$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/zOwHLTlhvegMbDdvkaPv5CBG8FY.roa File: zOwHLTlhvegMbDdvkaPv5CBG8FY.roa (raw, json) Hash identifier: o+r6PEux8wY/hWaTvw93PThC/6enn2FN0VPhlqBdX38= Subject key identifier: CC:EC:07:2D:39:61:BD:E8:0C:6C:37:6F:91:A3:EF:E4:20:46:F0:56 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0D5C Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/zOwHLTlhvegMbDdvkaPv5CBG8FY.roa Signing time: Mon 10 Feb 2025 13:51:04 +0000 ROA not before: Mon 10 Feb 2025 13:51:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 103.224.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 18:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3420 (0xd5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Feb 10 13:51:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CCEC072D3961BDE80C6C376F91A3EFE42046F056 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c9:f1:d2:40:92:29:13:84:5b:ed:f3:1d:cb: 66:cc:96:f1:d3:c9:12:55:db:9a:66:bb:e3:ec:4d: d3:10:9d:e0:d6:83:49:23:82:30:7b:c6:7c:26:bd: 83:51:85:ac:b1:28:53:1a:56:c7:ba:42:eb:3c:1b: 64:ab:85:29:62:6b:82:33:61:49:bf:bb:ac:38:aa: fe:7f:46:7b:a1:6f:07:53:d5:c3:26:62:16:1d:36: 69:7c:ac:b6:ff:b6:4d:e0:d1:35:0f:ef:95:c7:5a: fe:b3:89:b0:b5:0e:8f:7e:81:0d:2c:98:26:3c:5b: dd:97:12:bd:d3:da:aa:a4:64:ea:f7:0b:63:a1:02: 5a:fc:3e:1c:83:93:aa:46:02:05:2a:18:51:dd:ef: ad:56:b1:3c:19:f4:5c:9b:a2:d2:bb:90:56:97:c2: e7:d4:09:1d:95:1e:30:6a:c8:2f:9d:bd:57:42:55: 0c:75:2b:06:93:4c:01:5f:f1:00:e6:fe:7f:f4:3f: 16:a0:4b:4f:d6:3d:0a:25:6d:a3:64:36:a4:b4:07: b8:06:c9:78:d9:cf:13:b9:40:54:66:0e:7c:09:9c: 00:ea:9a:dc:43:66:97:ad:68:6a:22:e5:95:63:60: 40:0d:b7:f3:88:dd:dc:7d:c6:03:8c:f4:96:83:fc: 99:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:EC:07:2D:39:61:BD:E8:0C:6C:37:6F:91:A3:EF:E4:20:46:F0:56 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/zOwHLTlhvegMbDdvkaPv5CBG8FY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.224.204.0/22 Signature Algorithm: sha256WithRSAEncryption 55:c2:23:5e:b7:c6:8c:c2:83:66:d5:3d:b6:c2:1e:54:bb:a6: f8:cc:9a:eb:22:40:af:38:66:9d:7a:bf:57:94:ea:d8:35:c4: 69:3d:81:e9:58:9d:a8:9d:f7:1b:76:3c:3c:65:16:10:1b:5c: ea:8f:82:f6:05:c0:a6:63:cb:68:a6:8a:d8:73:57:f4:c9:5c: 1b:40:f5:fa:1e:47:c2:d1:b3:35:e1:5f:45:24:46:87:5a:81: 76:7b:6c:44:d4:5e:2e:2a:c4:61:37:87:e9:d0:20:67:bf:7b: f2:c8:70:20:c3:ee:e0:27:de:f4:cf:b8:8b:b0:39:7b:81:33: 68:fc:c5:e1:ac:3d:4a:a7:35:c8:98:f0:37:5d:e9:b4:af:39: 90:dd:55:88:f6:da:90:6f:aa:8d:d9:b8:2c:a8:53:24:c0:29: b2:54:86:76:09:f8:7d:7f:4a:c0:50:56:6d:7d:e0:04:ba:87: ee:17:28:88:0c:0b:23:44:12:c4:5f:57:e5:5c:08:6c:f8:98: 5d:e4:bf:e4:00:88:ac:34:f4:39:74:47:37:8e:03:66:08:cb: 3e:e2:b6:b5:ab:46:69:c6:89:0b:c6:4b:d5:c9:f6:cb:dd:e2: b5:07:4a:54:fd:5e:15:fb:53:ca:0b:b9:59:cf:90:28:d3:78: 42:3b:f1:d4 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDVwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTAyMTAx MzUxMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENDRUMwNzJEMzk2MUJE RTgwQzZDMzc2RjkxQTNFRkU0MjA0NkYwNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3yfHSQJIpE4Rb7fMdy2bMlvHTyRJV25pmu+PsTdMQneDWg0kj gjB7xnwmvYNRhayxKFMaVse6Qus8G2SrhSlia4IzYUm/u6w4qv5/RnuhbwdT1cMm YhYdNml8rLb/tk3g0TUP75XHWv6zibC1Do9+gQ0smCY8W92XEr3T2qqkZOr3C2Oh Alr8PhyDk6pGAgUqGFHd761WsTwZ9FybotK7kFaXwufUCR2VHjBqyC+dvVdCVQx1 KwaTTAFf8QDm/n/0PxagS0/WPQolbaNkNqS0B7gGyXjZzxO5QFRmDnwJnADqmtxD ZpetaGoi5ZVjYEANt/OI3dx9xgOM9JaD/JmRAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUzOwHLTlhvegMbDdvkaPv5CBG8FYwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vek93SExUbGh2ZWdNYkRk dmthUHY1Q0JHOEZZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmfgzDANBgkqhkiG9w0BAQsFAAOCAQEAVcIjXrfGjMKDZtU9tsIeVLum+Mya6yJA rzhmnXq/V5Tq2DXEaT2B6VidqJ33G3Y8PGUWEBtc6o+C9gXApmPLaKaK2HNX9Mlc G0D1+h5HwtGzNeFfRSRGh1qBdntsRNReLirEYTeH6dAgZ7978shwIMPu4Cfe9M+4 i7A5e4EzaPzF4aw9Sqc1yJjwN13ptK85kN1ViPbakG+qjdm4LKhTJMApslSGdgn4 fX9KwFBWbX3gBLqH7hcoiAwLI0QSxF9X5VwIbPiYXeS/5ACIrDT0OXRHN44DZgjL PuK2tatGacaJC8ZL1cn2y93itQdKVP1eFftTygu5Wc+QKNN4Qjvx1A== -----END CERTIFICATE-----Generated at Thu Apr 17 13:21:58 2025 by rpki-client