$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/zU2Bd5RbW9IraJAvFPO-3pV6IA4.roa File: zU2Bd5RbW9IraJAvFPO-3pV6IA4.roa (raw, json) Hash identifier: ct4JSMNSrLRQvYYVWNvMNKdmtoqkJ4F+U9D8tcWC9+w= Subject key identifier: CD:4D:81:77:94:5B:5B:D2:2B:68:90:2F:14:F3:BE:DE:95:7A:20:0E Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0CE9 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/zU2Bd5RbW9IraJAvFPO-3pV6IA4.roa Signing time: Mon 26 Aug 2024 05:27:06 +0000 ROA not before: Mon 26 Aug 2024 05:27:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24157 IP address blocks: 110.50.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3305 (0xce9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 26 05:27:06 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CD4D8177945B5BD22B68902F14F3BEDE957A200E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:60:de:bd:a6:70:1a:fe:2d:1c:fa:ab:9a:1c: c5:eb:55:81:95:15:79:fd:ff:9a:46:89:ee:65:10: 15:7b:3e:68:6f:b9:26:5d:12:c0:1b:45:77:4c:d4: ea:62:ab:28:68:48:fd:51:93:8b:20:69:34:a5:2a: 68:33:d6:c8:26:0f:f8:a0:3c:98:45:46:73:2b:93: e7:ca:48:fd:01:67:3f:64:af:78:5e:5b:30:ec:01: 23:31:5c:91:e0:cf:95:ff:8c:fe:e9:8e:6c:2a:a7: 76:4a:00:d4:99:36:28:e6:f3:5e:04:31:f0:aa:03: ba:ff:0f:99:7f:c6:89:95:01:69:dc:15:3a:ff:58: 6f:f2:7f:40:88:07:20:6b:ef:e5:0f:5d:ef:5b:89: 2b:4f:6c:16:2a:fc:f4:77:c3:61:4b:e5:49:0e:06: 40:8a:bb:ea:24:f1:86:34:12:ed:33:4c:3d:1d:16: 0b:69:da:83:b7:46:08:57:65:85:1e:12:2f:84:67: 98:d6:8e:f8:f7:7d:a3:c8:84:cd:57:e3:d7:ad:ab: ac:f4:10:04:2d:fb:a4:a7:54:eb:ce:12:f8:a1:43: a1:7c:15:93:fe:1f:53:ab:c5:f3:0f:d4:ce:ea:d3: a3:04:34:e3:1c:68:57:02:04:ee:bf:99:81:fe:a3: 9f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:4D:81:77:94:5B:5B:D2:2B:68:90:2F:14:F3:BE:DE:95:7A:20:0E X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/zU2Bd5RbW9IraJAvFPO-3pV6IA4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.50.128.0/18 Signature Algorithm: sha256WithRSAEncryption 6c:75:e1:80:ed:fa:0a:9e:92:6a:97:c1:d0:18:81:df:7a:e6: d2:2b:24:4e:58:ad:de:d0:1a:09:b9:91:d5:8d:0d:21:8b:07: a3:b9:9e:41:cb:67:33:2d:dc:13:c4:9f:cf:02:ce:7c:a0:eb: c9:21:44:20:70:9c:2e:ab:9c:3b:7d:25:75:b0:ad:3d:8d:49: b7:8e:0e:33:7a:23:b0:d4:79:42:51:46:66:6c:9a:03:de:38: ac:f3:5f:89:e7:49:6c:7b:25:39:39:7a:89:32:67:98:4c:1a: 3a:04:d4:06:0d:74:64:5d:c2:a5:cd:f1:ea:bf:9b:c2:5e:35: 0c:7d:2d:f3:0e:d9:8e:b7:c3:3b:b0:f0:89:a2:ee:c0:ce:36: b4:1d:8f:2b:18:f9:01:e8:fc:0c:e5:03:cb:e2:80:a1:96:30: 10:da:8b:39:e7:60:5f:2e:a5:59:27:0b:d4:23:80:3d:ae:d4: 79:4d:cb:9d:a1:f2:e6:c8:ed:8b:40:7c:47:8b:e2:50:84:08: 64:5c:8c:cd:30:b1:7c:95:28:64:91:c8:f8:89:2a:5a:b4:33: 69:63:d8:4b:29:54:fc:8e:a2:3d:b1:df:81:ec:0a:ca:28:61: 67:2e:06:2b:42:7a:bc:48:4c:a6:ef:bf:84:f8:18:ca:0d:e0: 9b:e0:3b:91 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDOkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNDA4MjYw NTI3MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENENEQ4MTc3OTQ1QjVC RDIyQjY4OTAyRjE0RjNCRURFOTU3QTIwMEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/YN69pnAa/i0c+quaHMXrVYGVFXn9/5pGie5lEBV7PmhvuSZd EsAbRXdM1OpiqyhoSP1Rk4sgaTSlKmgz1sgmD/igPJhFRnMrk+fKSP0BZz9kr3he WzDsASMxXJHgz5X/jP7pjmwqp3ZKANSZNijm814EMfCqA7r/D5l/xomVAWncFTr/ WG/yf0CIByBr7+UPXe9biStPbBYq/PR3w2FL5UkOBkCKu+ok8YY0Eu0zTD0dFgtp 2oO3RghXZYUeEi+EZ5jWjvj3faPIhM1X49etq6z0EAQt+6SnVOvOEvihQ6F8FZP+ H1OrxfMP1M7q06MENOMcaFcCBO6/mYH+o5+zAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUzU2Bd5RbW9IraJAvFPO+3pV6IA4wHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL3pVMkJk NVJiVzlJcmFKQXZGUE8tM3BWNklBNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAZuMoAwDQYJKoZIhvcNAQELBQADggEBAGx14YDt+gqekmqXwdAY gd965tIrJE5Yrd7QGgm5kdWNDSGLB6O5nkHLZzMt3BPEn88Cznyg68khRCBwnC6r nDt9JXWwrT2NSbeODjN6I7DUeUJRRmZsmgPeOKzzX4nnSWx7JTk5eokyZ5hMGjoE 1AYNdGRdwqXN8eq/m8JeNQx9LfMO2Y63wzuw8Imi7sDONrQdjysY+QHo/AzlA8vi gKGWMBDaiznnYF8upVknC9QjgD2u1HlNy52h8ubI7YtAfEeL4lCECGRcjM0wsXyV KGSRyPiJKlq0M2lj2EspVPyOoj2x34HsCsooYWcuBitCerxITKbvv4T4GMoN4Jvg O5E= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org