$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/qVBjLs73dkNP1QlcqDIAbFb5cps.roa File: qVBjLs73dkNP1QlcqDIAbFb5cps.roa (raw, json) Hash identifier: lapyyBrOgnQro8zqs1na9sj/+WixtTKZkeflNWxsYN8= Subject key identifier: A9:50:63:2E:CE:F7:76:43:4F:D5:09:5C:A8:32:00:6C:56:F9:72:9B Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0D5F Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/qVBjLs73dkNP1QlcqDIAbFb5cps.roa Signing time: Mon 10 Feb 2025 13:51:04 +0000 ROA not before: Mon 10 Feb 2025 13:51:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 2402:9c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 13:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3423 (0xd5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Feb 10 13:51:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A950632ECEF776434FD5095CA832006C56F9729B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b3:56:bc:92:10:33:ec:fe:3e:05:64:80:9c: 69:53:65:f6:22:d0:0c:8d:72:86:3d:c4:d3:76:f1: 6e:d9:2e:4b:15:e0:4c:19:bb:7d:e4:21:fc:22:d8: 02:cd:1c:6d:86:16:71:47:19:9d:48:92:c8:1b:dd: 34:f2:f1:03:cc:d9:aa:c4:de:7f:d3:1c:b1:bc:70: 57:af:57:ec:4f:68:f4:17:16:55:72:0b:5a:96:4d: 45:13:de:81:4e:81:a6:64:d4:93:9e:46:f1:c0:d2: 57:e1:73:c2:5a:a3:a7:78:84:8d:12:f7:b7:3c:d3: 16:dd:90:9b:6e:44:bb:3a:ab:f8:bc:66:9d:79:4c: ec:65:5f:94:fe:12:8c:e8:9a:e6:8b:6e:6b:0b:48: a9:8d:75:38:1e:a4:93:41:1c:c8:e9:16:11:7e:d1: a0:1e:15:79:6d:20:c7:d7:0d:38:90:c7:5b:e2:fb: b6:66:cb:15:3e:55:86:14:74:e6:dc:0d:4a:78:34: 6d:95:a6:0c:20:31:d5:50:79:f7:cd:69:cf:bd:07: 2f:e3:07:0a:b9:96:d8:05:ac:4e:b3:bc:e6:22:c9: c2:54:a2:fb:4a:fd:6b:d6:dd:d3:53:4c:ef:44:d3: b9:f2:94:b1:db:ec:b8:45:17:ef:1f:16:10:15:30: 61:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:50:63:2E:CE:F7:76:43:4F:D5:09:5C:A8:32:00:6C:56:F9:72:9B X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/qVBjLs73dkNP1QlcqDIAbFb5cps.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:9c00::/32 Signature Algorithm: sha256WithRSAEncryption 9c:9e:94:c3:8e:fa:80:45:9a:47:98:fd:64:99:e7:3e:92:37: f1:8a:f7:eb:5e:a4:7a:16:ed:24:4e:f2:8f:00:55:13:00:c3: b2:f9:c3:21:bc:3f:2c:0b:6d:f9:28:92:0a:81:8b:a7:e8:e5: 88:67:61:51:99:5a:56:b2:e6:35:fe:88:12:44:6d:04:ec:12: e9:80:f7:0d:6f:d8:78:fe:97:f2:67:0c:3b:d0:52:d6:e9:5a: ea:72:f6:62:60:8d:6e:66:9e:b0:c7:6f:57:20:a5:70:55:69: 03:8f:fb:e2:31:2e:3d:7a:f7:f7:7b:91:06:77:ca:ce:31:75: 2b:8c:3b:9a:52:b5:2b:ae:69:2f:c0:0e:af:a6:a1:19:dd:6e: a1:12:20:7b:4b:68:ee:59:2c:cf:e5:54:29:7c:7a:66:63:df: eb:3d:8f:ed:be:9a:9d:08:42:c0:92:9e:9f:21:25:cb:f8:08: 34:04:6f:1e:75:db:43:f7:51:31:4a:75:a6:04:8c:02:ab:b2: 30:d9:75:f6:fc:47:3a:3e:76:1a:80:cd:cb:16:69:21:92:6a: 16:76:d1:aa:26:43:25:9a:5b:6d:53:c0:2d:b9:6e:11:9f:5b: ae:82:42:90:fe:ae:a9:21:47:b3:10:23:54:cb:e6:0e:8f:7e: 42:99:42:7a -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDV8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTAyMTAx MzUxMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE5NTA2MzJFQ0VGNzc2 NDM0RkQ1MDk1Q0E4MzIwMDZDNTZGOTcyOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEs1a8khAz7P4+BWSAnGlTZfYi0AyNcoY9xNN28W7ZLksV4EwZ u33kIfwi2ALNHG2GFnFHGZ1Iksgb3TTy8QPM2arE3n/THLG8cFevV+xPaPQXFlVy C1qWTUUT3oFOgaZk1JOeRvHA0lfhc8Jao6d4hI0S97c80xbdkJtuRLs6q/i8Zp15 TOxlX5T+EozomuaLbmsLSKmNdTgepJNBHMjpFhF+0aAeFXltIMfXDTiQx1vi+7Zm yxU+VYYUdObcDUp4NG2VpgwgMdVQeffNac+9By/jBwq5ltgFrE6zvOYiycJUovtK /WvW3dNTTO9E07nylLHb7LhFF+8fFhAVMGF5AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUqVBjLs73dkNP1QlcqDIAbFb5cpswHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vcVZCakxzNzNka05QMVFs Y3FESUFiRmI1Y3BzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQCnAAwDQYJKoZIhvcNAQELBQADggEBAJyelMOO+oBFmkeY/WSZ5z6SN/GK9+te pHoW7SRO8o8AVRMAw7L5wyG8PywLbfkokgqBi6fo5YhnYVGZWlay5jX+iBJEbQTs EumA9w1v2Hj+l/JnDDvQUtbpWupy9mJgjW5mnrDHb1cgpXBVaQOP++IxLj169/d7 kQZ3ys4xdSuMO5pStSuuaS/ADq+moRndbqESIHtLaO5ZLM/lVCl8emZj3+s9j+2+ mp0IQsCSnp8hJcv4CDQEbx5120P3UTFKdaYEjAKrsjDZdfb8Rzo+dhqAzcsWaSGS ahZ20aomQyWaW21TwC25bhGfW66CQpD+rqkhR7MQI1TL5g6PfkKZQno= -----END CERTIFICATE-----Generated at Thu Apr 17 13:08:00 2025 by rpki-client