$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/HNa66nfKvkHUA8RrOgnARz54-Zs.roa File: HNa66nfKvkHUA8RrOgnARz54-Zs.roa (raw, json) Hash identifier: G+17uvO2uUHRn1OnaL9F4eXRZTj+9p+wb+ykqsHXh1U= Subject key identifier: 1C:D6:BA:EA:77:CA:BE:41:D4:03:C4:6B:3A:09:C0:47:3E:78:F9:9B Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0E68 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/HNa66nfKvkHUA8RrOgnARz54-Zs.roa Signing time: Fri 22 Aug 2025 08:44:37 +0000 ROA not before: Fri 22 Aug 2025 08:44:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9676 IP address blocks: 61.65.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3688 (0xe68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 22 08:44:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1CD6BAEA77CABE41D403C46B3A09C0473E78F99B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:36:9d:55:1c:67:e1:c2:bc:bb:92:1b:3b:87: 51:f4:7f:5f:f5:63:4e:f8:06:d5:eb:4a:8a:cc:81: 4f:9b:85:7e:48:f4:8b:a0:e7:7f:0c:b9:20:da:57: f7:16:c8:bd:fd:6d:b6:e7:b6:f2:bb:cb:e0:70:c5: c6:8a:77:c5:f8:4d:55:e8:da:ad:a0:00:a0:bf:a6: df:6a:3a:c5:02:1b:b8:b5:95:a1:2f:e8:3b:6e:2f: d5:87:ee:6c:f0:4b:dc:09:11:18:bf:70:6b:43:5d: fe:2e:29:09:b9:8a:dc:32:28:7f:d0:8b:a7:75:a1: 0d:1b:2f:a3:cf:61:2e:4e:07:a5:3a:b2:8b:9c:e8: 31:f7:18:2a:bf:b3:ae:d0:1b:cd:d4:93:f2:df:5b: e2:06:5d:69:54:ae:f8:8e:a6:9c:86:24:d3:d1:03: 0e:87:a8:2e:b6:8c:84:de:ae:bd:43:fd:b6:e6:ef: 9a:bc:14:1f:44:6e:d2:15:f4:50:62:f8:f2:f8:56: 29:5c:e1:00:49:36:31:d3:fe:cf:5e:4f:bd:7b:6d: 4e:67:f6:18:1d:4f:6a:f8:bc:53:b2:a7:d8:3f:0a: b3:3e:16:75:51:6b:c9:c3:0f:20:2a:9e:7e:ed:24: 61:8a:fc:33:38:0b:ec:e9:90:d4:fd:88:31:4b:cd: 20:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D6:BA:EA:77:CA:BE:41:D4:03:C4:6B:3A:09:C0:47:3E:78:F9:9B X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/HNa66nfKvkHUA8RrOgnARz54-Zs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.65.128.0/18 Signature Algorithm: sha256WithRSAEncryption 69:9b:7d:e4:4a:b1:a2:f6:a3:03:e8:70:37:f8:b6:f2:0d:06: 8e:c6:67:c3:35:ee:7f:b0:b9:17:88:ef:52:4d:03:b4:de:57: 95:62:73:e3:20:0e:ec:4d:19:51:20:3b:99:e2:58:42:4f:03: 98:ab:93:01:c4:b2:d5:4b:85:5f:43:bf:6f:ee:4a:87:42:16: 99:fc:38:7e:15:5c:e4:a9:8e:93:1a:47:88:5e:6f:51:35:f8: 61:21:05:15:ca:27:e0:77:e0:a1:b7:7f:5f:0b:64:d4:36:81: 90:63:7b:6b:c1:54:a5:32:7d:10:54:e4:92:6c:a5:c7:11:98: 2f:4b:25:3f:08:6d:ea:d1:79:aa:f2:41:00:30:fd:2b:6e:b1: 8d:9b:b7:d2:54:82:72:ed:e6:ea:13:ca:6b:30:ee:e0:43:38: 95:e7:e4:74:b0:28:7a:79:53:74:b7:f2:ae:f0:e6:ee:6f:08: 81:54:56:6b:ba:3a:ae:c8:c5:26:dd:b0:fe:1e:04:87:8b:ff: 4c:10:86:2c:a8:b3:88:f7:8c:86:83:43:a1:60:e4:0e:d7:44: 16:58:f8:3f:33:bc:f9:58:99:5c:9f:5d:de:60:06:68:aa:6b: 50:d4:3c:44:d0:3a:1e:b2:6a:b4:7a:ee:06:bb:00:e7:da:a0: a4:a4:e0:0f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDmgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTA4MjIw ODQ0MzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFDRDZCQUVBNzdDQUJF NDFENDAzQzQ2QjNBMDlDMDQ3M0U3OEY5OUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2Np1VHGfhwry7khs7h1H0f1/1Y074BtXrSorMgU+bhX5I9Iug 538MuSDaV/cWyL39bbbntvK7y+BwxcaKd8X4TVXo2q2gAKC/pt9qOsUCG7i1laEv 6DtuL9WH7mzwS9wJERi/cGtDXf4uKQm5itwyKH/Qi6d1oQ0bL6PPYS5OB6U6souc 6DH3GCq/s67QG83Uk/LfW+IGXWlUrviOppyGJNPRAw6HqC62jITerr1D/bbm75q8 FB9EbtIV9FBi+PL4Vilc4QBJNjHT/s9eT717bU5n9hgdT2r4vFOyp9g/CrM+FnVR a8nDDyAqnn7tJGGK/DM4C+zpkNT9iDFLzSB3AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUHNa66nfKvkHUA8RrOgnARz54+ZswHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vSE5hNjZuZkt2a0hVQThS ck9nbkFSejU0LVpzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Bj1BgDANBgkqhkiG9w0BAQsFAAOCAQEAaZt95EqxovajA+hwN/i28g0GjsZnwzXu f7C5F4jvUk0DtN5XlWJz4yAO7E0ZUSA7meJYQk8DmKuTAcSy1UuFX0O/b+5Kh0IW mfw4fhVc5KmOkxpHiF5vUTX4YSEFFcon4Hfgobd/Xwtk1DaBkGN7a8FUpTJ9EFTk kmylxxGYL0slPwht6tF5qvJBADD9K26xjZu30lSCcu3m6hPKazDu4EM4lefkdLAo enlTdLfyrvDm7m8IgVRWa7o6rsjFJt2w/h4Eh4v/TBCGLKiziPeMhoNDoWDkDtdE Flj4PzO8+ViZXJ9d3mAGaKprUNQ8RNA6HrJqtHruBrsA59qgpKTgDw== -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:41 2025 by rpki-client