$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/-cxNUwn3Exk4mLkUjgQLtpuiWWk.roa File: -cxNUwn3Exk4mLkUjgQLtpuiWWk.roa (raw, json) Hash identifier: tiQhU/q434dO4ICEoZ2TUcMELhfApo1aKCgghI64LEs= Subject key identifier: F9:CC:4D:53:09:F7:13:19:38:98:B9:14:8E:04:0B:B6:9B:A2:59:69 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0D79 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/-cxNUwn3Exk4mLkUjgQLtpuiWWk.roa Signing time: Mon 10 Feb 2025 13:58:44 +0000 ROA not before: Mon 10 Feb 2025 13:58:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24157 IP address blocks: 2403:c300::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3449 (0xd79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Feb 10 13:58:44 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F9CC4D5309F713193898B9148E040BB69BA25969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e4:52:ce:a9:ae:ae:8a:4f:3e:a7:28:51:1c: 49:9e:49:d5:15:da:03:92:8d:66:70:60:2f:2f:ce: de:0b:ac:c2:9e:51:e2:aa:58:a9:bc:45:11:28:e4: 17:ea:66:3b:6d:e3:e0:d3:72:cd:f1:a9:b0:c4:65: 37:fa:2c:96:7c:f4:5a:fa:0b:c1:bf:51:ad:23:ea: 31:23:c0:ff:b5:d1:f5:3b:4f:56:68:7e:0f:71:ce: f9:c2:b8:6b:86:7a:47:e3:00:37:8b:a2:b1:bc:03: 0d:44:dc:62:47:ae:35:5e:e6:8e:56:80:24:a7:95: da:41:cd:ce:c3:08:6a:28:8f:d8:e1:d1:94:19:2c: 6e:f4:48:2a:22:7c:ec:84:c9:07:12:5b:1b:5d:ef: 2a:fa:a4:42:ac:55:1e:10:e5:fd:3c:c7:39:a9:60: 77:27:9e:19:2b:16:fc:5a:96:bb:f8:b4:5d:9a:f3: 58:83:f0:08:dd:cc:e0:e9:06:f7:60:48:88:24:eb: 08:00:8b:e9:09:f8:28:c1:a2:78:5a:02:54:6c:67: e5:f3:9d:30:30:f8:3e:f2:44:58:45:60:73:94:cf: 78:7a:6b:fc:d0:40:ed:22:87:c9:98:8a:e0:f2:60: 81:70:7a:38:fb:7e:9a:89:31:24:13:77:a2:23:83: 61:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:CC:4D:53:09:F7:13:19:38:98:B9:14:8E:04:0B:B6:9B:A2:59:69 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/-cxNUwn3Exk4mLkUjgQLtpuiWWk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:c300::/32 Signature Algorithm: sha256WithRSAEncryption a1:69:94:4b:f7:cf:1b:7e:3c:cc:d8:e3:3e:8e:8b:f0:8d:ff: c0:e8:6e:86:73:9f:ce:c3:3c:8d:23:85:c7:5d:58:4f:8d:28: e7:30:8a:3e:3a:7d:4d:4c:e5:11:c4:cd:39:a9:ba:42:e4:1d: 54:5e:25:df:05:ff:21:3f:3f:55:13:16:9b:25:d8:e2:5a:3e: 59:cd:db:d9:e1:07:e9:c9:37:f4:cd:2a:9b:e6:06:5e:5b:a9: 22:45:a9:90:ca:1d:b3:f4:bb:13:96:e3:a1:2b:ba:23:05:23: e3:84:a9:95:17:a2:6b:82:2c:6e:32:3e:92:d9:44:0b:d8:f4: ee:c4:f7:3d:ab:e9:2f:24:f6:ff:29:26:e2:55:d7:44:1b:bd: a3:d7:71:25:65:f6:4a:95:70:7d:45:0b:7d:d5:05:ff:f5:d6: 60:7b:5e:aa:4c:40:c9:9d:c3:82:d5:d5:90:6a:59:c5:b1:4a: 7a:06:4e:8c:ab:b2:c1:d8:c7:a5:33:b8:b9:43:85:85:94:9e: d7:cc:51:e0:e5:61:f1:71:91:c3:69:13:1b:94:31:ec:7c:01: b5:2e:b0:07:91:ed:6b:63:d7:47:fa:74:04:fa:49:4c:b5:07: 6a:1c:7b:8e:c8:3e:f6:59:90:bb:4b:e5:30:ba:3a:1b:ab:01: 48:8e:03:e3 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgICDXkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTAyMTAx MzU4NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY5Q0M0RDUzMDlGNzEz MTkzODk4QjkxNDhFMDQwQkI2OUJBMjU5NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw5FLOqa6uik8+pyhRHEmeSdUV2gOSjWZwYC8vzt4LrMKeUeKq WKm8RREo5BfqZjtt4+DTcs3xqbDEZTf6LJZ89Fr6C8G/Ua0j6jEjwP+10fU7T1Zo fg9xzvnCuGuGekfjADeLorG8Aw1E3GJHrjVe5o5WgCSnldpBzc7DCGooj9jh0ZQZ LG70SCoifOyEyQcSWxtd7yr6pEKsVR4Q5f08xzmpYHcnnhkrFvxalrv4tF2a81iD 8AjdzODpBvdgSIgk6wgAi+kJ+CjBonhaAlRsZ+XznTAw+D7yRFhFYHOUz3h6a/zQ QO0ih8mYiuDyYIFwejj7fpqJMSQTd6Ijg2GHAgMBAAGjggH7MIIB9zAdBgNVHQ4E FgQU+cxNUwn3Exk4mLkUjgQLtpuiWWkwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFLy1jeE5V d24zRXhrNG1Ma1VqZ1FMdHB1aVdXay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAP MA0EAgACMAcDBQAkA8MAMA0GCSqGSIb3DQEBCwUAA4IBAQChaZRL988bfjzM2OM+ jovwjf/A6G6Gc5/OwzyNI4XHXVhPjSjnMIo+On1NTOURxM05qbpC5B1UXiXfBf8h Pz9VExabJdjiWj5ZzdvZ4QfpyTf0zSqb5gZeW6kiRamQyh2z9LsTluOhK7ojBSPj hKmVF6JrgixuMj6S2UQL2PTuxPc9q+kvJPb/KSbiVddEG72j13ElZfZKlXB9RQt9 1QX/9dZge16qTEDJncOC1dWQalnFsUp6Bk6Mq7LB2MelM7i5Q4WFlJ7XzFHg5WHx cZHDaRMblDHsfAG1LrAHke1rY9dH+nQE+klMtQdqHHuOyD72WZC7S+UwujobqwFI jgPj -----END CERTIFICATE-----Generated at Fri Apr 18 22:41:34 2025 by rpki-client