$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/taq1f8B4gDrPPLkRjB5G--cKZ6w.roa File: taq1f8B4gDrPPLkRjB5G--cKZ6w.roa (raw, json) Hash identifier: LNpmRHYAhx4349fbn+pqE7K8i0+U/zqTRDaULiTSoRw= Subject key identifier: B5:AA:B5:7F:C0:78:80:3A:CF:3C:B9:11:8C:1E:46:FB:E7:0A:67:AC Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0E59 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/taq1f8B4gDrPPLkRjB5G--cKZ6w.roa Signing time: Fri 22 Aug 2025 08:44:33 +0000 ROA not before: Fri 22 Aug 2025 08:44:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9676 IP address blocks: 103.224.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3673 (0xe59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 22 08:44:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B5AAB57FC078803ACF3CB9118C1E46FBE70A67AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:21:67:3e:8c:7c:6a:7f:87:34:6d:d5:1d:27: f8:43:08:34:f5:bb:51:f6:7c:c5:71:17:05:08:af: ed:81:28:24:88:f4:8a:5c:0e:57:e7:ae:c7:eb:5f: 09:6c:8c:08:cc:07:f1:b4:93:cd:da:41:70:f4:d7: c2:54:dd:92:70:6b:80:6c:11:7f:fa:cc:fb:c2:f9: dc:11:d7:65:50:8c:e0:af:72:ec:5d:70:74:00:84: 40:34:cc:2c:4e:b4:6a:e3:1f:0e:16:99:f4:39:99: 98:63:21:73:8a:b7:45:c4:f3:92:37:c4:43:7c:e8: 2e:b5:54:29:9f:09:de:d8:cf:6d:7f:54:67:34:51: 17:b9:9b:13:c0:70:a1:eb:a1:51:75:65:9b:5e:0c: 77:49:c3:7f:f2:30:ac:82:c1:29:a5:1c:f7:48:ab: 94:f1:39:96:31:b7:62:8b:67:59:f8:07:43:ba:78: 63:f7:c1:cc:39:a3:5a:69:95:9a:31:77:14:90:d1: 42:96:aa:cb:ea:b1:db:43:3d:db:2f:98:1c:50:e3: be:d3:40:96:ad:a3:75:b5:61:1b:69:86:59:51:02: 21:29:b7:5c:52:53:db:12:e9:b0:b3:bd:40:2a:8c: 3d:d1:dc:ff:a9:d7:6c:bb:d6:c8:74:89:de:55:14: 1c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:AA:B5:7F:C0:78:80:3A:CF:3C:B9:11:8C:1E:46:FB:E7:0A:67:AC X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/taq1f8B4gDrPPLkRjB5G--cKZ6w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.224.204.0/22 Signature Algorithm: sha256WithRSAEncryption 12:9e:d5:7b:43:cb:86:6b:d0:c7:be:8c:e8:9a:aa:df:46:3c: 6e:dc:f5:7e:16:d9:a3:96:b2:87:e6:e4:7c:eb:70:70:ca:67: 30:b7:b5:d2:cb:0a:c2:43:9e:f7:e9:87:a8:f2:69:26:7f:b9: c5:ff:13:7a:77:9e:e1:f7:53:3f:1a:e3:30:90:91:93:ea:58: 3a:cb:a5:f3:f3:ea:54:ea:3f:5d:04:dd:9c:c9:5d:67:88:a2: 95:17:aa:b3:e8:80:f4:62:1c:36:99:dc:55:fe:b0:d5:28:ed: ad:d8:48:b1:93:24:1e:03:70:76:6a:e8:ec:37:36:f0:27:b0: 35:00:71:13:14:9f:ca:1c:9c:2f:98:df:1a:2d:c5:f8:92:57: c8:cc:c7:78:d4:f0:65:c9:61:3d:4b:87:16:fa:67:7c:4a:8f: 78:d9:b1:00:bb:51:9a:35:86:94:d3:bd:5f:7e:60:cd:07:43: 99:e1:98:c9:d3:88:22:c1:ce:c7:4f:23:28:0a:60:19:2c:f9: da:02:7d:29:1e:dd:b1:bf:39:3f:ca:23:6e:7d:f4:2c:c9:23: 8c:dc:38:5f:a2:12:60:9c:25:44:90:21:b9:4e:b7:e1:9b:10: df:14:0c:5f:58:5b:9b:92:9b:ee:e4:e6:94:bd:c7:b0:18:ed: 50:30:73:b8 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDlkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTA4MjIw ODQ0MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI1QUFCNTdGQzA3ODgw M0FDRjNDQjkxMThDMUU0NkZCRTcwQTY3QUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/IWc+jHxqf4c0bdUdJ/hDCDT1u1H2fMVxFwUIr+2BKCSI9Ipc DlfnrsfrXwlsjAjMB/G0k83aQXD018JU3ZJwa4BsEX/6zPvC+dwR12VQjOCvcuxd cHQAhEA0zCxOtGrjHw4WmfQ5mZhjIXOKt0XE85I3xEN86C61VCmfCd7Yz21/VGc0 URe5mxPAcKHroVF1ZZteDHdJw3/yMKyCwSmlHPdIq5TxOZYxt2KLZ1n4B0O6eGP3 wcw5o1pplZoxdxSQ0UKWqsvqsdtDPdsvmBxQ477TQJato3W1YRtphllRAiEpt1xS U9sS6bCzvUAqjD3R3P+p12y71sh0id5VFByJAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUtaq1f8B4gDrPPLkRjB5G++cKZ6wwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vdGFxMWY4QjRnRHJQUExr UmpCNUctLWNLWjZ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmfgzDANBgkqhkiG9w0BAQsFAAOCAQEAEp7Ve0PLhmvQx76M6Jqq30Y8btz1fhbZ o5ayh+bkfOtwcMpnMLe10ssKwkOe9+mHqPJpJn+5xf8Tenee4fdTPxrjMJCRk+pY Osul8/PqVOo/XQTdnMldZ4iilReqs+iA9GIcNpncVf6w1SjtrdhIsZMkHgNwdmro 7Dc28CewNQBxExSfyhycL5jfGi3F+JJXyMzHeNTwZclhPUuHFvpnfEqPeNmxALtR mjWGlNO9X35gzQdDmeGYydOIIsHOx08jKApgGSz52gJ9KR7dsb85P8ojbn30LMkj jNw4X6ISYJwlRJAhuU634ZsQ3xQMX1hbm5Kb7uTmlL3HsBjtUDBzuA== -----END CERTIFICATE-----Generated at Sun Aug 24 09:42:25 2025 by rpki-client