$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/iu7G1jMxQ2lv64XFMde8bbbPSLU.roa File: iu7G1jMxQ2lv64XFMde8bbbPSLU.roa (raw, json) Hash identifier: RgUNoo6pdNMILBtPiPfHX24EBiu494cJcX/6iG7d81E= Subject key identifier: 8A:EE:C6:D6:33:31:43:69:6F:EB:85:C5:31:D7:BC:6D:B6:CF:48:B5 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0E57 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/iu7G1jMxQ2lv64XFMde8bbbPSLU.roa Signing time: Fri 22 Aug 2025 08:44:33 +0000 ROA not before: Fri 22 Aug 2025 08:44:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9676 IP address blocks: 122.201.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3671 (0xe57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 22 08:44:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8AEEC6D6333143696FEB85C531D7BC6DB6CF48B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:54:ba:f9:eb:ac:50:5e:08:d2:e2:56:43:32: ff:33:32:16:76:bf:ec:11:87:a2:bb:c6:45:3e:33: 28:d0:4f:91:a8:72:6a:aa:be:f3:00:a4:97:2d:c6: d4:a5:2f:f0:4e:4f:07:c3:67:41:2a:64:3d:cc:70: 63:c4:f1:51:40:69:96:6e:17:a3:44:2a:91:3f:6e: 66:c7:fb:9b:b6:01:f8:64:f7:af:ae:45:43:2e:5c: b4:52:e2:a4:ea:20:84:3c:88:cf:bb:fa:50:c4:5f: 3e:e8:68:d8:97:6c:56:ff:6f:d6:d7:1a:e5:f5:46: 78:76:b7:9e:c1:bd:0e:7e:49:4d:ef:62:95:c5:b1: 9b:2e:5d:68:80:78:34:a6:f6:c2:fe:29:4e:a8:70: 80:04:62:69:57:fe:30:05:5e:b6:e2:1f:aa:4a:4c: bd:35:66:e6:4c:f2:a0:57:07:9a:53:bb:79:84:7f: 37:0e:d5:5e:2f:6d:89:b1:5e:8f:bf:0a:04:15:c5: 0b:b1:90:3c:fc:a1:8b:af:19:7e:81:40:8c:14:91: df:ee:ef:15:4d:44:3a:84:ba:fe:44:38:d1:11:3b: 99:26:c1:fe:35:1d:92:76:f0:42:b1:68:66:a1:bb: 5a:85:b0:30:95:18:6d:dc:4b:f4:42:80:53:96:9b: 92:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:EE:C6:D6:33:31:43:69:6F:EB:85:C5:31:D7:BC:6D:B6:CF:48:B5 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/iu7G1jMxQ2lv64XFMde8bbbPSLU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.201.128.0/17 Signature Algorithm: sha256WithRSAEncryption ac:e9:cc:a0:27:8c:92:df:53:89:cc:d7:05:e8:a6:e2:84:e8: 6d:06:99:5a:97:16:e2:90:cd:cb:40:8a:00:8b:e9:36:12:35: 19:53:db:fd:8f:94:4a:d0:d2:e9:87:af:80:cf:a0:fa:00:6c: 53:3c:48:ab:16:e5:a9:63:82:56:5e:b1:19:31:24:d8:e8:79: a9:a7:9b:01:d4:98:a6:42:15:1d:a2:f5:f1:8e:07:d1:8e:09: 30:f5:7b:60:a3:b4:c1:bc:39:50:f7:8d:62:2e:28:fb:04:7b: 82:59:a3:6d:9f:25:29:62:82:96:bc:a1:80:9d:30:05:6f:80: f6:ee:27:07:d8:2e:3f:9e:25:ef:59:d2:43:bf:46:18:8e:c1: 77:f8:3b:4e:ce:69:ca:35:b3:b3:b8:5a:3d:6f:d7:99:e6:b7: 9c:87:82:69:6f:f8:5d:b9:35:7b:83:b7:87:42:76:57:d0:55: fe:07:6a:98:b8:4e:4f:45:0a:dc:d1:00:96:d0:25:1c:a4:f8: 0e:0c:a2:57:8c:80:4e:81:41:07:19:fe:89:54:bd:ec:58:c8: ac:92:dd:21:e5:e5:ff:63:5c:26:bb:06:ea:ad:d9:f4:42:2a: f1:23:32:b9:00:14:97:33:be:13:60:34:3a:d1:59:44:17:f2: e8:76:17:13 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDlcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTA4MjIw ODQ0MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhBRUVDNkQ2MzMzMTQz Njk2RkVCODVDNTMxRDdCQzZEQjZDRjQ4QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNVLr566xQXgjS4lZDMv8zMhZ2v+wRh6K7xkU+MyjQT5Gocmqq vvMApJctxtSlL/BOTwfDZ0EqZD3McGPE8VFAaZZuF6NEKpE/bmbH+5u2Afhk96+u RUMuXLRS4qTqIIQ8iM+7+lDEXz7oaNiXbFb/b9bXGuX1Rnh2t57BvQ5+SU3vYpXF sZsuXWiAeDSm9sL+KU6ocIAEYmlX/jAFXrbiH6pKTL01ZuZM8qBXB5pTu3mEfzcO 1V4vbYmxXo+/CgQVxQuxkDz8oYuvGX6BQIwUkd/u7xVNRDqEuv5EONERO5kmwf41 HZJ28EKxaGahu1qFsDCVGG3cS/RCgFOWm5KhAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUiu7G1jMxQ2lv64XFMde8bbbPSLUwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vaXU3RzFqTXhRMmx2NjRY Rk1kZThiYmJQU0xVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME B3rJgDANBgkqhkiG9w0BAQsFAAOCAQEArOnMoCeMkt9TiczXBeim4oTobQaZWpcW 4pDNy0CKAIvpNhI1GVPb/Y+UStDS6YevgM+g+gBsUzxIqxblqWOCVl6xGTEk2Oh5 qaebAdSYpkIVHaL18Y4H0Y4JMPV7YKO0wbw5UPeNYi4o+wR7glmjbZ8lKWKClryh gJ0wBW+A9u4nB9guP54l71nSQ79GGI7Bd/g7Ts5pyjWzs7haPW/Xmea3nIeCaW/4 Xbk1e4O3h0J2V9BV/gdqmLhOT0UK3NEAltAlHKT4DgyiV4yAToFBBxn+iVS97FjI rJLdIeXl/2NcJrsG6q3Z9EIq8SMyuQAUlzO+E2A0OtFZRBfy6HYXEw== -----END CERTIFICATE-----Generated at Sun Aug 24 09:42:34 2025 by rpki-client