$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Et8IBSrE0V5jSGNE3Geyo-tDA7I.roa File: Et8IBSrE0V5jSGNE3Geyo-tDA7I.roa (raw, json) Hash identifier: peVEivlY7wcOvIy6uo1ySod2Xg8YHcg1iNPL5WVaIVU= Subject key identifier: 12:DF:08:05:2A:C4:D1:5E:63:48:63:44:DC:67:B2:A3:EB:43:03:B2 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0CE7 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Et8IBSrE0V5jSGNE3Geyo-tDA7I.roa Signing time: Mon 26 Aug 2024 05:27:05 +0000 ROA not before: Mon 26 Aug 2024 05:27:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 101.8.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3303 (0xce7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 26 05:27:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=12DF08052AC4D15E63486344DC67B2A3EB4303B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8e:27:fa:e0:00:a5:8b:ae:40:fa:3e:b2:77: 44:4a:d8:d9:dd:09:1d:c4:f0:fc:fc:29:52:99:d7: 2d:a9:83:bf:18:4e:e6:64:ab:04:7a:1c:32:d4:55: 2e:51:4d:a9:c9:30:ad:98:cd:c1:6d:9b:2c:13:c1: 8b:fc:86:ad:39:e0:bb:60:54:72:90:1a:61:d2:c5: 8c:74:fc:fa:ff:b1:e2:83:7e:72:88:b3:b4:32:82: 8f:10:59:c2:43:ae:e2:fa:3b:cf:3b:a3:d1:8b:45: 8b:10:c5:51:33:0c:a1:2d:75:06:c2:01:3a:f6:6d: 08:c7:85:45:a8:12:4e:48:af:a9:18:a2:3f:39:73: 67:ee:7f:02:36:52:d6:40:41:dc:6c:51:f4:99:95: d4:e3:62:1a:cf:c9:c5:3a:14:8d:d2:a0:ea:31:f8: 04:db:1e:90:ce:a6:eb:70:03:e9:ab:51:a9:c3:da: 70:71:f6:4f:33:6e:cb:d7:81:19:e5:bb:55:20:3b: 55:99:9d:f2:2d:2c:8a:9b:22:16:73:4d:e2:70:36: a7:6d:cc:49:69:f2:6e:d7:b9:e3:e3:01:48:a6:97: d7:1a:bb:e3:15:00:df:c8:1c:e2:74:15:e6:85:8b: b0:38:ef:b7:c6:b6:20:f5:4c:73:e8:22:1d:76:f7: 66:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:DF:08:05:2A:C4:D1:5E:63:48:63:44:DC:67:B2:A3:EB:43:03:B2 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Et8IBSrE0V5jSGNE3Geyo-tDA7I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.8.0.0/13 Signature Algorithm: sha256WithRSAEncryption d2:f3:60:98:3e:2c:fd:47:89:78:9f:61:7f:17:64:6e:e1:39: 01:90:c3:77:c3:a9:e9:dd:40:fd:32:89:9f:60:c1:46:a9:da: 5f:ad:5e:f6:af:05:a0:78:11:bf:0b:df:99:0c:1e:84:df:98: 33:c0:20:bb:3a:8d:2e:0f:ce:96:c5:be:52:7d:da:fa:46:d6: 82:5d:fe:38:ee:27:45:22:4f:8b:71:9e:e4:89:1c:81:cd:85: 9e:3c:e8:c1:77:8e:ca:1b:9e:4f:c7:a3:03:dc:4c:86:00:6e: 1a:f1:93:23:a2:f2:98:6d:4b:f2:39:39:a7:dd:b1:cb:6c:0f: 68:97:92:9b:18:31:25:a4:57:4a:b4:2e:d7:71:57:bf:06:2f: a9:7f:53:e3:71:50:11:99:28:cf:95:63:19:3b:6d:98:d9:31: 2c:0d:99:f0:6c:49:7f:22:f7:38:9b:4e:a2:07:78:ce:97:2a: 3b:e8:f2:73:e4:05:4d:9a:62:66:e7:9b:b3:45:73:7d:82:e3: c3:c5:c0:9f:76:a8:88:47:0e:1c:d2:90:47:7f:6e:91:1e:c4: 76:71:38:e9:2d:cd:68:23:ac:6f:93:3e:81:e5:69:b5:53:91: e4:13:1f:54:d7:94:15:64:8c:87:ca:2e:21:a7:3d:e5:10:96: c8:4c:a0:c5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgICDOcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNDA4MjYw NTI3MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEyREYwODA1MkFDNEQx NUU2MzQ4NjM0NERDNjdCMkEzRUI0MzAzQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTjif64ACli65A+j6yd0RK2NndCR3E8Pz8KVKZ1y2pg78YTuZk qwR6HDLUVS5RTanJMK2YzcFtmywTwYv8hq054LtgVHKQGmHSxYx0/Pr/seKDfnKI s7Qygo8QWcJDruL6O887o9GLRYsQxVEzDKEtdQbCATr2bQjHhUWoEk5Ir6kYoj85 c2fufwI2UtZAQdxsUfSZldTjYhrPycU6FI3SoOox+ATbHpDOputwA+mrUanD2nBx 9k8zbsvXgRnlu1UgO1WZnfItLIqbIhZzTeJwNqdtzElp8m7XuePjAUiml9cau+MV AN/IHOJ0FeaFi7A477fGtiD1THPoIh1292ZfAgMBAAGjggH5MIIB9TAdBgNVHQ4E FgQUEt8IBSrE0V5jSGNE3Geyo+tDA7IwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL0V0OElC U3JFMFY1alNHTkUzR2V5by10REE3SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzAN MAsEAgABMAUDAwNlCDANBgkqhkiG9w0BAQsFAAOCAQEA0vNgmD4s/UeJeJ9hfxdk buE5AZDDd8Op6d1A/TKJn2DBRqnaX61e9q8FoHgRvwvfmQwehN+YM8AguzqNLg/O lsW+Un3a+kbWgl3+OO4nRSJPi3Ge5Ikcgc2FnjzowXeOyhueT8ejA9xMhgBuGvGT I6LymG1L8jk5p92xy2wPaJeSmxgxJaRXSrQu13FXvwYvqX9T43FQEZkoz5VjGTtt mNkxLA2Z8GxJfyL3OJtOogd4zpcqO+jyc+QFTZpiZuebs0VzfYLjw8XAn3aoiEcO HNKQR39ukR7EdnE46S3NaCOsb5M+geVptVOR5BMfVNeUFWSMh8ouIac95RCWyEyg xQ== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:15 2024 by rpki-client on console-ams.rpki-client.org