$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/qk0FUWc4g7-rCf4jzHEzAHszGAA.roa File: qk0FUWc4g7-rCf4jzHEzAHszGAA.roa (raw, json) Hash identifier: GunTXkpwib+5vHDKky3KMzsex2PU+WTByaw3+Jj0UMA= Subject key identifier: AA:4D:05:51:67:38:83:BF:AB:09:FE:23:CC:71:33:00:7B:33:18:00 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0E5F Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/qk0FUWc4g7-rCf4jzHEzAHszGAA.roa Signing time: Fri 22 Aug 2025 08:44:35 +0000 ROA not before: Fri 22 Aug 2025 08:44:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9676 IP address blocks: 210.62.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3679 (0xe5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 22 08:44:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AA4D0551673883BFAB09FE23CC7133007B331800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f7:a1:7b:5c:eb:52:2d:bf:60:c4:5e:97:59: 11:9b:95:c7:d9:de:32:f7:07:0f:ae:18:06:37:9c: 29:b2:75:b3:c3:eb:14:f0:a0:59:da:9f:fe:ad:88: d8:63:41:0d:42:04:eb:2a:8a:d8:e4:43:ae:97:36: 1a:e7:80:64:85:22:aa:b9:6f:75:60:4d:ca:8f:1c: 92:5c:50:63:b0:51:af:ae:b9:86:be:7f:2f:fe:88: 82:c1:00:50:01:78:41:3d:20:9e:a9:d3:ed:89:c1: 28:cb:94:72:9d:5d:ae:af:2e:3d:4f:52:d8:e2:48: c2:db:b3:f0:55:fe:e4:f2:07:61:d9:fb:a9:4f:a4: 4b:37:7b:b6:60:87:f5:5e:e9:34:28:59:35:f5:b3: de:08:71:3e:7c:bc:7c:9c:06:5c:75:fd:22:bf:e4: 75:43:b1:6d:4d:2d:e0:9d:52:1d:52:94:1a:6e:00: 87:f7:f9:c5:2b:f5:ad:7c:f2:85:85:88:09:7a:da: cd:7c:cc:24:6e:64:bd:35:07:dc:5f:01:3a:f8:c1: a9:dd:f8:e1:85:fc:22:ca:25:7e:3c:96:47:45:01: c0:c6:74:b7:b8:62:20:15:80:42:88:85:8b:f9:88: e9:93:29:57:15:40:67:e5:ba:76:2f:59:f9:4b:d0: b6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:4D:05:51:67:38:83:BF:AB:09:FE:23:CC:71:33:00:7B:33:18:00 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/qk0FUWc4g7-rCf4jzHEzAHszGAA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.176.0/20 Signature Algorithm: sha256WithRSAEncryption 79:a6:95:7b:40:81:cd:16:2f:1f:66:b8:ad:13:ca:91:c5:1c: 70:e6:70:60:d2:ce:82:84:5f:28:7d:08:41:2a:2d:5f:ca:fe: 81:41:86:fc:e9:fd:fe:b8:91:a8:70:ca:52:b8:99:85:73:67: 46:5d:fa:c7:31:36:4d:6c:38:2d:9a:90:2b:2c:31:43:e7:21: c8:47:4c:02:7c:77:31:e2:10:43:c0:56:a9:00:36:82:3b:9a: 97:39:39:4b:6c:df:b7:e7:0d:c8:fd:0c:47:cb:82:27:c2:43: f4:41:f4:96:a6:f6:fd:ed:a9:d0:48:27:9d:63:15:dd:0f:5b: b1:07:e6:d6:69:8b:55:a9:41:8f:48:51:17:63:08:c5:44:3e: f7:1a:be:74:b5:e0:6e:79:1e:af:76:bb:2b:ef:65:83:13:7a: ec:21:12:c9:7a:f2:c4:9a:8f:79:1d:7d:83:92:eb:2d:da:32: f6:a2:de:ac:01:71:eb:e5:5a:bb:9d:df:21:d2:62:50:fe:2e: 05:68:af:2e:6a:e9:de:68:d0:6d:19:59:d3:5f:13:32:42:3f: f6:93:00:8f:73:b0:0c:d4:3c:8a:c9:d1:02:89:4e:db:1f:05: a0:ee:98:9f:1b:ed:8f:95:5c:95:9f:d5:24:4f:f8:3a:5d:1c: f5:56:57:d9 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDl8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTA4MjIw ODQ0MzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFBNEQwNTUxNjczODgz QkZBQjA5RkUyM0NDNzEzMzAwN0IzMzE4MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCs96F7XOtSLb9gxF6XWRGblcfZ3jL3Bw+uGAY3nCmydbPD6xTw oFnan/6tiNhjQQ1CBOsqitjkQ66XNhrngGSFIqq5b3VgTcqPHJJcUGOwUa+uuYa+ fy/+iILBAFABeEE9IJ6p0+2JwSjLlHKdXa6vLj1PUtjiSMLbs/BV/uTyB2HZ+6lP pEs3e7Zgh/Ve6TQoWTX1s94IcT58vHycBlx1/SK/5HVDsW1NLeCdUh1SlBpuAIf3 +cUr9a188oWFiAl62s18zCRuZL01B9xfATr4wand+OGF/CLKJX48lkdFAcDGdLe4 YiAVgEKIhYv5iOmTKVcVQGflunYvWflL0LYLAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUqk0FUWc4g7+rCf4jzHEzAHszGAAwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vcWswRlVXYzRnNy1yQ2Y0 anpIRXpBSHN6R0FBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNI+sDANBgkqhkiG9w0BAQsFAAOCAQEAeaaVe0CBzRYvH2a4rRPKkcUccOZwYNLO goRfKH0IQSotX8r+gUGG/On9/riRqHDKUriZhXNnRl36xzE2TWw4LZqQKywxQ+ch yEdMAnx3MeIQQ8BWqQA2gjualzk5S2zft+cNyP0MR8uCJ8JD9EH0lqb2/e2p0Egn nWMV3Q9bsQfm1mmLValBj0hRF2MIxUQ+9xq+dLXgbnker3a7K+9lgxN67CESyXry xJqPeR19g5LrLdoy9qLerAFx6+Vau53fIdJiUP4uBWivLmrp3mjQbRlZ018TMkI/ 9pMAj3OwDNQ8isnRAolO2x8FoO6Ynxvtj5VclZ/VJE/4Ol0c9VZX2Q== -----END CERTIFICATE-----Generated at Sun Aug 24 09:42:29 2025 by rpki-client