$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/kCCMl5RwnW86RUjKl0QZxSatEmU.roa File: kCCMl5RwnW86RUjKl0QZxSatEmU.roa (raw, json) Hash identifier: NUcBN5YXk+hs0F8K8ZCq6Q5FNs6zfavecMeDczJxcV0= Subject key identifier: 90:20:8C:97:94:70:9D:6F:3A:45:48:CA:97:44:19:C5:26:AD:12:65 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0D6D Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/kCCMl5RwnW86RUjKl0QZxSatEmU.roa Signing time: Mon 10 Feb 2025 13:58:41 +0000 ROA not before: Mon 10 Feb 2025 13:58:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 101.8.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 19:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3437 (0xd6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Feb 10 13:58:41 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=90208C9794709D6F3A4548CA974419C526AD1265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:87:8f:74:d0:c0:fc:5e:4e:9c:ca:f5:74:c8: 7a:28:7f:26:75:37:07:db:23:b6:b2:43:4a:97:28: 1d:4e:ff:b9:5b:bb:cf:01:8c:58:a0:0a:33:ab:fc: 80:e5:fc:24:db:bb:cf:ea:56:55:33:3b:c0:79:4d: a5:62:c9:41:fc:70:f5:de:11:5f:b2:bc:95:2f:bf: 27:69:dc:ed:c1:5b:df:e4:52:15:6f:07:47:13:1a: fa:40:14:5b:71:16:2b:1e:ae:0b:9a:aa:bd:48:21: 43:6e:b3:da:94:d4:70:c1:d6:39:9b:8f:1f:b5:8a: ae:ea:29:03:7b:54:da:a3:a2:d1:36:83:70:06:4f: a4:5a:3e:c3:5b:04:69:75:52:f5:4f:26:7c:e6:83: 5c:47:1c:d1:b9:a8:a8:7e:62:7f:b9:46:74:85:e6: e3:8c:16:42:95:ab:af:a4:1d:1e:55:e9:d4:0f:47: d0:69:76:e4:ff:ab:b8:63:d2:3f:36:0e:99:53:91: a1:fb:79:78:c3:57:87:fd:53:72:ee:86:96:b9:36: 82:a6:5c:13:da:f9:97:77:25:30:59:d6:0b:1c:d5: 4a:d3:83:88:47:38:87:11:a7:95:72:fd:93:b9:03: f5:dc:83:c4:cf:35:ee:0b:56:5c:41:c7:82:21:9c: e4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:20:8C:97:94:70:9D:6F:3A:45:48:CA:97:44:19:C5:26:AD:12:65 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/kCCMl5RwnW86RUjKl0QZxSatEmU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.8.0.0/13 Signature Algorithm: sha256WithRSAEncryption 86:65:0a:fa:44:54:f6:f2:ff:0f:4e:98:28:9b:70:1a:cc:3a: e6:d6:b3:96:ca:ae:96:5d:cf:9e:a3:1d:c2:65:ad:44:82:1c: ff:cb:11:ac:70:0e:3a:37:07:31:18:4b:98:a2:74:c7:0f:32: 2c:7b:0e:dc:51:45:ec:d5:c9:a5:2c:63:29:d4:66:16:ea:7b: 63:24:b6:2b:c8:6a:d3:6f:12:81:0f:39:a1:ec:ed:6a:09:55: df:2c:94:dc:5b:73:70:a5:16:b8:fd:eb:fe:b9:09:eb:85:84: a9:6f:d2:e6:16:eb:6a:14:d1:09:3d:23:65:74:7d:5f:24:41: 0f:b2:28:27:97:8c:a4:93:4f:43:6c:fc:fd:0a:42:32:e7:b7: 00:1a:81:2e:42:d1:a0:c7:2c:e9:8c:15:f7:fd:8d:03:39:99: 65:3c:92:40:90:c7:c3:cc:e2:cd:a1:c7:8a:72:ac:89:a0:d6: 8f:12:93:65:9e:e7:a8:17:1a:68:89:c6:eb:2b:29:68:29:f4: a8:20:43:ae:c0:d6:f4:b1:37:1f:6b:af:a0:ce:67:38:9c:9f: 52:a9:88:c6:5b:5c:95:44:38:3d:47:7e:13:22:5f:64:08:f1: 04:01:96:73:25:7a:06:2f:df:44:ce:c3:c4:3b:d1:36:fd:eb: d8:63:e9:02 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgICDW0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTAyMTAx MzU4NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkwMjA4Qzk3OTQ3MDlE NkYzQTQ1NDhDQTk3NDQxOUM1MjZBRDEyNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4h4900MD8Xk6cyvV0yHoofyZ1NwfbI7ayQ0qXKB1O/7lbu88B jFigCjOr/IDl/CTbu8/qVlUzO8B5TaViyUH8cPXeEV+yvJUvvydp3O3BW9/kUhVv B0cTGvpAFFtxFiserguaqr1IIUNus9qU1HDB1jmbjx+1iq7qKQN7VNqjotE2g3AG T6RaPsNbBGl1UvVPJnzmg1xHHNG5qKh+Yn+5RnSF5uOMFkKVq6+kHR5V6dQPR9Bp duT/q7hj0j82DplTkaH7eXjDV4f9U3Luhpa5NoKmXBPa+Zd3JTBZ1gsc1UrTg4hH OIcRp5Vy/ZO5A/Xcg8TPNe4LVlxBx4IhnOSDAgMBAAGjggH5MIIB9TAdBgNVHQ4E FgQUkCCMl5RwnW86RUjKl0QZxSatEmUwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL2tDQ01s NVJ3blc4NlJVaktsMFFaeFNhdEVtVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzAN MAsEAgABMAUDAwNlCDANBgkqhkiG9w0BAQsFAAOCAQEAhmUK+kRU9vL/D06YKJtw Gsw65tazlsqull3PnqMdwmWtRIIc/8sRrHAOOjcHMRhLmKJ0xw8yLHsO3FFF7NXJ pSxjKdRmFup7YyS2K8hq028SgQ85oeztaglV3yyU3FtzcKUWuP3r/rkJ64WEqW/S 5hbrahTRCT0jZXR9XyRBD7IoJ5eMpJNPQ2z8/QpCMue3ABqBLkLRoMcs6YwV9/2N AzmZZTySQJDHw8zizaHHinKsiaDWjxKTZZ7nqBcaaInG6yspaCn0qCBDrsDW9LE3 H2uvoM5nOJyfUqmIxltclUQ4PUd+EyJfZAjxBAGWcyV6Bi/fRM7DxDvRNv3r2GPp Ag== -----END CERTIFICATE-----Generated at Wed Apr 16 18:14:30 2025 by rpki-client