$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/Ph4N89eMUcNskwp_no0_zQwHwiY.roa File: Ph4N89eMUcNskwp_no0_zQwHwiY.roa (raw, json) Hash identifier: 0msdYnxMYLvw0jieP45w2NXemZ8Hfgti+WxC2fmRTl4= Subject key identifier: 3E:1E:0D:F3:D7:8C:51:C3:6C:93:0A:7F:9E:8D:3F:CD:0C:07:C2:26 Certificate issuer: /CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Certificate serial: 0D62 Authority key identifier: 8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/Ph4N89eMUcNskwp_no0_zQwHwiY.roa Signing time: Fri 22 Aug 2025 08:57:00 +0000 ROA not before: Fri 22 Aug 2025 08:57:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131618 IP address blocks: 103.129.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3426 (0xd62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C183D7CBA6B9A9CAFE6F50BFB038D645D26DC7F Validity Not Before: Aug 22 08:57:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3E1E0DF3D78C51C36C930A7F9E8D3FCD0C07C226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2b:01:eb:a8:94:c0:6f:a0:ee:91:44:0e:8f: 1f:72:39:e9:da:f0:72:c8:0a:0a:b4:de:3d:da:c3: 8c:22:00:7d:87:b6:b3:9d:c7:b2:ca:c9:93:29:e3: d4:2f:59:5b:0e:02:85:05:c3:69:87:c8:3a:4c:57: ce:15:41:1e:60:56:b7:c8:bd:cc:c8:d8:c3:2b:bc: 95:4a:da:3f:71:c0:18:93:ad:ed:88:64:e6:63:70: cc:c5:a3:d5:de:cb:48:33:fd:f4:04:21:7e:82:1c: 60:09:89:78:88:36:d1:39:c2:01:0c:04:74:2a:37: 2b:aa:fd:38:f7:cf:b9:fc:c1:bb:23:20:fb:85:48: 9d:59:ca:d0:f7:55:b1:cf:61:c8:17:27:b5:7b:e5: 58:82:a7:9b:54:a6:c0:6d:15:0d:1f:6f:bf:83:e0: 7c:d2:46:c2:cd:bf:a1:4d:f6:4b:95:18:48:b2:a5: e4:49:1b:92:b9:05:12:c2:7c:00:4a:e1:d0:5d:30: 3d:60:a1:fb:51:8c:79:b7:d1:1a:ef:68:f6:56:8f: ed:9f:f9:aa:28:04:a5:b0:e2:2c:70:08:62:25:9c: 3b:26:a9:7e:a7:50:ce:10:08:07:a2:80:49:55:ef: 21:84:72:0c:a4:a4:a8:16:bc:1a:34:b6:9f:0b:3e: c7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:1E:0D:F3:D7:8C:51:C3:6C:93:0A:7F:9E:8D:3F:CD:0C:07:C2:26 X509v3 Authority Key Identifier: keyid:8C:18:3D:7C:BA:6B:9A:9C:AF:E6:F5:0B:FB:03:8D:64:5D:26:DC:7F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/jBg9fLprmpyv5vUL-wONZF0m3H8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jBg9fLprmpyv5vUL-wONZF0m3H8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKYCLOUD/Ph4N89eMUcNskwp_no0_zQwHwiY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.129.136.0/22 Signature Algorithm: sha256WithRSAEncryption 46:25:82:c7:34:83:17:a5:67:c2:96:d7:a9:7b:3e:f2:6d:b6: 9c:b5:de:7a:cc:bb:78:fe:e4:d5:a9:dd:5e:99:eb:b9:9d:c5: 9c:87:f6:cc:c3:e2:70:21:0d:9e:7a:a3:12:23:da:78:68:cd: 18:01:79:68:33:66:e4:9c:e3:a7:0c:e5:80:91:83:86:9d:52: 0f:a3:e8:9b:c0:7b:2d:26:0c:da:42:de:3a:5e:2c:5d:db:fb: 24:8e:cd:18:22:d8:27:a4:25:37:c1:4d:6e:fd:e4:b2:c3:52: 97:c7:3d:09:ea:1b:f8:72:9e:07:42:53:cf:5f:1b:40:f2:cd: 24:d9:4c:33:5f:38:c3:0a:14:06:1a:0b:8b:cc:43:54:06:8c: b9:45:ac:04:a6:f6:60:eb:9e:67:68:09:5a:ef:cd:99:e4:f7: f4:77:37:64:e4:28:44:78:92:03:31:c0:03:2e:d8:e2:6a:4c: 7f:11:d0:7d:96:13:cf:8c:76:fa:46:72:7f:1c:a1:46:10:31: 63:83:18:71:7f:c2:9f:1f:8f:77:d0:f2:69:fc:b2:9e:d9:da: 09:2a:35:b7:4b:66:cd:12:49:02:38:40:9b:ab:e4:70:b4:81: d6:c4:45:44:f0:48:2b:66:56:35:dd:f2:93:ad:05:11:97:c3: 43:a1:d8:87 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDWIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEMx ODNEN0NCQTZCOUE5Q0FGRTZGNTBCRkIwMzhENjQ1RDI2REM3RjAeFw0yNTA4MjIw ODU3MDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNFMUUwREYzRDc4QzUx QzM2QzkzMEE3RjlFOEQzRkNEMEMwN0MyMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClKwHrqJTAb6DukUQOjx9yOena8HLICgq03j3aw4wiAH2HtrOd x7LKyZMp49QvWVsOAoUFw2mHyDpMV84VQR5gVrfIvczI2MMrvJVK2j9xwBiTre2I ZOZjcMzFo9Xey0gz/fQEIX6CHGAJiXiINtE5wgEMBHQqNyuq/Tj3z7n8wbsjIPuF SJ1ZytD3VbHPYcgXJ7V75ViCp5tUpsBtFQ0fb7+D4HzSRsLNv6FN9kuVGEiypeRJ G5K5BRLCfABK4dBdMD1goftRjHm30RrvaPZWj+2f+aooBKWw4ixwCGIlnDsmqX6n UM4QCAeigElV7yGEcgykpKgWvBo0tp8LPsfxAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUPh4N89eMUcNskwp/no0/zQwHwiYwHwYDVR0jBBgwFoAUjBg9fLprmpyv5vUL +wONZF0m3H8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0tZQ0xP VUQvakJnOWZMcHJtcHl2NXZVTC13T05aRjBtM0g4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9qQmc5Zkxwcm1weXY1dlVMLXdPTlpGMG0zSDguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TS1lDTE9VRC9QaDROODllTVVjTnNr d3Bfbm8wX3pRd0h3aVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ4GIMA0GCSqGSIb3DQEBCwUAA4IBAQBGJYLHNIMXpWfCltepez7ybbactd56 zLt4/uTVqd1emeu5ncWch/bMw+JwIQ2eeqMSI9p4aM0YAXloM2bknOOnDOWAkYOG nVIPo+ibwHstJgzaQt46Xixd2/skjs0YItgnpCU3wU1u/eSyw1KXxz0J6hv4cp4H QlPPXxtA8s0k2UwzXzjDChQGGguLzENUBoy5RawEpvZg655naAla782Z5Pf0dzdk 5ChEeJIDMcADLtjiakx/EdB9lhPPjHb6RnJ/HKFGEDFjgxhxf8KfH4930PJp/LKe 2doJKjW3S2bNEkkCOECbq+RwtIHWxEVE8EgrZlY13fKTrQURl8NDodiH -----END CERTIFICATE-----Generated at Sun Aug 24 09:19:56 2025 by rpki-client