$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Mex5EwY24hq7os0O_xyQmcjF1C8.roa File: Mex5EwY24hq7os0O_xyQmcjF1C8.roa (raw, json) Hash identifier: z6AQqe2fwPny2r1cutXYtPXYbaq2/EqkFiykEX/4JjY= Subject key identifier: 31:EC:79:13:06:36:E2:1A:BB:A2:CD:0E:FF:1C:90:99:C8:C5:D4:2F Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0CE1 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Mex5EwY24hq7os0O_xyQmcjF1C8.roa Signing time: Mon 26 Aug 2024 05:27:04 +0000 ROA not before: Mon 26 Aug 2024 05:27:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24157 IP address blocks: 180.217.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3297 (0xce1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 26 05:27:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=31EC79130636E21ABBA2CD0EFF1C9099C8C5D42F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:71:6b:4c:7b:57:24:57:67:1e:b4:ac:dc:37: fe:d5:09:0d:36:e6:39:06:5e:2f:e4:95:3c:9c:e1: c3:c0:e1:52:6f:4b:1f:14:ef:ec:d5:9b:f6:84:7b: a7:53:9b:15:7c:38:f4:9e:dd:f7:0d:71:cd:55:b4: dc:00:d8:d7:40:96:58:b0:41:eb:c3:a6:25:26:6f: 5e:60:e1:83:98:83:b6:20:f4:1a:7e:71:bc:76:dd: 9c:52:ce:10:cd:0f:70:6c:05:22:c2:87:41:7d:c4: 63:fc:a0:00:c4:8f:0c:45:52:5d:83:a8:8e:0a:c3: 6f:1a:6c:e3:b6:23:03:4d:17:0d:2e:ca:53:c5:84: e1:0e:f2:d7:8f:0a:e7:cc:b8:cc:0d:5a:4d:01:fa: 01:a7:3b:73:30:3e:23:f7:59:89:d0:96:30:3b:03: 15:ce:ae:ca:2a:2e:7c:df:c8:00:71:71:b0:5b:cb: 2c:c9:5c:68:bc:b4:18:9b:47:bf:60:cd:3b:db:14: ca:a1:71:6b:69:44:fc:ce:8d:42:17:b7:df:21:f0: d8:f8:61:60:74:59:fd:34:42:06:08:f3:fd:f7:93: 43:71:43:98:fc:df:b2:e5:44:75:ab:ef:97:ff:dc: f0:6a:d8:3b:ef:42:99:36:93:af:da:b6:53:47:1a: 64:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:EC:79:13:06:36:E2:1A:BB:A2:CD:0E:FF:1C:90:99:C8:C5:D4:2F X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Mex5EwY24hq7os0O_xyQmcjF1C8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.217.0.0/16 Signature Algorithm: sha256WithRSAEncryption c9:63:b7:9b:65:02:91:94:ab:b5:80:63:ce:d9:e3:1d:bb:9b: dd:9f:d2:c3:84:f7:7a:29:5d:19:c5:9b:bf:7e:3f:ff:e3:fe: 0b:85:69:d7:f5:1e:df:c2:e2:5d:fc:1d:38:89:70:a2:7e:69: 0d:72:cb:6c:aa:b8:b4:38:ff:ef:e5:c6:de:ac:1c:3f:32:06: 02:70:28:a3:f2:a9:32:29:1b:aa:b4:58:a5:1c:e8:a4:b1:13: 49:67:42:7d:86:12:20:cc:fd:02:da:20:14:b1:eb:bc:38:69: e5:ed:ef:71:70:4b:17:b0:69:fa:29:a0:a7:2d:84:8d:21:5d: d0:df:fe:86:ed:0a:33:13:cb:26:2d:ee:d8:a4:67:ef:db:3c: 8c:fa:46:17:8f:d0:23:79:80:35:d5:43:33:e9:14:48:24:60: 83:38:7d:28:92:0b:a9:c9:fa:8b:7c:b2:e8:55:40:d6:c2:82: 37:b5:0b:cb:3d:e3:d3:c4:16:53:a8:4a:b2:6e:64:28:dd:b5: 26:59:90:b9:17:ea:da:16:9e:ef:d6:18:b7:81:84:d3:1c:79: 85:b3:1f:38:24:f6:f3:3c:ae:96:e1:44:84:d5:20:59:e4:78: a5:9d:b1:86:be:60:22:29:c4:ac:bc:5a:6d:8a:8f:b1:b3:dd: 4e:af:d5:be -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgICDOEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNDA4MjYw NTI3MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMxRUM3OTEzMDYzNkUy MUFCQkEyQ0QwRUZGMUM5MDk5QzhDNUQ0MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYcWtMe1ckV2cetKzcN/7VCQ025jkGXi/klTyc4cPA4VJvSx8U 7+zVm/aEe6dTmxV8OPSe3fcNcc1VtNwA2NdAlliwQevDpiUmb15g4YOYg7Yg9Bp+ cbx23ZxSzhDND3BsBSLCh0F9xGP8oADEjwxFUl2DqI4Kw28abOO2IwNNFw0uylPF hOEO8tePCufMuMwNWk0B+gGnO3MwPiP3WYnQljA7AxXOrsoqLnzfyABxcbBbyyzJ XGi8tBibR79gzTvbFMqhcWtpRPzOjUIXt98h8Nj4YWB0Wf00QgYI8/33k0NxQ5j8 37LlRHWr75f/3PBq2DvvQpk2k6/atlNHGmSZAgMBAAGjggH5MIIB9TAdBgNVHQ4E FgQUMex5EwY24hq7os0O/xyQmcjF1C8wHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL01leDVF d1kyNGhxN29zME9feHlRbWNqRjFDOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzAN MAsEAgABMAUDAwC02TANBgkqhkiG9w0BAQsFAAOCAQEAyWO3m2UCkZSrtYBjztnj Hbub3Z/Sw4T3eildGcWbv34//+P+C4Vp1/Ue38LiXfwdOIlwon5pDXLLbKq4tDj/ 7+XG3qwcPzIGAnAoo/KpMikbqrRYpRzopLETSWdCfYYSIMz9AtogFLHrvDhp5e3v cXBLF7Bp+imgpy2EjSFd0N/+hu0KMxPLJi3u2KRn79s8jPpGF4/QI3mANdVDM+kU SCRggzh9KJILqcn6i3yy6FVA1sKCN7ULyz3j08QWU6hKsm5kKN21JlmQuRfq2hae 79YYt4GE0xx5hbMfOCT28zyuluFEhNUgWeR4pZ2xhr5gIinErLxabYqPsbPdTq/V vg== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:15 2024 by rpki-client on console-ams.rpki-client.org