$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/3zY4-7TWEGDTymgtcFjSVpfzKUM.roa File: 3zY4-7TWEGDTymgtcFjSVpfzKUM.roa (raw, json) Hash identifier: FgA2aA7QAbskLK7a19oRDJ0n15pGpb1oCQwJv+rqQbw= Subject key identifier: DF:36:38:FB:B4:D6:10:60:D3:CA:68:2D:70:58:D2:56:97:F3:29:43 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0E55 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/3zY4-7TWEGDTymgtcFjSVpfzKUM.roa Signing time: Fri 22 Aug 2025 08:44:32 +0000 ROA not before: Fri 22 Aug 2025 08:44:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9676 IP address blocks: 61.65.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3669 (0xe55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 22 08:44:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DF3638FBB4D61060D3CA682D7058D25697F32943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9a:ce:8c:6d:1e:e7:e5:95:ae:0b:dc:26:4b: a4:68:6e:52:6e:61:ce:88:e2:3e:ac:7e:3a:0f:ae: bb:38:8f:14:f8:36:17:19:14:44:52:20:71:31:f3: 30:72:b9:f0:27:ae:84:5c:5f:69:b9:1e:32:80:43: 11:ee:e1:4f:cc:ed:6f:7f:6f:bf:22:f8:65:5e:c6: ee:aa:90:8a:03:8b:f7:6e:56:5d:be:86:06:10:9f: 8d:71:9f:01:60:ab:3b:56:7f:d1:15:61:cc:da:ea: 5b:40:41:f7:95:20:90:2e:aa:9a:dc:32:1f:31:6b: 7a:e5:19:b8:ba:b2:1b:d6:e8:bf:be:bb:bf:b0:05: 53:49:95:c7:de:7c:9f:1d:11:86:1b:d4:45:75:8b: be:38:91:11:35:56:a5:85:80:44:0f:a8:2a:09:f0: f1:25:39:22:1d:c4:94:85:2e:69:ac:4d:30:f3:ed: 02:c1:5e:4b:7c:09:f1:ed:be:02:c1:36:7f:a0:93: 2d:da:16:46:d8:f2:bd:d4:29:82:6c:e7:3b:19:e0: d8:f2:f2:4f:3d:35:9f:00:e4:ea:f5:d6:94:48:ac: 31:ac:06:3a:12:af:d3:e0:45:6c:af:37:21:85:be: 5d:28:ff:ed:60:5f:c6:06:02:56:58:bc:26:f6:f9: 37:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:36:38:FB:B4:D6:10:60:D3:CA:68:2D:70:58:D2:56:97:F3:29:43 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/3zY4-7TWEGDTymgtcFjSVpfzKUM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.65.0.0/17 Signature Algorithm: sha256WithRSAEncryption 51:e6:f5:89:df:e2:74:ee:a2:96:d6:b9:19:93:27:cc:e5:e8: 12:58:b6:ee:bc:6a:45:78:18:a9:f8:b4:46:59:d2:a2:cd:74: 32:c2:4b:5c:28:dd:e4:e0:c6:c9:2b:df:df:a6:37:8d:68:24: 08:c0:fe:bf:5a:d8:33:86:55:15:7b:0b:a4:51:9e:11:7a:0d: 1d:60:13:60:11:c8:2d:42:85:97:d8:02:72:85:6e:7d:47:cf: 41:71:85:5b:fe:a7:c1:be:e3:5c:21:04:f6:b3:97:f1:bf:40: 85:59:5f:9e:41:e4:de:ed:26:71:0b:26:0b:13:61:60:b0:d6: 38:40:fd:f4:be:21:a9:56:d0:4d:a3:92:75:3e:6d:a8:32:f0: 2a:14:fd:dd:e7:c4:0d:b5:f8:e9:5f:0c:1d:3d:e8:02:49:62: 85:76:67:29:67:65:f2:f0:a9:41:58:ec:c6:74:db:31:95:9e: 53:db:3f:14:40:3a:3f:62:b9:f0:22:93:06:55:bd:a5:ce:09: 1f:68:1a:07:d5:44:14:45:47:15:4a:0c:40:b8:5f:7f:ba:7f: 6b:74:2d:81:97:d3:5b:d8:ef:01:e8:29:a3:85:a0:21:5b:1b: ea:08:3a:81:60:f0:6f:56:74:28:43:d7:1a:b5:9d:ac:0d:19: 8a:4d:5d:63 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDlUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTA4MjIw ODQ0MzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERGMzYzOEZCQjRENjEw NjBEM0NBNjgyRDcwNThEMjU2OTdGMzI5NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAms6MbR7n5ZWuC9wmS6RoblJuYc6I4j6sfjoPrrs4jxT4NhcZ FERSIHEx8zByufAnroRcX2m5HjKAQxHu4U/M7W9/b78i+GVexu6qkIoDi/duVl2+ hgYQn41xnwFgqztWf9EVYcza6ltAQfeVIJAuqprcMh8xa3rlGbi6shvW6L++u7+w BVNJlcfefJ8dEYYb1EV1i744kRE1VqWFgEQPqCoJ8PElOSIdxJSFLmmsTTDz7QLB Xkt8CfHtvgLBNn+gky3aFkbY8r3UKYJs5zsZ4Njy8k89NZ8A5Or11pRIrDGsBjoS r9PgRWyvNyGFvl0o/+1gX8YGAlZYvCb2+TfBAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU3zY4+7TWEGDTymgtcFjSVpfzKUMwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vM3pZNC03VFdFR0RUeW1n dGNGalNWcGZ6S1VNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Bz1BADANBgkqhkiG9w0BAQsFAAOCAQEAUeb1id/idO6ilta5GZMnzOXoEli27rxq RXgYqfi0RlnSos10MsJLXCjd5ODGySvf36Y3jWgkCMD+v1rYM4ZVFXsLpFGeEXoN HWATYBHILUKFl9gCcoVufUfPQXGFW/6nwb7jXCEE9rOX8b9AhVlfnkHk3u0mcQsm CxNhYLDWOED99L4hqVbQTaOSdT5tqDLwKhT93efEDbX46V8MHT3oAklihXZnKWdl 8vCpQVjsxnTbMZWeU9s/FEA6P2K58CKTBlW9pc4JH2gaB9VEFEVHFUoMQLhff7p/ a3QtgZfTW9jvAegpo4WgIVsb6gg6gWDwb1Z0KEPXGrWdrA0Zik1dYw== -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:06 2025 by rpki-client