$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ShOKrNremzKc8h8mR4wQC67qqJ0.roa File: ShOKrNremzKc8h8mR4wQC67qqJ0.roa (raw, json) Hash identifier: dUVs6geJZZRo1SJoXQ9qyEmbxsZhBckoLnxnyqpwxxo= Subject key identifier: 4A:13:8A:AC:DA:DE:9B:32:9C:F2:1F:26:47:8C:10:0B:AE:EA:A8:9D Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0D64 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ShOKrNremzKc8h8mR4wQC67qqJ0.roa Signing time: Mon 10 Feb 2025 13:51:05 +0000 ROA not before: Mon 10 Feb 2025 13:51:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 61.63.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 18:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3428 (0xd64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Feb 10 13:51:05 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4A138AACDADE9B329CF21F26478C100BAEEAA89D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:53:79:6d:47:a8:f7:ad:f1:95:5e:8c:80:ee: a3:62:89:2e:aa:3b:fe:91:10:fc:85:fc:4c:10:a1: 31:75:86:df:c5:4c:70:db:5a:ed:47:02:67:05:38: ea:72:c8:8e:c2:c2:af:95:49:ba:d4:0e:19:e1:2c: f6:36:43:02:ee:a7:25:32:5d:c1:12:c7:1e:8d:4a: 99:6a:3e:92:75:b5:1b:a8:5c:41:41:fa:6e:43:c4: 83:fb:27:9f:b5:cd:73:6b:80:f9:b3:99:fb:71:d1: 8c:6c:cf:70:ba:23:41:fb:50:be:c7:78:dd:bf:3d: 26:23:d8:c0:de:cc:fa:00:3c:33:62:88:a6:8c:77: 18:05:33:0d:91:9c:ed:be:f0:64:11:a0:e7:d1:88: c5:c4:3a:cb:77:6a:f4:8f:c6:46:d9:cd:b5:d4:48: 8e:bb:27:ad:89:91:84:27:77:dc:4b:c3:b1:46:7d: 27:ce:2e:26:46:ec:85:91:9d:fd:1a:4f:27:37:37: e9:8a:14:ea:30:68:b5:10:23:b9:e5:91:e9:13:3e: 28:b5:a8:3e:42:82:f7:69:39:85:df:0e:ee:bb:33: 66:31:32:88:b9:7c:48:f8:be:59:bd:aa:f3:da:07: 3d:f2:75:90:dd:7b:1f:55:30:cf:55:d3:fa:7f:3a: 08:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:13:8A:AC:DA:DE:9B:32:9C:F2:1F:26:47:8C:10:0B:AE:EA:A8:9D X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ShOKrNremzKc8h8mR4wQC67qqJ0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.63.160.0/19 Signature Algorithm: sha256WithRSAEncryption 28:e2:6e:31:3e:03:f7:79:a1:ac:4a:f9:2a:3f:89:e4:f1:4e: 5a:e0:a7:cd:22:ff:a1:73:85:11:01:ae:66:a0:59:c9:15:ae: 10:7c:17:bf:94:ad:25:0b:48:f2:2a:08:10:10:da:18:15:73: 54:44:f4:7b:dc:fa:48:98:46:a3:33:dd:c8:14:ba:9a:0e:1a: 96:98:70:de:ab:d1:39:1b:48:75:e0:c9:03:80:74:20:06:51: 79:df:f8:40:3c:6f:65:e5:45:ac:b9:ab:34:67:d7:75:fb:0b: 62:b2:25:37:0e:24:b9:42:74:d9:9e:26:fd:a9:80:d9:52:1e: cc:93:63:46:cd:cf:fb:9d:8a:e7:eb:be:1e:57:5f:ed:85:ad: 4a:5e:9b:f1:40:20:40:34:b0:f7:1d:a9:a1:d6:83:7d:ac:31: ad:1b:8b:1f:b5:74:c9:5c:a1:3a:f7:71:dd:87:a5:b5:2c:5f: e4:6e:7b:3f:81:47:16:0a:e5:ce:68:36:8e:e4:dd:3f:27:72: 33:63:f9:ce:14:20:e9:ca:5d:48:2f:91:d7:fe:26:be:3d:0a: 52:ff:de:4d:d1:d6:78:19:67:f9:f8:12:37:bc:01:58:e0:d3: f1:2a:1b:63:8f:6f:ec:e9:6b:40:9c:15:2f:8b:da:47:0d:b6: 97:de:12:3f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDWQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTAyMTAx MzUxMDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRBMTM4QUFDREFERTlC MzI5Q0YyMUYyNjQ3OEMxMDBCQUVFQUE4OUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYU3ltR6j3rfGVXoyA7qNiiS6qO/6REPyF/EwQoTF1ht/FTHDb Wu1HAmcFOOpyyI7Cwq+VSbrUDhnhLPY2QwLupyUyXcESxx6NSplqPpJ1tRuoXEFB +m5DxIP7J5+1zXNrgPmzmftx0Yxsz3C6I0H7UL7HeN2/PSYj2MDezPoAPDNiiKaM dxgFMw2RnO2+8GQRoOfRiMXEOst3avSPxkbZzbXUSI67J62JkYQnd9xLw7FGfSfO LiZG7IWRnf0aTyc3N+mKFOowaLUQI7nlkekTPii1qD5CgvdpOYXfDu67M2YxMoi5 fEj4vlm9qvPaBz3ydZDdex9VMM9V0/p/OgghAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUShOKrNremzKc8h8mR4wQC67qqJ0wHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vU2hPS3JOcmVtektjOGg4 bVI0d1FDNjdxcUowLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BT0/oDANBgkqhkiG9w0BAQsFAAOCAQEAKOJuMT4D93mhrEr5Kj+J5PFOWuCnzSL/ oXOFEQGuZqBZyRWuEHwXv5StJQtI8ioIEBDaGBVzVET0e9z6SJhGozPdyBS6mg4a lphw3qvRORtIdeDJA4B0IAZRed/4QDxvZeVFrLmrNGfXdfsLYrIlNw4kuUJ02Z4m /amA2VIezJNjRs3P+52K5+u+Hldf7YWtSl6b8UAgQDSw9x2podaDfawxrRuLH7V0 yVyhOvdx3YeltSxf5G57P4FHFgrlzmg2juTdPydyM2P5zhQg6cpdSC+R1/4mvj0K Uv/eTdHWeBln+fgSN7wBWODT8SobY49v7OlrQJwVL4vaRw22l94SPw== -----END CERTIFICATE-----Generated at Thu Apr 17 13:14:58 2025 by rpki-client