$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/USSIyurfIkM-6RC5DKqq-aelgT8.roa File: USSIyurfIkM-6RC5DKqq-aelgT8.roa (raw, json) Hash identifier: rQXyESJmp+jqQUw4BqwiarMXJJrKgtzOt0W9ZMxfugs= Subject key identifier: 51:24:88:CA:EA:DF:22:43:3E:E9:10:B9:0C:AA:AA:F9:A7:A5:81:3F Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0D64 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/USSIyurfIkM-6RC5DKqq-aelgT8.roa Signing time: Mon 10 Feb 2025 13:58:39 +0000 ROA not before: Mon 10 Feb 2025 13:58:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 43.240.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 19:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3428 (0xd64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Feb 10 13:58:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=512488CAEADF22433EE910B90CAAAAF9A7A5813F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5f:36:04:c4:70:ce:fc:ac:38:5a:3b:3f:f5: 02:e7:0a:e6:be:61:88:d7:ad:68:41:0a:23:1e:86: f5:13:be:c6:bf:f6:d3:59:29:11:a3:ac:8a:82:d6: b1:86:2f:1d:b3:d4:37:cc:1e:16:60:77:be:f9:b1: 2b:90:94:35:53:c7:bc:97:ac:69:33:e4:5a:2b:57: b4:55:21:27:c2:1b:b5:c5:8d:0d:19:ce:3c:08:df: 69:72:75:7a:e9:17:2e:8f:d6:57:c2:6d:3d:86:d0: ca:05:64:9f:70:2f:e7:fe:ac:ab:07:3e:16:2d:07: f6:c9:da:68:af:54:e5:e0:5b:7a:ef:89:89:1e:22: 2f:9d:c7:50:68:b8:23:8f:61:18:e3:78:05:47:dc: ab:09:ff:f0:af:f0:23:04:e8:b3:f5:45:0c:ea:cc: 28:e5:ca:97:7d:8d:4e:d4:bf:0c:75:a9:1d:9f:02: 1c:2c:3b:bd:9f:0a:87:eb:3b:e3:a4:7f:89:c6:e8: 24:16:b4:60:b5:04:c6:9d:07:07:8e:37:83:7d:46: 33:57:73:3c:5b:37:37:49:85:06:77:c7:d4:4e:93: 82:9e:2d:0f:d6:69:95:9f:e8:09:d8:c4:54:a0:fc: 03:d2:8b:7c:f4:11:6d:89:26:31:7f:43:d3:b5:20: 33:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:24:88:CA:EA:DF:22:43:3E:E9:10:B9:0C:AA:AA:F9:A7:A5:81:3F X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/USSIyurfIkM-6RC5DKqq-aelgT8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.240.108.0/22 Signature Algorithm: sha256WithRSAEncryption b6:1a:a0:d3:32:5f:fb:42:b0:fb:b0:33:f9:7e:5b:a3:69:c0: 8a:6d:14:ea:90:44:dd:a9:65:0b:d2:a5:ef:09:1a:dd:e3:15: f0:10:7f:91:2c:37:56:2b:ab:b1:86:0f:9b:54:14:84:a6:be: 90:2b:3c:bb:a0:d0:53:20:41:5c:bc:37:ba:36:0a:b5:62:7e: 15:1b:d6:33:0a:1f:0b:23:37:9b:d9:69:5a:a1:79:d4:b5:ba: 43:6a:a9:e5:4d:2d:78:61:71:12:ee:d3:bd:f3:4d:1e:8d:c3: 77:f6:d1:68:32:46:ce:8e:dc:4a:03:10:20:7f:38:8b:f0:4d: fd:a1:e6:60:8a:97:03:70:ff:b8:ea:0b:98:3a:bb:06:e1:d9: 34:22:95:af:c3:2f:53:26:00:61:a9:40:98:11:08:7b:e9:e4: 34:3c:43:9b:c2:e0:b4:74:90:d8:0a:8c:d0:df:a8:4f:5c:13: f8:41:96:5f:84:d3:b2:99:03:e7:6b:8d:1a:fb:a8:f0:87:77: 37:49:12:6b:33:e7:ea:1a:89:e8:ed:ea:96:35:b0:0a:c1:d7: e8:6c:6e:0e:89:bc:7b:09:38:5c:59:88:70:b7:cf:bb:a4:3d: 4d:84:cc:a7:7f:d7:73:bc:04:dc:79:39:2d:c0:21:e7:53:58: bd:95:3d:56 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDWQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTAyMTAx MzU4MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUxMjQ4OENBRUFERjIy NDMzRUU5MTBCOTBDQUFBQUY5QTdBNTgxM0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmXzYExHDO/Kw4Wjs/9QLnCua+YYjXrWhBCiMehvUTvsa/9tNZ KRGjrIqC1rGGLx2z1DfMHhZgd775sSuQlDVTx7yXrGkz5ForV7RVISfCG7XFjQ0Z zjwI32lydXrpFy6P1lfCbT2G0MoFZJ9wL+f+rKsHPhYtB/bJ2mivVOXgW3rviYke Ii+dx1BouCOPYRjjeAVH3KsJ//Cv8CME6LP1RQzqzCjlypd9jU7Uvwx1qR2fAhws O72fCofrO+Okf4nG6CQWtGC1BMadBweON4N9RjNXczxbNzdJhQZ3x9ROk4KeLQ/W aZWf6AnYxFSg/APSi3z0EW2JJjF/Q9O1IDPHAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUUSSIyurfIkM+6RC5DKqq+aelgT8wHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL1VTU0l5 dXJmSWtNLTZSQzVES3FxLWFlbGdUOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAIr8GwwDQYJKoZIhvcNAQELBQADggEBALYaoNMyX/tCsPuwM/l+ W6NpwIptFOqQRN2pZQvSpe8JGt3jFfAQf5EsN1Yrq7GGD5tUFISmvpArPLug0FMg QVy8N7o2CrVifhUb1jMKHwsjN5vZaVqhedS1ukNqqeVNLXhhcRLu073zTR6Nw3f2 0WgyRs6O3EoDECB/OIvwTf2h5mCKlwNw/7jqC5g6uwbh2TQila/DL1MmAGGpQJgR CHvp5DQ8Q5vC4LR0kNgKjNDfqE9cE/hBll+E07KZA+drjRr7qPCHdzdJEmsz5+oa iejt6pY1sArB1+hsbg6JvHsJOFxZiHC3z7ukPU2EzKd/13O8BNx5OS3AIedTWL2V PVY= -----END CERTIFICATE-----Generated at Wed Apr 16 18:14:30 2025 by rpki-client