02:8f:ae:84:f7: 07:56:3a:14:33:7b:d0:e1:ba:21:58:5d:1c:e1:01:cf:b4:11: e8:08:8a:7e:96:c7:c2:f2:95:0b:aa:4d:6b:12:a0:5c:fb:c9: f0:d9:70:7c:65:49:3d:37:5b:88:b5:c1:b0:d8:55:49:70:be: d2:a4:e8:35:47:65:f3:39:f1:2c:de:66:e5:5c:01:d7:c2:c7: 74:1b:97:8b:bd:b2:90:92:64:1e:70:f6:4c:ed:f3:ba:d5:fc: bd:a3:ad:fc:ef:3f:e3:3b:9a:b3:66:af:e4:5c:ef:e5:5c:8d: 6d:83:71:6b:71:0d:8b:99:04:1d:77:88:ad:a2:eb:ab:54:a7: 00:d9:d6:6c:ce:2c:cb:85:8c:96:4e:e4:58:d5:3f:f8:d0:a4: b0:21:4c:2b:bc:1d:1d:47:14:6d:b6:7c:93:15:3a:19:b1:c1: fe:ef:5a:1a:77:c2:5e:6a:2f:3d:32:80:80:bf:ec:82:3a:a2: 31:6f:5c:e7:06:6f:f7:a6:12:da:2f:0f:ac:d3:01:ba:bc:0c: 0e:7e:34:76:06:26:5f:b5:7f:81:58:2b:86:ba:7c:f4:6e:eb: cb:24:f7:d4 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEMx ODNEN0NCQTZCOUE5Q0FGRTZGNTBCRkIwMzhENjQ1RDI2REM3RjAeFw0yNTEwMTYw MzAwMjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNCOTQxQkYwRjBGRUJF NEQ3RjJGRERCOTA5N0JGRjE0QjUyNDA1QTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoNnTeOMuJ461XxyQoNBga1EAa/t8nlO4XyptDdYnwodTlL+Zn pDnufh8je5/g+9BLg0ZATn6i4EfyK13LSUrF41wMPwRcmrbLdasSAd+KVcSTzTJu 2oUY4KkzkVIcDoSbAkMELo2d/0cRO3dQaYC/fbMVC/jIymHY5sTCkzDa6tKw12+F pn7IRQyEptXDlBoqWGwjmO2vqKsxvyxd1Jr1uToIRBPShDFVmHPdBF7L/h9t8T0l hl/I4yfWk7+sXpPdhOkqCaY8fWoTV5NRODOYPqo3DMAzuEODHdGtHV5x1dD8gWIP 5oeRglWh+qbrxjJ6PvPk0ptqMtoOFoYG+fBHAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUO5Qb8PD+vk1/L925CXv/FLUkBaUwHwYDVR0jBBgwFoAUjBg9fLprmpyv5vUL +wONZF0m3H8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0tZQ0xP VUQvakJnOWZMcHJtcHl2NXZVTC13T05aRjBtM0g4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9qQmc5Zkxwcm1weXY1dlVMLXdPTlpGMG0zSDguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TS1lDTE9VRC9PNVFiOFBELXZrMV9M OTI1Q1h2X0ZMVWtCYVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBypTYMA0GCSqGSIb3DQEBCwUAA4IBAQCGbKWzJF/oR24X4tria+CXV7+VzliE yHmWp5S7RXagAo+uhPcHVjoUM3vQ4bohWF0c4QHPtBHoCIp+lsfC8pULqk1rEqBc +8nw2XB8ZUk9N1uItcGw2FVJcL7SpOg1R2XzOfEs3mblXAHXwsd0G5eLvbKQkmQe cPZM7fO61fy9o6387z/jO5qzZq/kXO/lXI1tg3FrcQ2LmQQdd4itouurVKcA2dZs zizLhYyWTuRY1T/40KSwIUwrvB0dRxRttnyTFToZscH+71oad8Jeai89MoCAv+yC OqIxb1znBm/3phLaLw+s0wG6vAwOfjR2BiZftX+BWCuGunz0buvLJPfU -----END CERTIFICATE-----Generated at Mon Oct 20 20:11:40 2025 by rpki-client