$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/zOpIOd1JFlD1tM9vpM0pYtkMtTc.roa File: zOpIOd1JFlD1tM9vpM0pYtkMtTc.roa (raw, json) Hash identifier: B67jLKtJ0RuOMwVOdpHnqNAwp8MSX+MFCNqHItEk9Xc= Subject key identifier: CC:EA:48:39:DD:49:16:50:F5:B4:CF:6F:A4:CD:29:62:D9:0C:B5:37 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0D60 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/zOpIOd1JFlD1tM9vpM0pYtkMtTc.roa Signing time: Mon 10 Feb 2025 13:58:39 +0000 ROA not before: Mon 10 Feb 2025 13:58:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24157 IP address blocks: 112.78.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 01:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3424 (0xd60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Feb 10 13:58:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CCEA4839DD491650F5B4CF6FA4CD2962D90CB537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:48:9a:5a:04:74:5a:29:f2:a8:8c:5e:96:4e: ba:9c:a8:f6:9e:34:73:69:f9:4a:db:3b:f0:de:09: 21:a2:5e:bc:70:71:92:ba:84:c3:b9:71:69:e1:39: 9d:b6:0d:c7:fc:ad:04:30:4b:fe:f8:fb:0b:0f:25: 54:c1:0e:4b:d0:31:8d:4c:b4:e3:0d:27:dc:b2:b4: 87:5b:e3:70:08:64:21:9d:a7:34:23:67:bc:63:8d: ff:52:32:25:72:e8:77:5d:5a:b8:57:8f:12:fd:a9: 0f:4b:29:88:da:40:66:a0:05:ca:f0:73:e1:c8:1c: 75:1d:45:db:7a:04:e3:08:13:7d:31:8b:91:40:22: 8d:fd:da:60:25:e8:cf:40:f8:85:e2:39:e6:1a:c7: b7:ac:4c:6a:77:3a:9f:cb:cc:a1:2a:04:32:46:1b: a5:56:88:a3:4e:7f:a9:25:32:c6:df:36:9b:fc:2b: 4e:93:93:95:cd:cb:20:68:8e:a0:94:51:75:30:52: 38:ea:54:be:29:e3:60:5d:be:ff:bd:b6:15:b5:de: 65:4a:5c:0b:43:df:8d:1f:7e:82:fb:02:20:44:97: 67:c6:67:f8:96:23:93:9a:c1:f9:7b:e3:0a:15:5b: 9c:64:13:20:a3:31:b4:18:7b:e8:05:bf:27:bc:c4: 59:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:EA:48:39:DD:49:16:50:F5:B4:CF:6F:A4:CD:29:62:D9:0C:B5:37 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/zOpIOd1JFlD1tM9vpM0pYtkMtTc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.78.64.0/19 Signature Algorithm: sha256WithRSAEncryption 33:24:3d:4c:92:d1:62:3a:73:2a:44:d2:5e:07:0c:6d:8a:93: a8:f2:46:61:b0:25:33:3a:cf:21:0b:65:50:91:e9:87:2d:ad: 0e:b0:cd:9c:09:59:36:ae:a5:1c:e9:25:1c:ea:ec:0f:03:f5: 14:3c:12:ca:47:d3:76:44:6d:1f:aa:e7:c1:fc:d3:93:8b:93: 03:b8:b3:fd:f8:2a:5e:8f:27:3f:8a:a6:e4:2f:e7:29:de:f6: bb:80:a0:27:f2:ef:20:8c:65:68:13:a3:82:2a:c6:73:35:f4: 8b:c7:cb:b1:6e:32:f0:ff:b2:24:17:40:ce:a4:d5:ee:7e:7e: b9:5e:20:29:97:5f:8c:43:79:be:c8:17:c3:ba:7e:49:11:31: 97:67:95:05:48:6f:02:95:17:9e:8b:1e:52:e6:77:9d:84:50: 92:cc:d0:2a:17:41:87:0d:ad:c7:8c:ae:7f:33:b4:21:79:43: 00:fc:c7:9b:a1:b4:8b:1d:84:8c:d5:ec:0e:d3:d7:fe:0a:5d: 53:83:cf:5e:d9:60:1c:41:01:5d:87:99:af:e2:e7:1a:09:31: 71:8d:f4:f2:f0:c8:ee:c7:96:4c:9f:0a:e7:65:df:53:cf:d4: 65:10:6f:d0:b0:50:f6:2e:eb:72:78:ca:16:f7:74:ed:92:2d: c0:a3:b2:ce -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDWAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTAyMTAx MzU4MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENDRUE0ODM5REQ0OTE2 NTBGNUI0Q0Y2RkE0Q0QyOTYyRDkwQ0I1MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+SJpaBHRaKfKojF6WTrqcqPaeNHNp+UrbO/DeCSGiXrxwcZK6 hMO5cWnhOZ22Dcf8rQQwS/74+wsPJVTBDkvQMY1MtOMNJ9yytIdb43AIZCGdpzQj Z7xjjf9SMiVy6HddWrhXjxL9qQ9LKYjaQGagBcrwc+HIHHUdRdt6BOMIE30xi5FA Io392mAl6M9A+IXiOeYax7esTGp3Op/LzKEqBDJGG6VWiKNOf6klMsbfNpv8K06T k5XNyyBojqCUUXUwUjjqVL4p42Bdvv+9thW13mVKXAtD340ffoL7AiBEl2fGZ/iW I5Oawfl74woVW5xkEyCjMbQYe+gFvye8xFmvAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUzOpIOd1JFlD1tM9vpM0pYtkMtTcwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL3pPcElP ZDFKRmxEMXRNOXZwTTBwWXRrTXRUYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAVwTkAwDQYJKoZIhvcNAQELBQADggEBADMkPUyS0WI6cypE0l4H DG2Kk6jyRmGwJTM6zyELZVCR6YctrQ6wzZwJWTaupRzpJRzq7A8D9RQ8EspH03ZE bR+q58H805OLkwO4s/34Kl6PJz+KpuQv5yne9ruAoCfy7yCMZWgTo4IqxnM19IvH y7FuMvD/siQXQM6k1e5+frleICmXX4xDeb7IF8O6fkkRMZdnlQVIbwKVF56LHlLm d52EUJLM0CoXQYcNrceMrn8ztCF5QwD8x5uhtIsdhIzV7A7T1/4KXVODz17ZYBxB AV2Hma/i5xoJMXGN9PLwyO7HlkyfCudl31PP1GUQb9CwUPYu63J4yhb3dO2SLcCj ss4= -----END CERTIFICATE-----Generated at Wed Apr 23 00:32:21 2025 by rpki-client