$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/-eawrmrjYN33J7NGEc4KusTBR_I.roa File: -eawrmrjYN33J7NGEc4KusTBR_I.roa (raw, json) Hash identifier: 84Ui1BggMc80kHQ7f1Lflu1Q7aQLRmudlwpOLnSPgDc= Subject key identifier: F9:E6:B0:AE:6A:E3:60:DD:F7:27:B3:46:11:CE:0A:BA:C4:C1:47:F2 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0CDB Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/-eawrmrjYN33J7NGEc4KusTBR_I.roa Signing time: Mon 26 Aug 2024 05:27:03 +0000 ROA not before: Mon 26 Aug 2024 05:27:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24157 IP address blocks: 103.5.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3291 (0xcdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 26 05:27:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F9E6B0AE6AE360DDF727B34611CE0ABAC4C147F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1f:1d:2e:a1:99:c6:bf:7c:ad:e5:78:18:e8: 66:a2:69:8c:69:6c:fc:0f:0a:e1:6a:ce:f3:59:13: 48:bb:da:06:60:6f:0a:9b:cb:89:a3:11:ac:cb:52: 0c:37:6b:29:e6:ab:cb:5a:2f:99:58:43:33:cf:00: 62:1d:1c:fb:45:5b:2e:7f:af:70:54:bb:9d:6a:ae: b7:46:9b:50:c2:87:fd:ac:a3:64:d7:54:c0:d0:1d: 38:ef:67:85:e8:4b:38:c0:b9:8a:46:db:b2:e7:39: ee:c9:5d:d4:c8:b9:72:da:a8:87:b3:4f:f3:07:52: 13:a2:76:82:43:78:7a:3e:a7:e0:ea:30:0a:35:b8: 6d:d2:be:ef:a8:f6:e9:1e:be:34:14:52:c0:ad:11: e7:e7:c2:c7:85:e9:5c:67:74:56:5f:05:90:29:2a: 01:24:e8:4a:53:01:5d:3a:ff:bb:f2:5a:47:93:8f: 3f:aa:d0:62:10:49:de:be:13:81:e4:8b:9a:a9:08: 8f:f6:f1:ef:ee:84:d4:89:79:fb:11:df:56:3f:89: a7:12:fd:1f:48:e8:1d:43:9e:60:83:23:93:d4:11: 7a:89:7c:d7:55:e9:aa:3a:bd:5d:69:65:12:11:1c: af:47:27:97:ab:be:65:2f:95:6e:ca:b9:fd:9f:02: dd:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:E6:B0:AE:6A:E3:60:DD:F7:27:B3:46:11:CE:0A:BA:C4:C1:47:F2 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/-eawrmrjYN33J7NGEc4KusTBR_I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.5.32.0/22 Signature Algorithm: sha256WithRSAEncryption 58:50:c1:9b:98:02:b1:59:cf:f5:84:79:e1:57:86:7a:46:43: e0:a1:5c:0d:b8:4f:ec:f2:41:fb:86:92:bb:fd:f0:70:d3:24: e1:f1:1b:76:6d:a0:71:21:eb:45:26:5f:42:45:e3:99:3a:56: d9:46:d4:ba:1a:d4:05:66:dc:72:e6:00:a9:f9:67:15:db:f6: 1b:bd:d2:b6:82:1c:2c:c8:19:07:51:b1:b8:99:ad:44:99:3d: fd:55:12:8c:93:58:e1:f1:13:ab:42:4a:7c:ca:11:76:49:17: 7b:be:9a:43:62:40:a0:e4:3a:b7:c2:6c:be:ff:1a:d4:ef:e5: 22:30:b3:71:f5:f4:4a:09:0f:7d:52:f4:1f:67:97:e0:b9:e7: 5e:59:05:18:8a:10:1d:f2:b8:9c:26:49:22:16:cb:4b:77:53: 30:15:3c:57:52:e5:26:67:ca:35:02:f5:2f:46:1d:73:16:87: 8a:cb:56:66:9a:5f:67:7d:25:c5:73:80:b5:c0:f5:89:19:4f: 62:8d:be:57:70:f1:a2:85:36:93:c2:c3:a2:b9:a3:ff:a2:91: fb:4c:8b:12:35:75:7f:28:3b:36:db:ec:d5:e3:23:28:3a:cb: 6c:92:2f:1b:00:23:72:80:26:e9:4a:cc:f9:49:11:d0:30:16: fe:f2:58:17 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDNswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNDA4MjYw NTI3MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY5RTZCMEFFNkFFMzYw RERGNzI3QjM0NjExQ0UwQUJBQzRDMTQ3RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNHx0uoZnGv3yt5XgY6GaiaYxpbPwPCuFqzvNZE0i72gZgbwqb y4mjEazLUgw3aynmq8taL5lYQzPPAGIdHPtFWy5/r3BUu51qrrdGm1DCh/2so2TX VMDQHTjvZ4XoSzjAuYpG27LnOe7JXdTIuXLaqIezT/MHUhOidoJDeHo+p+DqMAo1 uG3Svu+o9ukevjQUUsCtEefnwseF6VxndFZfBZApKgEk6EpTAV06/7vyWkeTjz+q 0GIQSd6+E4Hki5qpCI/28e/uhNSJefsR31Y/iacS/R9I6B1DnmCDI5PUEXqJfNdV 6ao6vV1pZRIRHK9HJ5ervmUvlW7Kuf2fAt2RAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQU+eawrmrjYN33J7NGEc4KusTBR/IwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFLy1lYXdy bXJqWU4zM0o3TkdFYzRLdXNUQlJfSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAJnBSAwDQYJKoZIhvcNAQELBQADggEBAFhQwZuYArFZz/WEeeFX hnpGQ+ChXA24T+zyQfuGkrv98HDTJOHxG3ZtoHEh60UmX0JF45k6VtlG1Loa1AVm 3HLmAKn5ZxXb9hu90raCHCzIGQdRsbiZrUSZPf1VEoyTWOHxE6tCSnzKEXZJF3u+ mkNiQKDkOrfCbL7/GtTv5SIws3H19EoJD31S9B9nl+C5515ZBRiKEB3yuJwmSSIW y0t3UzAVPFdS5SZnyjUC9S9GHXMWh4rLVmaaX2d9JcVzgLXA9YkZT2KNvldw8aKF NpPCw6K5o/+ikftMixI1dX8oOzbb7NXjIyg6y2ySLxsAI3KAJulKzPlJEdAwFv7y WBc= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org