$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Beh3NbPk9YNKJC-sa6iwFO6-NqI.roa File: Beh3NbPk9YNKJC-sa6iwFO6-NqI.roa (raw, json) Hash identifier: ypRm933mmJqPBOp6KwGTjPk6icXyrSyWVuTes2Rmyz8= Subject key identifier: 05:E8:77:35:B3:E4:F5:83:4A:24:2F:AC:6B:A8:B0:14:EE:BE:36:A2 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0D68 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Beh3NbPk9YNKJC-sa6iwFO6-NqI.roa Signing time: Mon 10 Feb 2025 13:58:40 +0000 ROA not before: Mon 10 Feb 2025 13:58:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 124.29.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 19:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3432 (0xd68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Feb 10 13:58:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=05E87735B3E4F5834A242FAC6BA8B014EEBE36A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:86:c8:db:0c:a2:f8:2d:51:71:3f:73:18:ca: f8:89:63:31:9f:19:d1:25:42:45:32:6e:e2:a1:b7: 7e:54:c7:83:23:3f:78:35:f1:63:82:39:9b:b5:a5: 5f:89:3d:bf:c5:18:0c:71:df:93:d9:b5:b4:d1:64: ba:ad:a5:07:f5:8e:e2:50:ff:b4:e7:9b:f2:0b:01: 9e:75:cd:2b:51:f8:df:14:61:6e:8c:16:8a:43:7e: 67:7e:55:76:01:88:d0:ba:5d:ae:18:13:6e:ee:41: 5e:0e:4d:5d:22:33:7e:94:19:ea:0f:8e:b2:f3:20: e7:c1:aa:7d:6c:6a:59:39:63:a4:3f:7c:00:9b:ff: 93:34:ea:07:9b:32:d6:29:93:b5:d4:b3:ba:84:2a: 75:8e:af:62:24:12:6b:c9:5e:a2:d9:63:8d:86:ac: 75:e8:22:88:b7:a0:30:dd:46:34:cc:71:8a:d7:55: 31:4d:af:d3:0e:f2:ef:1d:08:a7:af:d1:dd:be:37: 5d:5f:0b:f4:e6:36:72:97:0a:60:a8:1f:3d:2b:64: 13:a5:78:30:a0:f8:02:33:c1:95:4b:78:e2:29:b0: e8:ed:93:2b:5a:3c:27:b0:4e:76:52:4e:e3:e0:97: 15:6a:6a:33:f7:bc:ed:4e:be:3b:d0:cf:10:92:29: 8a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:E8:77:35:B3:E4:F5:83:4A:24:2F:AC:6B:A8:B0:14:EE:BE:36:A2 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Beh3NbPk9YNKJC-sa6iwFO6-NqI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.29.128.0/19 Signature Algorithm: sha256WithRSAEncryption 1b:44:26:35:b2:a9:90:5b:b2:8f:c6:28:1a:a5:93:ac:a1:49: cd:a9:75:aa:33:13:d9:38:ce:13:5f:f8:9a:11:2a:94:a5:93: c3:1c:d0:28:08:db:92:fa:0f:57:10:99:41:cb:96:6c:e7:c2: 57:94:ca:ab:35:ed:6f:00:f2:91:e3:5e:67:ed:c1:7c:18:21: 00:4b:a5:04:cb:b0:f3:e9:7f:ed:e5:b9:4c:8a:f3:f4:a0:97: 02:c8:84:2f:0f:8a:a0:1a:b7:83:e2:c9:35:49:64:dd:f8:52: d6:11:36:05:e3:e8:a3:26:2d:14:c1:cd:25:bd:ad:bc:c4:25: 88:36:80:95:75:e3:84:38:9e:19:21:69:7a:a9:d3:5d:0c:f2: da:09:3f:b1:b3:88:ab:06:2b:3b:cf:93:1a:8c:44:86:8a:81: 58:19:e2:8c:ca:b8:79:9b:d8:ee:d0:6e:06:2a:77:ee:b8:69: 8e:11:dc:43:f6:77:79:81:f6:7d:57:c6:81:d9:2b:f2:37:3a: 96:c6:33:25:93:f0:ec:94:bc:6b:5a:06:5f:44:58:df:d6:0d: 15:90:07:ea:89:83:ed:60:4b:4b:53:e1:97:d4:d3:20:91:a5: 5f:0e:df:41:e0:7d:ab:ff:14:53:94:fe:24:8b:2d:31:cf:70: 93:3b:3e:24 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDWgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTAyMTAx MzU4NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA1RTg3NzM1QjNFNEY1 ODM0QTI0MkZBQzZCQThCMDE0RUVCRTM2QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+hsjbDKL4LVFxP3MYyviJYzGfGdElQkUybuKht35Ux4MjP3g1 8WOCOZu1pV+JPb/FGAxx35PZtbTRZLqtpQf1juJQ/7Tnm/ILAZ51zStR+N8UYW6M FopDfmd+VXYBiNC6Xa4YE27uQV4OTV0iM36UGeoPjrLzIOfBqn1salk5Y6Q/fACb /5M06gebMtYpk7XUs7qEKnWOr2IkEmvJXqLZY42GrHXoIoi3oDDdRjTMcYrXVTFN r9MO8u8dCKev0d2+N11fC/TmNnKXCmCoHz0rZBOleDCg+AIzwZVLeOIpsOjtkyta PCewTnZSTuPglxVqajP3vO1OvjvQzxCSKYrpAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUBeh3NbPk9YNKJC+sa6iwFO6+NqIwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL0JlaDNO YlBrOVlOS0pDLXNhNml3Rk82LU5xSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAV8HYAwDQYJKoZIhvcNAQELBQADggEBABtEJjWyqZBbso/GKBql k6yhSc2pdaozE9k4zhNf+JoRKpSlk8Mc0CgI25L6D1cQmUHLlmznwleUyqs17W8A 8pHjXmftwXwYIQBLpQTLsPPpf+3luUyK8/SglwLIhC8PiqAat4PiyTVJZN34UtYR NgXj6KMmLRTBzSW9rbzEJYg2gJV144Q4nhkhaXqp010M8toJP7GziKsGKzvPkxqM RIaKgVgZ4ozKuHmb2O7QbgYqd+64aY4R3EP2d3mB9n1XxoHZK/I3OpbGMyWT8OyU vGtaBl9EWN/WDRWQB+qJg+1gS0tT4ZfU0yCRpV8O30Hgfav/FFOU/iSLLTHPcJM7 PiQ= -----END CERTIFICATE-----Generated at Wed Apr 16 18:14:31 2025 by rpki-client