$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/rGGZg439vex95mUKgcMPvs4JMUQ.roa File: rGGZg439vex95mUKgcMPvs4JMUQ.roa (raw, json) Hash identifier: XpuXSU/j4dcZUykCyW8ZSTfN4ckH396cv2AUJySQhGA= Subject key identifier: AC:61:99:83:8D:FD:BD:EC:7D:E6:65:0A:81:C3:0F:BE:CE:09:31:44 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0E5B Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/rGGZg439vex95mUKgcMPvs4JMUQ.roa Signing time: Fri 22 Aug 2025 08:44:34 +0000 ROA not before: Fri 22 Aug 2025 08:44:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9676 IP address blocks: 61.60.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3675 (0xe5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 22 08:44:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AC6199838DFDBDEC7DE6650A81C30FBECE093144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0c:08:d9:73:76:a6:2e:84:5e:b3:bc:84:23: 49:e4:93:a0:7e:85:0a:a9:ef:64:e9:47:35:72:d1: 04:a2:14:28:d6:c7:a1:3a:20:01:40:4e:38:ec:36: 63:92:09:d6:2b:bd:cf:24:7e:4f:58:45:f7:96:34: 6f:e5:93:9c:4d:ca:5f:b4:c1:24:8f:61:2f:6d:17: f0:13:35:61:f2:b3:dd:1b:1e:ab:99:c4:0d:51:aa: b4:91:d9:ab:e2:f6:66:4d:d3:70:e8:d9:68:19:68: 00:d9:1e:64:d2:7a:88:a5:61:41:b6:b4:a5:7c:ab: 78:b6:74:cb:da:11:fd:a2:03:68:d6:5c:5e:f6:3f: f1:d0:1e:37:04:30:9c:2d:e3:42:76:58:0d:01:32: 66:64:3f:1b:cf:0e:2a:ce:d2:03:02:66:47:ce:79: 94:5d:87:c1:12:b1:07:4b:31:44:d2:11:1e:69:22: 76:a6:15:57:4d:3b:f4:ae:34:9e:7f:a4:1c:b3:48: 37:1e:8f:29:e8:60:79:d1:9e:0c:e6:07:20:b2:86: f3:70:de:9e:fb:25:e4:90:8e:e2:0e:05:2f:94:d0: 1c:6c:e9:98:74:55:7f:a6:07:4d:75:5c:7a:1b:15: d3:f7:e2:aa:1e:e3:6c:05:32:9c:e1:85:2e:9e:4d: 00:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:61:99:83:8D:FD:BD:EC:7D:E6:65:0A:81:C3:0F:BE:CE:09:31:44 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/rGGZg439vex95mUKgcMPvs4JMUQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.160.0/19 Signature Algorithm: sha256WithRSAEncryption 4b:e0:f8:80:7d:4b:63:35:b6:6d:6d:7a:2d:80:72:8a:a5:87: aa:66:92:23:2b:4d:b1:d1:cf:3c:54:c7:ac:28:e8:0d:57:71: c0:19:45:0e:b2:0b:d8:fa:98:86:f3:7a:18:31:6e:09:b9:b7: d7:28:74:ef:62:30:a9:73:ce:d3:c5:8e:b8:e6:60:04:7a:8a: 66:cb:e7:25:51:c2:b5:d8:8a:91:f3:e3:c6:25:1d:1d:1f:6c: 72:01:52:85:4d:77:9d:76:66:bb:a9:0f:19:48:7f:40:8f:02: e6:48:8d:47:67:3a:99:0e:d6:8d:19:68:46:b5:f7:f1:21:14: 84:ab:19:c5:ac:70:71:a4:5b:d9:dd:e8:d3:c0:0e:88:bc:ae: d9:68:6f:b8:07:e4:de:d0:1f:bb:b3:72:6d:b8:8d:83:94:a3: a1:b4:c5:3b:a7:02:6c:e8:e6:43:64:77:55:ce:3e:21:00:28: a4:7f:a6:c6:ba:fb:15:fb:fc:69:29:ec:e1:3b:a0:48:58:b6: 45:84:1c:f4:73:52:0f:e1:1d:28:bc:14:fb:e5:ff:63:7a:8b: 42:2b:fe:62:66:ed:ab:de:71:f3:a8:4b:69:d7:fe:da:1a:7f: dd:69:88:0e:2e:9c:d0:2d:b2:95:59:6d:59:b7:0b:30:43:96: 57:98:39:10 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDlswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTA4MjIw ODQ0MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFDNjE5OTgzOERGREJE RUM3REU2NjUwQTgxQzMwRkJFQ0UwOTMxNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJDAjZc3amLoRes7yEI0nkk6B+hQqp72TpRzVy0QSiFCjWx6E6 IAFATjjsNmOSCdYrvc8kfk9YRfeWNG/lk5xNyl+0wSSPYS9tF/ATNWHys90bHquZ xA1RqrSR2avi9mZN03Do2WgZaADZHmTSeoilYUG2tKV8q3i2dMvaEf2iA2jWXF72 P/HQHjcEMJwt40J2WA0BMmZkPxvPDirO0gMCZkfOeZRdh8ESsQdLMUTSER5pInam FVdNO/SuNJ5/pByzSDcejynoYHnRngzmByCyhvNw3p77JeSQjuIOBS+U0Bxs6Zh0 VX+mB011XHobFdP34qoe42wFMpzhhS6eTQB7AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUrGGZg439vex95mUKgcMPvs4JMUQwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vckdHWmc0Mzl2ZXg5NW1V S2djTVB2czRKTVVRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BT08oDANBgkqhkiG9w0BAQsFAAOCAQEAS+D4gH1LYzW2bW16LYByiqWHqmaSIytN sdHPPFTHrCjoDVdxwBlFDrIL2PqYhvN6GDFuCbm31yh072IwqXPO08WOuOZgBHqK ZsvnJVHCtdiKkfPjxiUdHR9scgFShU13nXZmu6kPGUh/QI8C5kiNR2c6mQ7WjRlo RrX38SEUhKsZxaxwcaRb2d3o08AOiLyu2WhvuAfk3tAfu7NybbiNg5SjobTFO6cC bOjmQ2R3Vc4+IQAopH+mxrr7Ffv8aSns4TugSFi2RYQc9HNSD+EdKLwU++X/Y3qL Qiv+Ymbtq95x86hLadf+2hp/3WmIDi6c0C2ylVltWbcLMEOWV5g5EA== -----END CERTIFICATE-----Generated at Sun Aug 24 11:43:40 2025 by rpki-client