$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Fn0SsNyNWwwxgYYfBecygcNJW0s.roa File: Fn0SsNyNWwwxgYYfBecygcNJW0s.roa (raw, json) Hash identifier: N7qDQdwANuTLoKzzpGprH4xFDjA8h1IB3QqGXx5FXs4= Subject key identifier: 16:7D:12:B0:DC:8D:5B:0C:31:81:86:1F:05:E7:32:81:C3:49:5B:4B Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0CDD Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Fn0SsNyNWwwxgYYfBecygcNJW0s.roa Signing time: Mon 26 Aug 2024 05:27:03 +0000 ROA not before: Mon 26 Aug 2024 05:27:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24157 IP address blocks: 103.239.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3293 (0xcdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 26 05:27:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=167D12B0DC8D5B0C3181861F05E73281C3495B4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:42:1f:32:f9:f4:99:89:c5:67:9c:1a:9e:f2: d5:5e:10:f5:43:ee:00:54:aa:a3:22:81:2a:7a:54: b9:4f:7d:91:64:74:c6:0f:47:c5:8f:e4:9d:d2:6b: bd:45:1c:95:56:8e:c3:de:f4:10:be:2b:ca:37:4e: 75:e8:b4:c9:3d:b2:2b:f7:82:35:85:37:24:ce:14: 5a:ab:3e:27:da:c5:fb:54:0a:0d:05:66:d2:76:df: 20:89:7f:ac:f4:c7:e6:a7:26:4d:ff:cf:34:e0:a3: b5:31:7f:74:4b:40:9a:08:b1:c8:c4:ed:51:e1:0e: bf:3d:fb:d0:55:7d:70:86:c9:9a:11:2e:06:23:5f: 19:6f:be:77:13:2e:a6:5e:18:74:ce:31:9c:9a:39: 4e:02:b0:a3:e1:84:6d:d9:f3:04:53:59:6d:65:73: 06:8c:d1:ae:c5:63:30:d7:5a:64:4b:0d:ff:62:51: 38:44:3a:80:be:cd:9a:0c:30:eb:49:32:05:da:9c: e2:fd:b7:1a:43:29:e0:67:60:7e:c0:3c:09:e0:8d: cd:d4:47:e7:ba:63:4b:20:8d:c0:d5:20:5f:a2:e6: cc:9e:cf:01:6c:e6:1f:b5:60:d1:25:5d:2b:64:5e: c4:76:5b:4a:ab:3c:97:a8:85:cf:f4:6d:9a:56:29: f1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:7D:12:B0:DC:8D:5B:0C:31:81:86:1F:05:E7:32:81:C3:49:5B:4B X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Fn0SsNyNWwwxgYYfBecygcNJW0s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.239.60.0/22 Signature Algorithm: sha256WithRSAEncryption 76:17:93:62:a4:bf:af:6a:6e:a9:b3:db:9f:fe:a9:95:1c:5d: 6a:e8:64:f9:50:6b:a3:bf:66:0e:db:eb:f9:a8:52:ab:30:0a: 2d:f1:f4:32:21:e4:af:a8:c9:8a:6e:21:3c:f6:c8:45:0b:9b: 1f:f1:c8:d2:0c:d1:09:c6:8a:c6:92:9c:65:eb:8b:06:93:99: d7:90:2b:b8:63:2c:6c:37:80:15:0e:fc:d2:5a:00:dc:ae:92: 21:62:31:f2:34:c7:70:df:2b:c0:a1:6d:82:90:4b:fa:f3:35: 89:cd:bb:49:38:a1:93:11:20:c9:69:e5:3e:25:c7:3d:0a:09: 8a:d0:1e:d4:ab:fa:a4:70:38:95:78:db:be:ad:1d:e8:79:ad: 68:79:29:b1:14:86:90:56:11:89:86:a2:87:8a:a0:b5:1f:88: 11:61:3f:3f:31:d8:94:83:4e:1a:9e:04:15:a2:3d:5b:1c:e2: a0:bc:0f:5a:00:86:55:72:af:79:35:8f:11:31:f1:9e:4d:08: 9a:89:35:d1:e1:ce:ca:2f:f0:33:1e:52:9c:b6:1f:a4:25:35: ec:ff:d0:7d:e7:3e:12:2e:8d:a3:35:2a:7d:88:c6:b8:ae:57: 49:8b:26:6d:b8:2c:ec:cb:ca:f2:5e:22:f5:62:7a:cc:43:7b: ce:b6:87:2f -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDN0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNDA4MjYw NTI3MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE2N0QxMkIwREM4RDVC MEMzMTgxODYxRjA1RTczMjgxQzM0OTVCNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzQh8y+fSZicVnnBqe8tVeEPVD7gBUqqMigSp6VLlPfZFkdMYP R8WP5J3Sa71FHJVWjsPe9BC+K8o3TnXotMk9siv3gjWFNyTOFFqrPifaxftUCg0F ZtJ23yCJf6z0x+anJk3/zzTgo7Uxf3RLQJoIscjE7VHhDr89+9BVfXCGyZoRLgYj XxlvvncTLqZeGHTOMZyaOU4CsKPhhG3Z8wRTWW1lcwaM0a7FYzDXWmRLDf9iUThE OoC+zZoMMOtJMgXanOL9txpDKeBnYH7APAngjc3UR+e6Y0sgjcDVIF+i5syezwFs 5h+1YNElXStkXsR2W0qrPJeohc/0bZpWKfFBAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUFn0SsNyNWwwxgYYfBecygcNJW0swHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL0ZuMFNz TnlOV3d3eGdZWWZCZWN5Z2NOSlcwcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAJn7zwwDQYJKoZIhvcNAQELBQADggEBAHYXk2Kkv69qbqmz25/+ qZUcXWroZPlQa6O/Zg7b6/moUqswCi3x9DIh5K+oyYpuITz2yEULmx/xyNIM0QnG isaSnGXriwaTmdeQK7hjLGw3gBUO/NJaANyukiFiMfI0x3DfK8ChbYKQS/rzNYnN u0k4oZMRIMlp5T4lxz0KCYrQHtSr+qRwOJV4276tHeh5rWh5KbEUhpBWEYmGooeK oLUfiBFhPz8x2JSDThqeBBWiPVsc4qC8D1oAhlVyr3k1jxEx8Z5NCJqJNdHhzsov 8DMeUpy2H6QlNez/0H3nPhIujaM1Kn2IxriuV0mLJm24LOzLyvJeIvViesxDe862 hy8= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org