$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/nks--sseUjxsIQV8lJd8IOkjLyE.roa File: nks--sseUjxsIQV8lJd8IOkjLyE.roa (raw, json) Hash identifier: ALhqqD0YgIbjqPvc3A87ehnZOwLPNaeWl0AHWg0tszg= Subject key identifier: 9E:4B:3E:FA:CB:1E:52:3C:6C:21:05:7C:94:97:7C:20:E9:23:2F:21 Certificate issuer: /CN=1E79C6C033BB9D469E0CE8164538DF39E9F1C3BC Certificate serial: 0418 Authority key identifier: 1E:79:C6:C0:33:BB:9D:46:9E:0C:E8:16:45:38:DF:39:E9:F1:C3:BC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HnnGwDO7nUaeDOgWRTjfOenxw7w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/nks--sseUjxsIQV8lJd8IOkjLyE.roa Signing time: Mon 10 Feb 2025 13:49:46 +0000 ROA not before: Mon 10 Feb 2025 13:49:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38856 IP address blocks: 2406:d040::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/HnnGwDO7nUaeDOgWRTjfOenxw7w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/HnnGwDO7nUaeDOgWRTjfOenxw7w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HnnGwDO7nUaeDOgWRTjfOenxw7w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1048 (0x418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E79C6C033BB9D469E0CE8164538DF39E9F1C3BC Validity Not Before: Feb 10 13:49:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9E4B3EFACB1E523C6C21057C94977C20E9232F21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b9:21:4c:91:3a:7d:f9:b4:d0:ee:38:c2:1d: 3f:eb:30:1a:72:7b:4d:d5:6e:20:d5:8a:6f:2c:5a: 4f:3f:4b:09:62:05:30:24:e3:20:a7:54:b9:70:76: 48:fd:fe:d2:41:65:2f:21:34:0a:60:b5:d6:c5:76: 45:2d:49:c6:3f:86:e1:98:9c:49:1f:10:4b:39:d3: db:df:10:a0:70:d4:7b:44:dc:27:6b:2c:60:bb:96: dd:c3:82:fe:27:c6:50:e8:34:5e:a1:3d:aa:8f:ad: 61:ca:d4:72:b1:d1:77:49:72:38:db:26:31:b1:c6: b8:f4:4d:fb:85:b6:2d:1e:7d:17:9f:ac:71:48:b0: 11:f8:2f:67:ed:df:6b:77:fc:5b:5f:a5:d4:da:58: 3f:3b:f0:86:69:8f:78:a3:4c:36:a7:e4:e6:41:b8: 1a:d5:17:aa:ff:2d:d3:79:a4:89:da:da:a0:86:43: 75:07:0e:fc:df:a3:35:e6:98:e8:b3:ad:ef:0a:53: 0e:30:62:ad:ac:f8:44:e2:f5:03:a1:9e:39:bb:86: 9c:59:eb:f5:ab:8a:3f:3a:74:8b:02:52:7d:bb:d3: 2e:5a:9b:d0:d9:49:a3:a2:b8:9c:d3:87:30:50:dd: 39:12:d8:b4:5c:2b:92:6a:11:85:c3:10:bc:54:05: ff:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:4B:3E:FA:CB:1E:52:3C:6C:21:05:7C:94:97:7C:20:E9:23:2F:21 X509v3 Authority Key Identifier: keyid:1E:79:C6:C0:33:BB:9D:46:9E:0C:E8:16:45:38:DF:39:E9:F1:C3:BC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/HnnGwDO7nUaeDOgWRTjfOenxw7w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HnnGwDO7nUaeDOgWRTjfOenxw7w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/nks--sseUjxsIQV8lJd8IOkjLyE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:d040::/32 Signature Algorithm: sha256WithRSAEncryption 0f:44:db:5e:e9:6f:d6:97:14:65:09:14:a6:9d:1d:5b:00:d6: f1:6f:5d:65:e5:16:95:fc:2a:60:a8:bd:26:1f:0c:8a:a0:f2: d5:24:a5:00:42:4b:e8:9f:4d:2c:60:36:b2:14:e7:64:05:5e: 49:e6:3e:73:e6:c9:f1:7a:87:ba:49:cc:c5:a5:09:a0:6a:13: 71:fb:c8:98:dc:9d:35:77:3c:96:98:54:ff:65:ac:2a:c4:93: 80:48:84:4d:f2:9b:92:d9:44:cf:4b:00:db:18:bf:3d:35:c6: 3f:f2:f3:77:d9:78:3c:c8:ef:1b:fa:28:fc:77:a7:3c:c9:d8: 16:cc:37:d5:8a:55:23:f3:cb:d6:6a:bf:ca:5a:ef:e3:3d:3b: 8f:f0:43:18:68:31:6a:0d:5b:a5:16:9f:8c:18:ef:a0:95:a6: 35:df:b7:98:03:87:e2:20:44:1d:90:cd:f5:86:96:b7:71:e9: cc:7a:ea:95:fe:8a:a3:9c:82:a5:5b:a9:ae:3e:fa:da:27:3b: 85:6a:cf:1b:30:19:93:df:bc:c8:74:da:b4:04:e4:52:01:d5: a0:3b:3c:66:f9:ae:f5:80:c1:0f:da:92:7e:18:a1:b3:a6:56: 6e:03:58:9b:61:cc:a3:64:8d:a0:43:67:77:7b:38:7f:f1:e4: da:1d:64:65 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICBBgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUU3 OUM2QzAzM0JCOUQ0NjlFMENFODE2NDUzOERGMzlFOUYxQzNCQzAeFw0yNTAyMTAx MzQ5NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlFNEIzRUZBQ0IxRTUy M0M2QzIxMDU3Qzk0OTc3QzIwRTkyMzJGMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGuSFMkTp9+bTQ7jjCHT/rMBpye03VbiDVim8sWk8/SwliBTAk 4yCnVLlwdkj9/tJBZS8hNApgtdbFdkUtScY/huGYnEkfEEs509vfEKBw1HtE3Cdr LGC7lt3Dgv4nxlDoNF6hPaqPrWHK1HKx0XdJcjjbJjGxxrj0TfuFti0efRefrHFI sBH4L2ft32t3/FtfpdTaWD878IZpj3ijTDan5OZBuBrVF6r/LdN5pIna2qCGQ3UH DvzfozXmmOizre8KUw4wYq2s+ETi9QOhnjm7hpxZ6/Wrij86dIsCUn270y5am9DZ SaOiuJzThzBQ3TkS2LRcK5JqEYXDELxUBf9RAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUnks++sseUjxsIQV8lJd8IOkjLyEwHwYDVR0jBBgwFoAUHnnGwDO7nUaeDOgW RTjfOenxw7wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FMS1ND TE9VRC9Ibm5Hd0RPN25VYWVET2dXUlRqZk9lbnh3N3cuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0hubkd3RE83blVhZURPZ1dSVGpmT2VueHc3dy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1dBTEtTQ0xPVUQvbmtzLS1zc2VV anhzSVFWOGxKZDhJT2tqTHlFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQG0EAwDQYJKoZIhvcNAQELBQADggEBAA9E217pb9aXFGUJFKadHVsA 1vFvXWXlFpX8KmCovSYfDIqg8tUkpQBCS+ifTSxgNrIU52QFXknmPnPmyfF6h7pJ zMWlCaBqE3H7yJjcnTV3PJaYVP9lrCrEk4BIhE3ym5LZRM9LANsYvz01xj/y83fZ eDzI7xv6KPx3pzzJ2BbMN9WKVSPzy9Zqv8pa7+M9O4/wQxhoMWoNW6UWn4wY76CV pjXft5gDh+IgRB2QzfWGlrdx6cx66pX+iqOcgqVbqa4++tonO4VqzxswGZPfvMh0 2rQE5FIB1aA7PGb5rvWAwQ/akn4YobOmVm4DWJthzKNkjaBDZ3d7OH/x5NodZGU= -----END CERTIFICATE-----Generated at Fri Apr 18 23:14:37 2025 by rpki-client