$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/Vbp8HLt6UIkWtth2bjFWrJe6UWA.roa File: Vbp8HLt6UIkWtth2bjFWrJe6UWA.roa (raw, json) Hash identifier: inwyznboTHZHjoz49exyEO1A7gh3Uz0a1JHOZfZyLHc= Subject key identifier: 55:BA:7C:1C:BB:7A:50:89:16:B6:D8:76:6E:31:56:AC:97:BA:51:60 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0D5E Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/Vbp8HLt6UIkWtth2bjFWrJe6UWA.roa Signing time: Mon 10 Feb 2025 13:51:04 +0000 ROA not before: Mon 10 Feb 2025 13:51:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 61.60.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 18:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3422 (0xd5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Feb 10 13:51:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=55BA7C1CBB7A508916B6D8766E3156AC97BA5160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:87:2d:03:31:ac:e2:b0:43:fe:b3:8f:d0:fa: f3:75:a7:1d:1b:f8:b5:4d:d8:53:dd:0b:8d:18:06: 2c:a1:7f:e5:ec:d9:21:69:41:31:59:ca:5e:96:f5: f2:a9:63:f6:3a:4e:98:71:c7:b1:01:bc:7b:2c:02: 55:44:1a:8a:4f:1f:79:64:23:ad:ea:44:ff:66:c9: 41:c9:5e:62:64:04:5b:fe:c7:1d:1c:f3:1e:08:ee: b1:83:dd:a9:ab:11:44:5e:10:24:96:10:b5:46:e6: 66:2f:8a:0d:93:28:a1:72:b3:66:e1:80:65:01:5f: 14:e2:31:cd:db:5b:d8:5a:8c:9e:73:2a:58:b8:53: de:10:8f:2f:5e:14:62:42:20:56:9d:df:77:db:91: 61:d4:0f:24:66:ff:a3:ea:e6:6f:39:79:01:35:9e: ad:50:08:03:73:b7:9f:f4:8f:34:02:08:bc:55:9d: 2a:84:c8:f9:27:c9:21:cd:51:30:c2:f2:a0:7f:6d: 7a:5b:87:95:69:dd:d2:cd:54:72:f7:82:1e:10:af: b6:5b:55:ff:06:48:a6:88:0c:0b:58:b6:08:54:a3: c6:ce:de:82:88:ad:c1:ea:09:f4:85:3c:86:25:55: 88:a8:0e:6d:72:30:17:c1:2e:09:41:ee:69:cd:66: 7d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BA:7C:1C:BB:7A:50:89:16:B6:D8:76:6E:31:56:AC:97:BA:51:60 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/Vbp8HLt6UIkWtth2bjFWrJe6UWA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.160.0/19 Signature Algorithm: sha256WithRSAEncryption 01:16:c5:e7:35:30:75:3e:07:07:ac:51:67:b2:85:e6:a0:6c: 34:cf:72:e9:da:54:e5:d0:43:cd:75:71:38:ad:25:1a:f6:1d: b8:6b:44:fc:ab:fc:b2:92:cb:b8:8e:90:32:db:e4:7d:a7:24: 77:3a:c8:33:22:d6:c8:ec:8f:64:7a:49:b2:ec:0e:f3:86:64: 8c:6e:a2:6c:4c:23:bc:53:bb:25:16:41:15:7a:02:f4:5a:f4: ce:13:8e:cf:e9:15:96:80:3e:7c:4b:e6:8f:bb:b8:3e:07:56: e2:65:8d:49:12:6d:56:48:8e:74:52:00:06:72:31:a6:e6:c3: 74:a9:a2:b3:69:26:85:85:60:1d:d6:2f:4b:f2:97:c1:e3:94: dd:3e:46:bc:df:63:a9:eb:97:30:79:19:7d:c4:93:a1:7a:82: 69:2b:73:a5:e5:b3:73:8d:1c:ed:b6:fb:73:0d:25:a3:76:dc: 35:ea:6f:9e:dd:c0:15:57:23:e0:84:24:7d:6f:7f:84:24:42: df:87:5a:0a:8d:61:19:8b:d7:13:6b:e8:25:ee:14:4f:ac:d7: 0d:df:bb:94:89:fc:26:59:58:47:e2:c2:16:c3:0e:fc:a4:e3: a7:a8:b9:01:8f:b8:b0:af:f9:ff:6f:a8:c6:38:a6:11:d7:a2: e4:76:25:3b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTAyMTAx MzUxMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU1QkE3QzFDQkI3QTUw ODkxNkI2RDg3NjZFMzE1NkFDOTdCQTUxNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXhy0DMazisEP+s4/Q+vN1px0b+LVN2FPdC40YBiyhf+Xs2SFp QTFZyl6W9fKpY/Y6Tphxx7EBvHssAlVEGopPH3lkI63qRP9myUHJXmJkBFv+xx0c 8x4I7rGD3amrEUReECSWELVG5mYvig2TKKFys2bhgGUBXxTiMc3bW9hajJ5zKli4 U94Qjy9eFGJCIFad33fbkWHUDyRm/6Pq5m85eQE1nq1QCANzt5/0jzQCCLxVnSqE yPknySHNUTDC8qB/bXpbh5Vp3dLNVHL3gh4Qr7ZbVf8GSKaIDAtYtghUo8bO3oKI rcHqCfSFPIYlVYioDm1yMBfBLglB7mnNZn1jAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUVbp8HLt6UIkWtth2bjFWrJe6UWAwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vVmJwOEhMdDZVSWtXdHRo MmJqRldySmU2VVdBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BT08oDANBgkqhkiG9w0BAQsFAAOCAQEAARbF5zUwdT4HB6xRZ7KF5qBsNM9y6dpU 5dBDzXVxOK0lGvYduGtE/Kv8spLLuI6QMtvkfackdzrIMyLWyOyPZHpJsuwO84Zk jG6ibEwjvFO7JRZBFXoC9Fr0zhOOz+kVloA+fEvmj7u4PgdW4mWNSRJtVkiOdFIA BnIxpubDdKmis2kmhYVgHdYvS/KXweOU3T5GvN9jqeuXMHkZfcSToXqCaStzpeWz c40c7bb7cw0lo3bcNepvnt3AFVcj4IQkfW9/hCRC34daCo1hGYvXE2voJe4UT6zX Dd+7lIn8JllYR+LCFsMO/KTjp6i5AY+4sK/5/2+oxjimEdei5HYlOw== -----END CERTIFICATE-----Generated at Thu Apr 17 13:19:45 2025 by rpki-client