$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/vF7_sA-6h_uyGJfL2n_LyHWss0A.roa File: vF7_sA-6h_uyGJfL2n_LyHWss0A.roa (raw, json) Hash identifier: QwFbfocxdKJNbIpfrtrd3AiFlXd0EkSfu/Q5X9/7qoc= Subject key identifier: BC:5E:FF:B0:0F:BA:87:FB:B2:18:97:CB:DA:7F:CB:C8:75:AC:B3:40 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0D5B Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/vF7_sA-6h_uyGJfL2n_LyHWss0A.roa Signing time: Mon 10 Feb 2025 13:51:03 +0000 ROA not before: Mon 10 Feb 2025 13:51:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 101.0.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 13:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3419 (0xd5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Feb 10 13:51:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BC5EFFB00FBA87FBB21897CBDA7FCBC875ACB340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8b:88:34:39:26:23:78:3b:7c:99:10:6b:0c: 07:06:b3:99:a9:d0:7d:f3:df:82:7a:65:8f:8e:42: 0c:a1:ec:12:77:e1:22:74:c2:16:05:9c:21:5f:dd: 28:d7:6a:e3:58:f3:a4:32:37:d7:19:79:9d:d4:1b: 11:3a:83:0d:c6:77:a4:65:ce:8e:ca:de:4f:67:b7: bd:a5:ba:36:87:4e:ce:fe:1a:92:af:fb:09:0e:d6: ba:00:27:6a:4c:73:9b:77:83:64:77:92:1a:2a:0b: af:e2:b3:f8:f8:b2:9d:c0:39:6f:46:33:45:26:d9: d3:75:ad:bb:e0:c6:4a:8d:a3:11:d8:3d:b1:28:39: 6b:46:e9:63:3c:2e:dd:86:26:ac:6f:4d:3b:16:f0: 3c:70:02:54:72:d3:11:ff:07:ba:cd:69:95:11:52: 6a:0f:6b:56:39:2a:d7:c5:22:b5:04:6e:1b:2c:58: fd:18:82:9c:65:59:ae:1b:f9:f9:a0:16:38:75:92: 9f:45:80:04:40:de:94:1d:44:27:59:77:e8:ff:b3: 37:ec:77:dc:16:1f:1d:01:02:b6:d3:99:83:b3:5b: 8d:5a:4d:d4:6d:8f:00:0c:bd:d1:4b:8e:7d:93:f2: 61:c0:35:5b:1d:79:bb:d5:9c:92:dc:e4:3d:d5:f7: 01:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:5E:FF:B0:0F:BA:87:FB:B2:18:97:CB:DA:7F:CB:C8:75:AC:B3:40 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/vF7_sA-6h_uyGJfL2n_LyHWss0A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.0.192.0/19 Signature Algorithm: sha256WithRSAEncryption 33:88:ea:9a:6b:5b:b2:57:dd:e2:29:76:24:39:ee:6e:13:c9: f8:59:13:11:b5:26:0e:2c:6b:ba:19:39:5b:ed:19:cf:93:95: 91:36:9a:2b:d6:a4:d1:07:7c:63:fe:09:36:2d:ce:64:86:5d: 81:8f:7c:c1:5f:66:58:e2:d0:4e:9d:b2:0c:23:6d:44:a1:c4: 29:9b:b6:90:6b:a7:bd:71:27:a4:be:3f:86:c6:f2:9b:07:8d: 16:af:b6:cb:64:55:f5:cd:f5:28:c8:2a:df:da:92:75:99:2e: 90:a5:62:aa:d8:17:fd:a5:1b:58:51:84:48:66:16:33:f5:c0: a1:79:b1:f2:75:f0:1d:4b:8e:bb:b4:86:15:ee:a1:ac:dd:c0: 03:8e:fc:05:83:6d:e0:6c:fa:49:05:09:8e:c6:ad:35:4e:12: 4c:3a:65:76:a9:78:f7:45:ac:74:1b:47:e0:63:54:5e:e5:2d: ce:fc:9b:f5:f0:18:04:9a:7c:96:a3:de:80:4d:75:8e:4e:02: 8b:a2:bb:77:41:8c:05:33:24:00:b2:df:be:da:12:39:f3:a1: d2:bd:8f:7c:d9:8f:30:ae:79:3d:53:d3:e7:86:76:8e:04:72: a0:69:a6:04:85:42:d9:4d:c1:36:53:fc:58:68:b7:52:38:cd: 83:c2:2c:8f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDVswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTAyMTAx MzUxMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJDNUVGRkIwMEZCQTg3 RkJCMjE4OTdDQkRBN0ZDQkM4NzVBQ0IzNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZi4g0OSYjeDt8mRBrDAcGs5mp0H3z34J6ZY+OQgyh7BJ34SJ0 whYFnCFf3SjXauNY86QyN9cZeZ3UGxE6gw3Gd6Rlzo7K3k9nt72lujaHTs7+GpKv +wkO1roAJ2pMc5t3g2R3khoqC6/is/j4sp3AOW9GM0Um2dN1rbvgxkqNoxHYPbEo OWtG6WM8Lt2GJqxvTTsW8DxwAlRy0xH/B7rNaZURUmoPa1Y5KtfFIrUEbhssWP0Y gpxlWa4b+fmgFjh1kp9FgARA3pQdRCdZd+j/szfsd9wWHx0BArbTmYOzW41aTdRt jwAMvdFLjn2T8mHANVsdebvVnJLc5D3V9wGhAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUvF7/sA+6h/uyGJfL2n/LyHWss0AwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vdkY3X3NBLTZoX3V5R0pm TDJuX0x5SFdzczBBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BWUAwDANBgkqhkiG9w0BAQsFAAOCAQEAM4jqmmtbslfd4il2JDnubhPJ+FkTEbUm Dixruhk5W+0Zz5OVkTaaK9ak0Qd8Y/4JNi3OZIZdgY98wV9mWOLQTp2yDCNtRKHE KZu2kGunvXEnpL4/hsbymweNFq+2y2RV9c31KMgq39qSdZkukKViqtgX/aUbWFGE SGYWM/XAoXmx8nXwHUuOu7SGFe6hrN3AA478BYNt4Gz6SQUJjsatNU4STDpldql4 90WsdBtH4GNUXuUtzvyb9fAYBJp8lqPegE11jk4Ci6K7d0GMBTMkALLfvtoSOfOh 0r2PfNmPMK55PVPT54Z2jgRyoGmmBIVC2U3BNlP8WGi3UjjNg8Isjw== -----END CERTIFICATE-----Generated at Thu Apr 17 13:05:33 2025 by rpki-client