$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/v4eqK1b8zxDNQHwxOmW5wsyqdeI.roa File: v4eqK1b8zxDNQHwxOmW5wsyqdeI.roa (raw, json) Hash identifier: eX7gYxG9IOP2iO3Mrrl0dV+jdD4i75o9WrpRKcFzoBs= Subject key identifier: BF:87:AA:2B:56:FC:CF:10:CD:40:7C:31:3A:65:B9:C2:CC:AA:75:E2 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0E5C Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/v4eqK1b8zxDNQHwxOmW5wsyqdeI.roa Signing time: Fri 22 Aug 2025 08:44:34 +0000 ROA not before: Fri 22 Aug 2025 08:44:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9676 IP address blocks: 2402:9c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3676 (0xe5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 22 08:44:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BF87AA2B56FCCF10CD407C313A65B9C2CCAA75E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:56:fc:93:85:d6:80:b0:0f:f5:e9:33:b2:b6: 2f:2b:1c:93:cc:9f:aa:44:c5:bc:dd:32:e0:23:77: bf:ad:e0:b5:bc:a0:1b:97:11:de:a7:a3:06:58:ab: 27:93:64:2d:ba:f7:9d:9f:1f:03:71:70:27:34:86: 20:61:09:91:e7:ad:c0:56:dd:84:53:16:01:d7:c1: 06:14:d0:a1:44:31:0f:c2:8b:2d:5a:13:f1:25:0f: fa:85:15:19:e9:81:cf:3d:9f:25:64:79:a7:98:17: 52:e7:9d:a0:c2:e4:6a:63:dd:13:a2:ff:6e:4f:8a: ea:5a:ea:77:01:8f:ed:97:0a:0e:b3:53:f9:bb:c0: 7c:df:97:4f:b2:b1:bc:7c:89:20:57:2b:5d:6a:23: b5:89:b5:69:11:95:ec:41:f5:ce:34:5d:18:2c:f3: 80:e1:d3:c6:bc:0a:b7:3b:01:8e:15:c1:34:7e:10: c9:97:b1:4c:5d:bf:c8:19:1f:e0:66:99:f9:f7:5d: b9:a4:4b:12:52:d5:5b:4c:21:b0:2d:d4:0c:80:ff: 6d:e4:ea:e0:ac:bf:1b:14:fb:13:f9:78:f4:73:2d: 95:4a:e1:20:6f:b1:77:93:67:49:d4:71:f6:de:11: c8:23:55:32:73:83:d1:51:40:31:56:99:02:b9:d7: 18:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:87:AA:2B:56:FC:CF:10:CD:40:7C:31:3A:65:B9:C2:CC:AA:75:E2 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/v4eqK1b8zxDNQHwxOmW5wsyqdeI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:9c00::/32 Signature Algorithm: sha256WithRSAEncryption 18:ba:c5:ba:42:cd:b3:c2:97:1c:0f:1b:c0:22:4b:28:76:33: 06:05:c4:98:0e:d2:9a:55:36:f6:7c:26:8c:2d:fb:37:44:38: 35:11:9e:db:67:d7:4e:ac:84:0d:fa:6e:f8:70:a1:35:8a:18: 4b:23:b6:f0:a6:67:8e:86:56:c5:db:aa:8f:59:0a:af:da:0f: 7c:be:7d:23:f9:19:e0:e6:26:bb:8b:a5:f8:cd:3d:fd:02:09: bf:b0:cc:b1:c8:ca:f2:a0:6e:e8:93:8a:3a:1a:63:44:04:c7: 99:84:7b:91:1c:26:3e:08:c2:ff:f9:6b:ec:55:a5:12:54:32: e5:14:88:a1:ef:b0:7f:97:e2:cc:bf:7b:5d:ab:9c:8b:91:dd: 21:48:ce:a0:a5:e5:74:2b:d6:86:e2:0f:91:2e:41:d2:73:5a: 6b:87:f7:3a:c8:05:7f:d2:8e:eb:45:3a:a7:6c:a7:af:4e:4a: 32:00:8a:0d:42:79:4f:48:a6:83:b1:3b:79:ea:23:ab:aa:55: 72:c0:64:6e:89:f5:56:8b:f7:64:83:88:e1:e8:73:d7:a3:27: 21:6e:0a:3c:a8:61:dc:71:0c:cd:3c:e6:70:89:a8:c9:fd:5d: d5:0c:e3:96:10:ec:f0:01:e5:33:45:a9:6a:ba:c7:90:70:7b: d8:bd:df:29 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDlwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTA4MjIw ODQ0MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJGODdBQTJCNTZGQ0NG MTBDRDQwN0MzMTNBNjVCOUMyQ0NBQTc1RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyVvyThdaAsA/16TOyti8rHJPMn6pExbzdMuAjd7+t4LW8oBuX Ed6nowZYqyeTZC26952fHwNxcCc0hiBhCZHnrcBW3YRTFgHXwQYU0KFEMQ/Ciy1a E/ElD/qFFRnpgc89nyVkeaeYF1LnnaDC5Gpj3ROi/25Piupa6ncBj+2XCg6zU/m7 wHzfl0+ysbx8iSBXK11qI7WJtWkRlexB9c40XRgs84Dh08a8Crc7AY4VwTR+EMmX sUxdv8gZH+Bmmfn3XbmkSxJS1VtMIbAt1AyA/23k6uCsvxsU+xP5ePRzLZVK4SBv sXeTZ0nUcfbeEcgjVTJzg9FRQDFWmQK51xiJAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUv4eqK1b8zxDNQHwxOmW5wsyqdeIwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vdjRlcUsxYjh6eEROUUh3 eE9tVzV3c3lxZGVJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQCnAAwDQYJKoZIhvcNAQELBQADggEBABi6xbpCzbPClxwPG8AiSyh2MwYFxJgO 0ppVNvZ8Jowt+zdEODURnttn106shA36bvhwoTWKGEsjtvCmZ46GVsXbqo9ZCq/a D3y+fSP5GeDmJruLpfjNPf0CCb+wzLHIyvKgbuiTijoaY0QEx5mEe5EcJj4Iwv/5 a+xVpRJUMuUUiKHvsH+X4sy/e12rnIuR3SFIzqCl5XQr1obiD5EuQdJzWmuH9zrI BX/SjutFOqdsp69OSjIAig1CeU9IpoOxO3nqI6uqVXLAZG6J9VaL92SDiOHoc9ej JyFuCjyoYdxxDM085nCJqMn9XdUM45YQ7PAB5TNFqWq6x5Bwe9i93yk= -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:10 2025 by rpki-client