$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/gG8sQ__IyvPz93jsrBe7F73QEc0.roa File: gG8sQ__IyvPz93jsrBe7F73QEc0.roa (raw, json) Hash identifier: Tsc4VQRwyg2Hjr4354S17AZmcVLuNXKlMcbObsvAUQU= Subject key identifier: 80:6F:2C:43:FF:C8:CA:F3:F3:F7:78:EC:AC:17:BB:17:BD:D0:11:CD Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0D63 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/gG8sQ__IyvPz93jsrBe7F73QEc0.roa Signing time: Mon 10 Feb 2025 13:51:05 +0000 ROA not before: Mon 10 Feb 2025 13:51:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 122.201.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 13:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3427 (0xd63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Feb 10 13:51:05 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=806F2C43FFC8CAF3F3F778ECAC17BB17BDD011CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:83:9c:3f:0a:2d:ec:2a:c9:f6:02:c0:7d:b9: ac:45:7d:4b:36:3a:ee:6e:be:d5:ef:09:3f:24:83: 80:3a:76:97:7d:f1:ca:46:e1:b4:73:a7:e0:b1:a3: 3a:8b:e3:84:9e:b4:69:87:b2:e2:aa:77:b2:b8:d6: d0:b2:98:70:ee:ff:63:99:f3:ba:cb:11:60:e4:44: 72:c7:98:88:c3:73:b2:e0:dc:aa:dd:53:13:14:d8: 97:a2:23:e7:a7:5b:41:55:9a:7f:77:4f:d3:31:3a: bf:fa:ee:d4:37:ff:04:40:fa:78:9d:1d:78:8f:0a: 9c:c1:17:e1:8a:7b:df:32:5c:9c:53:28:a3:e2:38: 91:15:23:d6:ad:7f:cd:c5:7f:a1:34:8e:e1:62:7e: b8:0e:af:35:eb:bf:27:c7:f1:98:04:5b:31:d8:e0: b0:de:24:94:70:ad:9a:32:ed:2d:ea:89:1c:5c:7f: dc:6a:41:ea:8f:b7:76:6f:c9:08:85:f5:cd:a5:52: ef:0d:67:82:1b:79:d0:fc:92:d6:8a:22:c2:86:2d: 38:3b:fd:0f:ca:39:4c:02:9e:9a:a7:03:37:a5:72: b9:0e:ea:8a:a5:ba:0c:14:5e:52:8c:6d:a2:35:57: 58:44:b2:4c:14:71:d4:b1:e4:e7:9f:7b:cb:fe:96: fd:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:6F:2C:43:FF:C8:CA:F3:F3:F7:78:EC:AC:17:BB:17:BD:D0:11:CD X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/gG8sQ__IyvPz93jsrBe7F73QEc0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.201.128.0/17 Signature Algorithm: sha256WithRSAEncryption c7:87:14:46:d5:22:15:69:9f:73:bb:1d:04:98:a2:5f:a9:59: b0:e8:66:df:04:04:81:e5:27:50:f4:83:ae:3f:26:a6:ee:6d: 4e:c2:df:e7:54:e9:38:18:9b:d1:98:46:7e:71:5c:6b:8d:2c: 9b:19:d9:73:49:0d:7e:76:91:dc:ae:db:d6:a1:6d:f3:ef:0c: 07:fc:e1:7c:de:e7:6e:4b:db:86:15:1f:e1:c9:8a:a4:2a:f6: 28:09:da:a0:2f:66:56:48:df:fa:e0:dc:b5:60:75:52:d3:27: 02:e3:2f:3f:e7:25:c7:47:13:64:0b:bb:b1:61:fd:e4:da:d3: 0a:78:83:f7:fe:e5:0f:83:d3:bc:61:c3:23:10:2c:89:39:37: a2:e3:b8:12:e2:6c:10:a5:7d:57:17:00:ec:66:26:a7:e8:e6: 0e:80:4f:c2:86:e9:c6:65:de:41:bb:4f:b8:ab:32:55:13:39: 91:be:c8:77:bc:05:ca:63:ac:75:f8:29:c9:05:c0:4d:6a:6f: c3:ee:db:c8:aa:fe:b7:7a:3b:30:75:ee:f7:08:d2:ff:1c:b6: ea:12:20:d6:05:77:10:a4:37:1f:d8:ae:b5:20:22:71:9b:19: 37:2e:c2:e7:96:59:9f:ea:e8:95:12:4c:a3:34:55:22:97:11: 46:1f:ca:99 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDWMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTAyMTAx MzUxMDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgwNkYyQzQzRkZDOENB RjNGM0Y3NzhFQ0FDMTdCQjE3QkREMDExQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBg5w/Ci3sKsn2AsB9uaxFfUs2Ou5uvtXvCT8kg4A6dpd98cpG 4bRzp+CxozqL44SetGmHsuKqd7K41tCymHDu/2OZ87rLEWDkRHLHmIjDc7Lg3Krd UxMU2JeiI+enW0FVmn93T9MxOr/67tQ3/wRA+nidHXiPCpzBF+GKe98yXJxTKKPi OJEVI9atf83Ff6E0juFifrgOrzXrvyfH8ZgEWzHY4LDeJJRwrZoy7S3qiRxcf9xq QeqPt3ZvyQiF9c2lUu8NZ4IbedD8ktaKIsKGLTg7/Q/KOUwCnpqnAzelcrkO6oql ugwUXlKMbaI1V1hEskwUcdSx5Oefe8v+lv3VAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUgG8sQ//IyvPz93jsrBe7F73QEc0wHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vZ0c4c1FfX0l5dlB6OTNq c3JCZTdGNzNRRWMwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME B3rJgDANBgkqhkiG9w0BAQsFAAOCAQEAx4cURtUiFWmfc7sdBJiiX6lZsOhm3wQE geUnUPSDrj8mpu5tTsLf51TpOBib0ZhGfnFca40smxnZc0kNfnaR3K7b1qFt8+8M B/zhfN7nbkvbhhUf4cmKpCr2KAnaoC9mVkjf+uDctWB1UtMnAuMvP+clx0cTZAu7 sWH95NrTCniD9/7lD4PTvGHDIxAsiTk3ouO4EuJsEKV9VxcA7GYmp+jmDoBPwobp xmXeQbtPuKsyVRM5kb7Id7wFymOsdfgpyQXATWpvw+7byKr+t3o7MHXu9wjS/xy2 6hIg1gV3EKQ3H9iutSAicZsZNy7C55ZZn+rolRJMozRVIpcRRh/KmQ== -----END CERTIFICATE-----Generated at Thu Apr 17 13:05:33 2025 by rpki-client