$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/ppWojtWTCVSw6aqVvwdzBbJbmTc.roa File: ppWojtWTCVSw6aqVvwdzBbJbmTc.roa (raw, json) Hash identifier: 2aCi8IOFTfyxTbGTCCbGh/ki2ael5818VeGHjQxhUh4= Subject key identifier: A6:95:A8:8E:D5:93:09:54:B0:E9:AA:95:BF:07:73:05:B2:5B:99:37 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0D6C Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/ppWojtWTCVSw6aqVvwdzBbJbmTc.roa Signing time: Mon 10 Feb 2025 13:58:41 +0000 ROA not before: Mon 10 Feb 2025 13:58:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 123.99.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 19:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3436 (0xd6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Feb 10 13:58:41 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A695A88ED5930954B0E9AA95BF077305B25B9937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e6:7a:18:a7:83:ed:06:3e:bb:2a:57:cb:90: 41:0d:18:39:d1:6a:f6:74:5a:ba:39:b7:42:bd:81: 52:db:ed:f7:83:a4:89:1a:45:dc:5e:64:67:b8:48: f8:3b:bd:8d:98:f3:a9:16:d5:31:fc:ea:f9:74:38: 28:92:4d:af:c1:4f:ec:4d:07:12:4f:56:f3:7e:16: 9d:53:7c:57:17:a2:95:cc:fe:41:cf:c3:2b:35:81: 8b:c8:84:b4:27:59:08:5c:36:ab:5f:7f:54:be:fe: 74:a8:8b:c4:4f:8d:76:c1:32:cb:09:37:18:b8:95: d0:b8:8f:25:a6:38:33:00:9a:7f:91:db:b0:db:ad: a0:83:2a:9d:90:67:76:38:95:94:42:de:b6:50:8d: f0:b1:c6:91:02:55:02:f1:37:5d:f1:37:da:75:07: 78:7e:20:b2:63:14:97:cd:38:0d:f8:39:ef:14:92: 53:74:04:df:ea:28:53:69:37:6c:e0:60:e7:a8:b5: b1:d7:d9:2f:24:d6:4b:c5:8f:3f:2c:28:2e:e2:32: b2:b6:b3:e3:98:99:f2:7a:88:de:78:fa:b2:45:e5: 81:94:d2:ec:31:76:ff:bc:a3:e8:03:1e:20:56:6a: 08:c8:f9:6e:80:e0:44:a6:8f:6a:d0:73:91:94:68: 8c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:95:A8:8E:D5:93:09:54:B0:E9:AA:95:BF:07:73:05:B2:5B:99:37 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/ppWojtWTCVSw6aqVvwdzBbJbmTc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.99.32.0/19 Signature Algorithm: sha256WithRSAEncryption 9b:b4:37:c7:e1:a0:14:1c:36:6c:0a:ad:b4:31:3d:41:61:dc: 3a:9f:fe:37:cc:e5:ca:b2:d6:de:7b:18:ff:30:58:1b:17:28: 74:df:57:fe:54:f8:92:70:9c:fc:b3:b0:e8:8e:d6:09:a9:89: 49:2d:fe:ac:74:67:34:2a:33:ca:69:ec:68:21:69:59:7c:02: 51:c6:9d:d2:2d:9a:85:4d:20:8a:80:57:36:58:04:1b:54:8a: 1e:e6:46:c6:b7:10:1d:03:db:35:16:4a:7a:36:9e:f3:02:7c: 53:93:f8:65:99:f0:4d:57:8c:b8:9d:51:3f:42:88:5e:1e:1a: 20:16:a8:dc:76:2f:8c:77:92:ef:55:6e:ed:fb:a8:01:c6:ed: b3:f6:72:57:35:dc:ba:18:ff:1d:cc:44:4b:87:cd:ef:83:08: 4d:90:71:a9:b2:75:c5:eb:65:0d:cc:21:51:81:fd:cd:d3:cd: 1c:da:7c:16:5a:93:4e:33:0a:8e:dc:40:bd:01:0a:29:d9:7a: d3:d8:4e:66:9d:1f:6a:29:a3:be:7b:fa:7b:e3:0d:39:fe:71: 38:58:a6:2f:88:6b:53:00:11:21:16:2d:d9:6c:90:22:4f:77: ec:39:51:93:53:ce:e5:78:9c:f4:8b:f6:7b:1b:a4:5c:9a:87: e5:9b:53:a3 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDWwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTAyMTAx MzU4NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE2OTVBODhFRDU5MzA5 NTRCMEU5QUE5NUJGMDc3MzA1QjI1Qjk5MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCn5noYp4PtBj67KlfLkEENGDnRavZ0Wro5t0K9gVLb7feDpIka RdxeZGe4SPg7vY2Y86kW1TH86vl0OCiSTa/BT+xNBxJPVvN+Fp1TfFcXopXM/kHP wys1gYvIhLQnWQhcNqtff1S+/nSoi8RPjXbBMssJNxi4ldC4jyWmODMAmn+R27Db raCDKp2QZ3Y4lZRC3rZQjfCxxpECVQLxN13xN9p1B3h+ILJjFJfNOA34Oe8UklN0 BN/qKFNpN2zgYOeotbHX2S8k1kvFjz8sKC7iMrK2s+OYmfJ6iN54+rJF5YGU0uwx dv+8o+gDHiBWagjI+W6A4ESmj2rQc5GUaIxFAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUppWojtWTCVSw6aqVvwdzBbJbmTcwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL3BwV29q dFdUQ1ZTdzZhcVZ2d2R6QmJKYm1UYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAV7YyAwDQYJKoZIhvcNAQELBQADggEBAJu0N8fhoBQcNmwKrbQx PUFh3Dqf/jfM5cqy1t57GP8wWBsXKHTfV/5U+JJwnPyzsOiO1gmpiUkt/qx0ZzQq M8pp7GghaVl8AlHGndItmoVNIIqAVzZYBBtUih7mRsa3EB0D2zUWSno2nvMCfFOT +GWZ8E1XjLidUT9CiF4eGiAWqNx2L4x3ku9Vbu37qAHG7bP2clc13LoY/x3MREuH ze+DCE2QcamydcXrZQ3MIVGB/c3TzRzafBZak04zCo7cQL0BCinZetPYTmadH2op o757+nvjDTn+cThYpi+Ia1MAESEWLdlskCJPd+w5UZNTzuV4nPSL9nsbpFyah+Wb U6M= -----END CERTIFICATE-----Generated at Wed Apr 16 18:14:30 2025 by rpki-client