$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/qD71CurKLUgVbKKSHeQxUHPCWjM.roa File: qD71CurKLUgVbKKSHeQxUHPCWjM.roa (raw, json) Hash identifier: RSfg+XwsmabaMP1IqSEYtl1fB9qpsGHOMe+Cm9DGFIA= Subject key identifier: A8:3E:F5:0A:EA:CA:2D:48:15:6C:A2:92:1D:E4:31:50:73:C2:5A:33 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0D78 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/qD71CurKLUgVbKKSHeQxUHPCWjM.roa Signing time: Mon 10 Feb 2025 13:58:44 +0000 ROA not before: Mon 10 Feb 2025 13:58:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 103.2.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 19:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3448 (0xd78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Feb 10 13:58:44 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A83EF50AEACA2D48156CA2921DE4315073C25A33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:30:b2:ef:97:06:95:1f:65:06:a4:a9:e6:bf: 8d:de:cb:a6:9d:d7:a7:d3:51:86:11:c5:64:b6:84: da:df:41:33:a6:ad:eb:74:15:a4:2b:e4:4c:13:09: 94:e6:be:fe:48:99:43:aa:4a:f7:0f:a1:3e:2d:e3: a2:a2:a6:6d:6d:b0:c6:f7:b9:b7:ae:71:8f:bd:a1: 5c:ad:8a:b6:18:1f:07:4c:b7:aa:e4:09:24:d4:e7: a9:fd:7f:bf:4e:d3:69:ed:a6:f7:3a:4e:55:02:b9: dd:1e:f1:c2:f0:65:2a:fb:46:47:04:9e:bc:3d:8d: 20:d3:7c:18:c4:63:6b:59:10:b1:5b:9e:4b:2c:9e: 15:ea:3b:4b:4e:42:c3:9b:82:4a:0d:b2:5b:92:38: 88:8d:ad:bd:a9:01:b5:0b:f1:4c:7b:b7:01:bf:b3: ef:8c:db:c6:01:45:c2:95:e3:b5:8e:3b:ad:ba:5e: 61:e8:d9:d1:52:f2:35:5c:19:dd:10:39:bb:79:83: f0:06:d5:b7:27:f2:c2:59:a4:c8:b4:1f:9c:3a:b0: d7:de:52:6e:9e:98:9b:b3:9e:e7:a6:35:d1:2f:f6: e6:ee:bc:c6:12:04:da:d2:0e:70:a5:8e:37:a6:f6: bb:cc:76:a1:1c:89:22:33:ef:63:d8:fb:53:cc:3b: d8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:3E:F5:0A:EA:CA:2D:48:15:6C:A2:92:1D:E4:31:50:73:C2:5A:33 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/qD71CurKLUgVbKKSHeQxUHPCWjM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.2.216.0/22 Signature Algorithm: sha256WithRSAEncryption de:b3:25:74:14:d0:4c:fe:02:c7:81:92:fa:c1:04:c9:a8:b0: ae:37:cc:2d:d9:5d:b4:a5:1c:36:6d:60:e1:8e:71:78:77:7d: 56:99:0e:94:66:37:a6:62:5b:db:b2:2c:cf:4b:be:97:36:fd: f7:e1:77:f0:28:35:80:f6:01:be:d3:87:82:85:db:86:f9:25: d3:41:8e:22:77:96:bb:0b:07:a3:14:30:41:2e:79:c1:c7:a3: 8c:d4:26:69:d2:15:99:de:cc:d5:e6:51:61:69:b5:ca:a1:f4: 19:ee:57:13:14:05:ba:dd:19:a4:21:d1:11:dc:22:17:24:fd: ac:a4:c1:fd:b6:d0:0a:3a:bd:d5:cc:87:43:b0:a4:8e:84:e0: 35:ea:97:9e:09:9b:7c:e2:b1:05:a9:d3:2e:ff:1c:d4:9d:74: aa:fe:f1:8e:3c:33:7a:60:ee:8a:39:55:b8:f8:35:f6:b4:b3: 48:0d:1c:81:89:88:d3:18:2e:b1:b3:a2:3f:8c:f1:76:d6:1b: 2e:ff:9f:23:44:83:1d:01:2b:82:22:08:99:70:f0:a3:f9:38: 5d:34:de:b2:d0:e1:af:a2:18:b1:f7:b6:7e:7c:0b:20:d7:d3: bf:a0:29:81:dc:db:a5:8d:d3:ff:fc:2e:ef:dc:07:48:56:aa: c6:79:0a:94 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDXgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTAyMTAx MzU4NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE4M0VGNTBBRUFDQTJE NDgxNTZDQTI5MjFERTQzMTUwNzNDMjVBMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyMLLvlwaVH2UGpKnmv43ey6ad16fTUYYRxWS2hNrfQTOmret0 FaQr5EwTCZTmvv5ImUOqSvcPoT4t46Kipm1tsMb3ubeucY+9oVytirYYHwdMt6rk CSTU56n9f79O02ntpvc6TlUCud0e8cLwZSr7RkcEnrw9jSDTfBjEY2tZELFbnkss nhXqO0tOQsObgkoNsluSOIiNrb2pAbUL8Ux7twG/s++M28YBRcKV47WOO626XmHo 2dFS8jVcGd0QObt5g/AG1bcn8sJZpMi0H5w6sNfeUm6emJuznuemNdEv9ubuvMYS BNrSDnCljjem9rvMdqEciSIz72PY+1PMO9g7AgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUqD71CurKLUgVbKKSHeQxUHPCWjMwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL3FENzFD dXJLTFVnVmJLS1NIZVF4VUhQQ1dqTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAJnAtgwDQYJKoZIhvcNAQELBQADggEBAN6zJXQU0Ez+AseBkvrB BMmosK43zC3ZXbSlHDZtYOGOcXh3fVaZDpRmN6ZiW9uyLM9Lvpc2/ffhd/AoNYD2 Ab7Th4KF24b5JdNBjiJ3lrsLB6MUMEEuecHHo4zUJmnSFZnezNXmUWFptcqh9Bnu VxMUBbrdGaQh0RHcIhck/aykwf220Ao6vdXMh0OwpI6E4DXql54Jm3zisQWp0y7/ HNSddKr+8Y48M3pg7oo5Vbj4Nfa0s0gNHIGJiNMYLrGzoj+M8XbWGy7/nyNEgx0B K4IiCJlw8KP5OF003rLQ4a+iGLH3tn58CyDX07+gKYHc26WN0//8Lu/cB0hWqsZ5 CpQ= -----END CERTIFICATE-----Generated at Wed Apr 16 18:12:11 2025 by rpki-client