$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Y9vMDMCihgHeC7HiRycheoQnEL0.roa File: Y9vMDMCihgHeC7HiRycheoQnEL0.roa (raw, json) Hash identifier: HUIoJjpvrB97pOG/MpNaCY07JCgnt2fiA1IOPoPSy8k= Subject key identifier: 63:DB:CC:0C:C0:A2:86:01:DE:0B:B1:E2:47:27:21:7A:84:27:10:BD Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0CEA Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Y9vMDMCihgHeC7HiRycheoQnEL0.roa Signing time: Mon 26 Aug 2024 05:27:06 +0000 ROA not before: Mon 26 Aug 2024 05:27:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 2402:7500::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3306 (0xcea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 26 05:27:06 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=63DBCC0CC0A28601DE0BB1E24727217A842710BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:88:25:b4:86:9b:97:13:30:a4:8b:3d:82:41: b4:df:6e:0f:33:97:1d:f5:23:78:54:65:3d:c4:17: c8:36:54:f0:0b:a3:b3:f1:3b:62:b0:fa:f8:98:14: ab:36:36:66:e0:7a:3c:d6:f1:45:9d:99:30:72:86: 37:bd:b2:ef:48:d3:f9:7e:33:52:71:4b:a0:a0:50: 65:40:12:a0:96:e1:20:df:10:bf:c8:c0:de:e8:69: 27:8e:44:28:e5:08:2f:38:90:ec:d9:79:3b:12:58: 6f:74:fb:02:9f:96:2d:b8:6d:7d:11:8a:0d:28:25: f4:62:9f:de:25:27:c6:b2:28:3d:61:0e:42:43:44: 00:fa:51:3e:c9:5c:5b:c1:13:fc:24:cb:db:d4:36: 15:85:ec:25:dc:c5:1d:69:f7:2b:6a:55:5b:fd:2c: b4:b9:e3:fc:c2:5b:c8:e5:ad:07:6d:ca:db:b2:3a: ad:b7:c6:b1:fa:b2:96:f2:9a:4c:b9:c3:5e:27:06: 31:6c:2a:32:4c:c5:68:a7:b9:28:6d:8c:7d:79:44: 97:4b:62:17:2e:02:18:ab:83:ad:f1:3e:9c:71:29: 2d:02:76:41:a0:04:62:1b:1b:ac:cd:0a:61:d9:62: 79:df:66:15:01:83:5d:52:60:fe:e6:26:f1:38:66: eb:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:DB:CC:0C:C0:A2:86:01:DE:0B:B1:E2:47:27:21:7A:84:27:10:BD X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Y9vMDMCihgHeC7HiRycheoQnEL0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:7500::/32 Signature Algorithm: sha256WithRSAEncryption 50:ab:cf:75:85:58:ca:e1:1e:da:b9:ba:6a:83:35:89:44:52: 4b:0b:7b:9b:ac:d8:44:2f:cc:40:e0:b5:be:9b:ba:da:d9:1b: a6:3b:7e:4b:18:b7:a9:e1:ef:bf:c3:71:c8:f5:39:ab:59:b4: cc:0f:09:f0:66:ad:89:10:6a:1a:2a:c6:34:74:75:32:ee:88: 06:8f:57:2f:9c:3b:67:f8:3c:bd:a1:5a:10:0c:22:a3:2b:48: 51:2e:cf:16:47:ed:86:e9:4f:c0:12:c2:b7:ff:de:e7:ff:02: 2f:d7:e4:28:8b:0f:94:50:35:35:d7:de:93:f5:f1:6c:f6:db: e7:05:88:23:63:09:ea:7d:71:bb:77:22:4d:06:71:17:67:2d: 34:a4:6a:31:39:42:b2:f1:9d:1f:11:b7:1d:e7:c8:5c:28:6d: 73:65:88:85:15:10:09:75:b5:61:b7:10:a2:47:bf:ec:4c:a7: 3e:1f:54:51:eb:80:25:d3:5c:7c:da:c2:24:05:6d:15:58:d9: 22:26:7d:61:0b:a4:17:0a:38:29:21:87:c4:17:dc:44:f2:b3: bb:73:cb:f9:95:80:65:1c:3e:1a:45:cc:22:3f:4d:5f:49:46: 67:f5:18:a1:cc:0d:ed:78:f2:cb:37:b5:20:cd:6a:af:32:c9: b8:ab:25:72 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgICDOowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNDA4MjYw NTI3MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYzREJDQzBDQzBBMjg2 MDFERTBCQjFFMjQ3MjcyMTdBODQyNzEwQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+iCW0hpuXEzCkiz2CQbTfbg8zlx31I3hUZT3EF8g2VPALo7Px O2Kw+viYFKs2NmbgejzW8UWdmTByhje9su9I0/l+M1JxS6CgUGVAEqCW4SDfEL/I wN7oaSeORCjlCC84kOzZeTsSWG90+wKfli24bX0Rig0oJfRin94lJ8ayKD1hDkJD RAD6UT7JXFvBE/wky9vUNhWF7CXcxR1p9ytqVVv9LLS54/zCW8jlrQdtytuyOq23 xrH6spbymky5w14nBjFsKjJMxWinuShtjH15RJdLYhcuAhirg63xPpxxKS0CdkGg BGIbG6zNCmHZYnnfZhUBg11SYP7mJvE4ZustAgMBAAGjggH7MIIB9zAdBgNVHQ4E FgQUY9vMDMCihgHeC7HiRycheoQnEL0wHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL1k5dk1E TUNpaGdIZUM3SGlSeWNoZW9RbkVMMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAP MA0EAgACMAcDBQAkAnUAMA0GCSqGSIb3DQEBCwUAA4IBAQBQq891hVjK4R7aubpq gzWJRFJLC3ubrNhEL8xA4LW+m7ra2RumO35LGLep4e+/w3HI9TmrWbTMDwnwZq2J EGoaKsY0dHUy7ogGj1cvnDtn+Dy9oVoQDCKjK0hRLs8WR+2G6U/AEsK3/97n/wIv 1+Qoiw+UUDU1196T9fFs9tvnBYgjYwnqfXG7dyJNBnEXZy00pGoxOUKy8Z0fEbcd 58hcKG1zZYiFFRAJdbVhtxCiR7/sTKc+H1RR64Al01x82sIkBW0VWNkiJn1hC6QX CjgpIYfEF9xE8rO7c8v5lYBlHD4aRcwiP01fSUZn9RihzA3tePLLN7UgzWqvMsm4 qyVy -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org