$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/WaGfvzbnnyguJpZgdQoQ2T1BTr0.roa File: WaGfvzbnnyguJpZgdQoQ2T1BTr0.roa (raw, json) Hash identifier: HUXBhJGpaR/ANdzO1oRAAhmICPEssXWsqcKnLBgK3Qo= Subject key identifier: 59:A1:9F:BF:36:E7:9F:28:2E:26:96:60:75:0A:10:D9:3D:41:4E:BD Certificate issuer: /CN=1E79C6C033BB9D469E0CE8164538DF39E9F1C3BC Certificate serial: 0503 Authority key identifier: 1E:79:C6:C0:33:BB:9D:46:9E:0C:E8:16:45:38:DF:39:E9:F1:C3:BC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HnnGwDO7nUaeDOgWRTjfOenxw7w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/WaGfvzbnnyguJpZgdQoQ2T1BTr0.roa Signing time: Fri 22 Aug 2025 09:03:25 +0000 ROA not before: Fri 22 Aug 2025 09:03:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38856 IP address blocks: 2406:d040::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/HnnGwDO7nUaeDOgWRTjfOenxw7w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/HnnGwDO7nUaeDOgWRTjfOenxw7w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HnnGwDO7nUaeDOgWRTjfOenxw7w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1283 (0x503) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E79C6C033BB9D469E0CE8164538DF39E9F1C3BC Validity Not Before: Aug 22 09:03:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=59A19FBF36E79F282E269660750A10D93D414EBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bb:6d:d1:fa:69:b6:dc:c5:fe:91:b6:77:21: c6:cb:b0:93:10:8a:df:36:d4:2c:c6:72:32:be:1c: 78:06:58:5a:c3:29:2d:b2:ca:a3:88:ff:0e:25:78: e9:40:fc:b9:1a:2f:87:36:21:eb:ec:0b:0a:73:42: ee:45:38:f1:57:52:86:61:f6:26:4e:54:b8:b6:13: 81:18:a0:02:b8:d0:21:87:fc:d7:6d:39:c1:e1:a5: d6:59:e8:7a:ce:53:94:5b:bf:56:fa:98:a9:1e:2a: 0b:46:09:50:ab:d4:62:1d:bf:d8:06:4a:bc:21:5e: 35:16:86:f8:fb:59:fa:7f:83:39:08:ab:1d:5e:f1: 88:42:11:e0:90:7a:79:1e:e3:92:0e:f9:df:11:dc: c5:14:50:95:80:3a:52:c3:da:84:2c:d6:9e:cb:71: 08:d4:ed:1e:88:de:c5:41:18:4c:e3:41:c8:f2:e3: e4:62:cc:82:ec:ee:e6:2a:97:2e:40:8e:ef:c1:2f: 64:f1:2a:9a:ee:3d:91:24:15:e7:1e:61:79:60:88: c2:43:78:6d:3f:87:b3:93:c6:27:ec:80:af:9e:89: 66:fa:98:91:8d:62:d2:98:82:de:40:94:9d:eb:9c: 79:97:89:4a:b9:af:09:96:75:b1:9f:c9:07:14:bf: c9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:A1:9F:BF:36:E7:9F:28:2E:26:96:60:75:0A:10:D9:3D:41:4E:BD X509v3 Authority Key Identifier: keyid:1E:79:C6:C0:33:BB:9D:46:9E:0C:E8:16:45:38:DF:39:E9:F1:C3:BC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/HnnGwDO7nUaeDOgWRTjfOenxw7w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HnnGwDO7nUaeDOgWRTjfOenxw7w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/WaGfvzbnnyguJpZgdQoQ2T1BTr0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:d040::/32 Signature Algorithm: sha256WithRSAEncryption 21:04:61:c8:9e:08:6a:5a:8d:1b:9c:1b:26:2a:e7:28:ac:8f: 54:20:30:cf:2c:68:2e:13:4b:42:61:de:6c:da:37:e4:87:90: 6a:a7:fd:cc:8b:5c:26:49:df:d8:10:6c:de:af:46:f1:28:a3: bd:1a:c3:cc:ec:28:42:3e:90:c1:58:cb:23:1c:d8:ea:e5:7c: 7c:72:0a:9a:16:b4:53:51:f6:e4:24:e7:a9:1f:51:28:9b:6f: 12:a4:80:ac:fc:bd:23:4b:d9:e8:fb:2c:69:4e:26:12:aa:96: ac:b5:a9:3c:28:4b:55:e6:1c:aa:86:be:1f:af:9b:ec:1c:ec: 01:c4:b2:cf:37:ca:7b:42:51:8c:7f:7b:a1:39:83:5a:9a:52: cd:6e:9c:f8:c4:44:f9:dd:0c:6a:02:61:70:dd:87:a9:e9:35: 3c:03:4c:69:49:8b:ca:bf:f4:53:46:dc:64:9f:7f:75:1d:ae: 5d:2f:93:a9:53:51:8b:27:55:e3:a9:02:35:c0:f0:e6:0b:f5: 1b:3e:e6:e5:12:f6:1b:56:c6:3c:0a:db:aa:f2:2c:ef:df:91: 20:cf:d5:15:07:dd:48:b0:f9:d4:5e:3c:01:b1:79:67:2f:a8: 06:ef:84:bf:38:81:e9:5e:ff:34:04:9e:89:10:0e:2b:d4:2a: d7:5d:98:92 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICBQMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUU3 OUM2QzAzM0JCOUQ0NjlFMENFODE2NDUzOERGMzlFOUYxQzNCQzAeFw0yNTA4MjIw OTAzMjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU5QTE5RkJGMzZFNzlG MjgyRTI2OTY2MDc1MEExMEQ5M0Q0MTRFQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFu23R+mm23MX+kbZ3IcbLsJMQit821CzGcjK+HHgGWFrDKS2y yqOI/w4leOlA/LkaL4c2IevsCwpzQu5FOPFXUoZh9iZOVLi2E4EYoAK40CGH/Ndt OcHhpdZZ6HrOU5Rbv1b6mKkeKgtGCVCr1GIdv9gGSrwhXjUWhvj7Wfp/gzkIqx1e 8YhCEeCQenke45IO+d8R3MUUUJWAOlLD2oQs1p7LcQjU7R6I3sVBGEzjQcjy4+Ri zILs7uYqly5Aju/BL2TxKpruPZEkFeceYXlgiMJDeG0/h7OTxifsgK+eiWb6mJGN YtKYgt5AlJ3rnHmXiUq5rwmWdbGfyQcUv8mjAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUWaGfvzbnnyguJpZgdQoQ2T1BTr0wHwYDVR0jBBgwFoAUHnnGwDO7nUaeDOgW RTjfOenxw7wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FMS1ND TE9VRC9Ibm5Hd0RPN25VYWVET2dXUlRqZk9lbnh3N3cuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0hubkd3RE83blVhZURPZ1dSVGpmT2VueHc3dy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1dBTEtTQ0xPVUQvV2FHZnZ6Ym5u eWd1SnBaZ2RRb1EyVDFCVHIwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQG0EAwDQYJKoZIhvcNAQELBQADggEBACEEYcieCGpajRucGyYq5yis j1QgMM8saC4TS0Jh3mzaN+SHkGqn/cyLXCZJ39gQbN6vRvEoo70aw8zsKEI+kMFY yyMc2OrlfHxyCpoWtFNR9uQk56kfUSibbxKkgKz8vSNL2ej7LGlOJhKqlqy1qTwo S1XmHKqGvh+vm+wc7AHEss83yntCUYx/e6E5g1qaUs1unPjERPndDGoCYXDdh6np NTwDTGlJi8q/9FNG3GSff3Udrl0vk6lTUYsnVeOpAjXA8OYL9Rs+5uUS9htWxjwK 26ryLO/fkSDP1RUH3Uiw+dRePAGxeWcvqAbvhL84gele/zQEnokQDivUKtddmJI= -----END CERTIFICATE-----Generated at Sun Aug 24 11:44:00 2025 by rpki-client