$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/jZYbN3fQAt-R5BvqcdSCKnJNq7g.roa File: jZYbN3fQAt-R5BvqcdSCKnJNq7g.roa (raw, json) Hash identifier: zF7rhza+tSExHSQf8VI2RRPD0xKdYWmCvyZIf6MZuuQ= Subject key identifier: 8D:96:1B:37:77:D0:02:DF:91:E4:1B:EA:71:D4:82:2A:72:4D:AB:B8 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0CD3 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/jZYbN3fQAt-R5BvqcdSCKnJNq7g.roa Signing time: Mon 26 Aug 2024 05:27:01 +0000 ROA not before: Mon 26 Aug 2024 05:27:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 124.29.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3283 (0xcd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 26 05:27:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8D961B3777D002DF91E41BEA71D4822A724DABB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:61:7a:d2:58:b8:b0:7c:b1:a1:9b:41:50:37: 0f:29:49:0e:d9:ff:86:81:e8:a8:46:ac:27:19:fa: aa:eb:79:47:30:ce:56:08:ac:ba:ce:96:3f:81:27: 9e:e2:ab:f5:b9:b2:19:fe:a7:a3:1f:80:fd:b7:fb: 78:5b:89:e9:a1:96:b0:a1:fb:38:3d:e5:3c:03:31: 62:7a:3f:76:f2:6d:5b:78:f5:57:04:7a:62:af:18: b0:76:a1:05:5c:ba:eb:18:52:34:c9:0a:eb:82:70: 51:ad:01:8d:0b:2e:61:10:9f:20:15:82:d5:85:50: d1:38:ee:08:f7:8f:d7:ff:79:d4:22:87:de:aa:0d: 59:a4:72:ba:8e:f9:10:ce:b3:1b:d3:1e:c9:4a:b1: f9:36:c9:91:f9:21:5a:50:60:96:7f:3a:63:08:19: d3:1c:ae:cc:41:a4:7f:3b:7f:36:b5:9c:be:02:98: 33:57:1e:c1:50:ba:ca:29:51:e9:8b:d5:c7:2f:24: 0c:d2:35:d9:83:da:a3:ec:f9:8b:41:fd:44:68:fa: 4c:28:3e:ec:3f:38:59:c3:69:4f:52:1e:2f:eb:bd: 43:ac:f0:a8:15:c5:1b:1a:5a:b2:29:98:0c:e1:13: 3e:ea:74:d0:2f:99:9d:9e:48:cf:5b:ab:b0:d5:89: 40:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:96:1B:37:77:D0:02:DF:91:E4:1B:EA:71:D4:82:2A:72:4D:AB:B8 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/jZYbN3fQAt-R5BvqcdSCKnJNq7g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.29.128.0/19 Signature Algorithm: sha256WithRSAEncryption ce:9c:d8:c9:65:82:1d:dc:f8:54:38:82:cd:dc:28:57:a8:26: e4:32:e0:10:bf:81:80:65:9b:7a:b4:4f:5e:c6:b3:b4:02:a0: 4e:60:5f:d5:30:65:25:a0:fa:3b:50:e9:b8:d8:ee:7e:74:f2: 54:67:d5:0e:cf:8c:22:2a:fd:63:bf:4f:ef:11:e8:2c:2a:ad: cc:5d:2b:75:c0:a4:25:35:5e:5f:f5:14:a4:72:b3:34:cd:50: c1:50:2e:f2:c6:ea:50:6d:b8:11:10:5b:f6:bd:16:23:96:44: c9:11:6d:66:bc:67:4b:c7:70:38:75:15:51:83:42:39:fe:08: 6c:05:c3:d4:7a:7f:d2:78:5b:e6:ea:e9:bf:bf:19:89:98:4e: e6:90:6b:f2:f5:1d:e3:ac:77:ef:9e:cf:d7:63:5b:a6:b9:9d: 86:71:22:64:f2:fc:ac:d2:af:e2:72:96:85:bc:4b:56:f7:06: f3:79:12:49:40:bf:33:d6:6d:41:0d:42:6c:f7:bd:71:40:f8: ea:2a:b9:28:68:df:13:06:12:c6:04:69:8b:c8:3b:d5:eb:c0: f8:fe:f9:56:7f:7d:a6:15:2f:82:21:ab:dd:0c:50:7f:c0:15: b1:24:f0:c1:e6:8b:67:52:96:7f:ab:a2:53:31:b1:d3:79:d1: e9:fa:d3:f2 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDNMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNDA4MjYw NTI3MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhEOTYxQjM3NzdEMDAy REY5MUU0MUJFQTcxRDQ4MjJBNzI0REFCQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSYXrSWLiwfLGhm0FQNw8pSQ7Z/4aB6KhGrCcZ+qrreUcwzlYI rLrOlj+BJ57iq/W5shn+p6MfgP23+3hbiemhlrCh+zg95TwDMWJ6P3bybVt49VcE emKvGLB2oQVcuusYUjTJCuuCcFGtAY0LLmEQnyAVgtWFUNE47gj3j9f/edQih96q DVmkcrqO+RDOsxvTHslKsfk2yZH5IVpQYJZ/OmMIGdMcrsxBpH87fza1nL4CmDNX HsFQusopUemL1ccvJAzSNdmD2qPs+YtB/URo+kwoPuw/OFnDaU9SHi/rvUOs8KgV xRsaWrIpmAzhEz7qdNAvmZ2eSM9bq7DViUDdAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUjZYbN3fQAt+R5BvqcdSCKnJNq7gwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL2paWWJO M2ZRQXQtUjVCdnFjZFNDS25KTnE3Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAV8HYAwDQYJKoZIhvcNAQELBQADggEBAM6c2Mllgh3c+FQ4gs3c KFeoJuQy4BC/gYBlm3q0T17Gs7QCoE5gX9UwZSWg+jtQ6bjY7n508lRn1Q7PjCIq /WO/T+8R6CwqrcxdK3XApCU1Xl/1FKRyszTNUMFQLvLG6lBtuBEQW/a9FiOWRMkR bWa8Z0vHcDh1FVGDQjn+CGwFw9R6f9J4W+bq6b+/GYmYTuaQa/L1HeOsd++ez9dj W6a5nYZxImTy/KzSr+JyloW8S1b3BvN5EklAvzPWbUENQmz3vXFA+OoquSho3xMG EsYEaYvIO9XrwPj++VZ/faYVL4Ihq90MUH/AFbEk8MHmi2dSln+rolMxsdN50en6 0/I= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org