$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/fDzcJILtNy8gabJaWvP2k_a9E8Y.roa File: fDzcJILtNy8gabJaWvP2k_a9E8Y.roa (raw, json) Hash identifier: tu+lNHGPKDdRKEb9217W93fSnmTXENRYQcumtWXAHaA= Subject key identifier: 7C:3C:DC:24:82:ED:37:2F:20:69:B2:5A:5A:F3:F6:93:F6:BD:13:C6 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0E5A Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/fDzcJILtNy8gabJaWvP2k_a9E8Y.roa Signing time: Fri 22 Aug 2025 08:44:34 +0000 ROA not before: Fri 22 Aug 2025 08:44:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9676 IP address blocks: 150.107.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3674 (0xe5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 22 08:44:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7C3CDC2482ED372F2069B25A5AF3F693F6BD13C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:43:ee:45:82:aa:96:a4:0c:e0:56:c5:5b:dd: eb:90:08:bd:bb:78:2e:5b:5f:90:ab:35:ca:e7:d8: 59:b2:c6:40:1c:fc:9c:9c:cf:34:7d:87:e9:fa:2b: 9c:86:dc:4e:33:e9:c3:df:51:ee:41:6e:ac:ba:4c: ef:02:18:80:60:36:27:50:b0:22:86:fa:a8:39:c3: a5:7b:66:99:fb:ec:59:9d:d3:ef:e0:93:46:f9:e2: ef:78:e4:fc:b4:40:47:c6:7c:c7:d4:19:0a:5b:7b: 8a:13:94:2a:87:91:aa:32:18:ac:17:1b:2d:17:95: db:98:48:e8:69:3b:45:14:c6:d2:09:d9:ee:fe:5a: 48:cb:47:3f:8b:d5:4c:e3:39:66:11:a7:1e:7c:e4: 64:d5:f2:22:cd:2c:41:45:c4:06:92:35:69:57:ec: 2e:af:ce:b9:58:b6:b5:09:bc:76:8a:1e:42:f6:15: cd:81:e7:df:d9:ed:27:6b:f0:7c:18:36:c6:46:3a: 14:d5:5e:2f:8c:22:40:a1:12:4c:a7:cb:7b:12:f4: 7b:88:fb:8a:a3:d0:92:9e:65:2d:5e:8d:ef:5d:31: 3b:e2:8a:c0:7b:8a:f2:68:e9:57:7b:bd:d6:1f:36: d3:a6:08:ac:72:79:07:d4:e8:7a:3e:26:60:ab:44: 9d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:3C:DC:24:82:ED:37:2F:20:69:B2:5A:5A:F3:F6:93:F6:BD:13:C6 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/fDzcJILtNy8gabJaWvP2k_a9E8Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.107.60.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:5f:17:4b:7f:ef:87:3a:f7:18:b5:cc:74:22:08:55:dd:da: 8b:05:3b:2a:ec:84:45:0f:2a:ae:ad:91:af:d3:a0:44:2b:9c: f4:df:8f:2e:74:1a:05:c7:9d:35:99:1f:2c:74:c9:5a:11:db: 13:d9:0e:e2:32:9f:56:67:ea:19:1e:03:a4:8d:94:d0:4c:fb: 8b:a1:d3:bc:ba:89:9e:c5:65:0e:db:7f:97:ad:02:0b:2b:4c: 83:be:77:5b:38:ce:44:4e:96:cf:28:a4:57:e3:dc:26:09:13: a9:85:6f:73:26:73:17:c4:9b:8e:91:bf:99:b2:e3:b9:17:08: e5:f7:20:c9:48:89:41:e4:26:a8:2a:8b:b5:4c:a6:b8:12:1f: c2:82:1e:50:a7:a0:65:1d:14:f2:10:d9:d8:52:7f:f2:98:14: 39:f4:12:e5:5a:0f:d9:47:fc:f9:f4:75:5c:90:bb:03:e7:f1: c9:a9:93:b7:ab:28:c6:7f:12:f9:56:48:e0:9d:0c:00:96:b8: 40:fa:4c:51:5f:9a:2d:56:80:97:8b:93:0d:82:fa:a4:91:87: c6:2e:7d:96:24:1f:8b:2c:84:d9:bf:ce:96:77:73:21:1a:d0: be:19:33:fa:8d:3d:0d:38:a8:cc:03:fb:80:1b:eb:5e:e4:65: e1:87:86:0e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDlowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTA4MjIw ODQ0MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdDM0NEQzI0ODJFRDM3 MkYyMDY5QjI1QTVBRjNGNjkzRjZCRDEzQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXQ+5FgqqWpAzgVsVb3euQCL27eC5bX5CrNcrn2FmyxkAc/Jyc zzR9h+n6K5yG3E4z6cPfUe5Bbqy6TO8CGIBgNidQsCKG+qg5w6V7Zpn77Fmd0+/g k0b54u945Py0QEfGfMfUGQpbe4oTlCqHkaoyGKwXGy0XlduYSOhpO0UUxtIJ2e7+ WkjLRz+L1UzjOWYRpx585GTV8iLNLEFFxAaSNWlX7C6vzrlYtrUJvHaKHkL2Fc2B 59/Z7Sdr8HwYNsZGOhTVXi+MIkChEkyny3sS9HuI+4qj0JKeZS1eje9dMTviisB7 ivJo6Vd7vdYfNtOmCKxyeQfU6Ho+JmCrRJ1tAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUfDzcJILtNy8gabJaWvP2k/a9E8YwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vZkR6Y0pJTHROeThnYWJK YVd2UDJrX2E5RThZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ApZrPDANBgkqhkiG9w0BAQsFAAOCAQEAXl8XS3/vhzr3GLXMdCIIVd3aiwU7KuyE RQ8qrq2Rr9OgRCuc9N+PLnQaBcedNZkfLHTJWhHbE9kO4jKfVmfqGR4DpI2U0Ez7 i6HTvLqJnsVlDtt/l60CCytMg753WzjORE6WzyikV+PcJgkTqYVvcyZzF8SbjpG/ mbLjuRcI5fcgyUiJQeQmqCqLtUymuBIfwoIeUKegZR0U8hDZ2FJ/8pgUOfQS5VoP 2Uf8+fR1XJC7A+fxyamTt6soxn8S+VZI4J0MAJa4QPpMUV+aLVaAl4uTDYL6pJGH xi59liQfiyyE2b/OlndzIRrQvhkz+o09DTiozAP7gBvrXuRl4YeGDg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:43:23 2025 by rpki-client