$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/a9GkezbnJ5iCyv92_S_zxhNRMiY.roa File: a9GkezbnJ5iCyv92_S_zxhNRMiY.roa (raw, json) Hash identifier: MAZn2nBqC392680Ei0hoRHeQZVSupnAMcqDtZzQQsK4= Subject key identifier: 6B:D1:A4:7B:36:E7:27:98:82:CA:FF:76:FD:2F:F3:C6:13:51:32:26 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0D63 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/a9GkezbnJ5iCyv92_S_zxhNRMiY.roa Signing time: Mon 10 Feb 2025 13:58:39 +0000 ROA not before: Mon 10 Feb 2025 13:58:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 2402:7500:800::/40 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3427 (0xd63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Feb 10 13:58:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6BD1A47B36E7279882CAFF76FD2FF3C613513226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:09:81:ff:48:2e:04:f4:fb:f5:ab:a1:d5:fa: a0:f3:4f:5c:80:50:5a:7c:c9:ef:fd:2f:26:63:41: 1b:4f:03:dc:a6:34:d7:2a:8a:f4:84:c8:c2:85:66: 31:8e:60:d0:03:f5:f8:5e:85:4c:78:92:8c:2a:21: 06:74:d1:47:04:fb:11:dd:aa:d1:b3:68:86:36:91: f7:26:2a:49:21:e3:c9:7b:6d:5d:af:5f:5c:fe:e7: aa:c5:c0:7b:42:77:fb:ae:cc:54:f0:f5:3e:b3:5a: 0e:b6:c5:98:55:e0:92:19:04:0d:ab:f5:e9:23:87: 89:9b:79:43:6a:a3:c5:24:b4:58:6b:6f:d0:28:77: 1f:69:8c:7e:8c:1d:1b:ba:8d:02:40:88:cf:d6:8b: c4:e1:f4:df:22:7a:6b:9c:32:86:36:bb:dc:e7:f3: 01:fb:ee:6b:4e:f8:7d:ed:2b:f2:03:51:d8:31:ed: a3:27:70:4a:9d:61:a9:b2:65:80:c4:6b:28:d2:7a: fe:e4:51:6b:62:72:d6:4e:c4:82:b8:b7:9c:a9:58: 75:57:dd:c7:7c:74:c9:c3:58:eb:60:31:85:42:fe: 11:5d:9b:d9:25:5c:ab:a6:f8:70:21:d4:20:13:97: 70:66:f2:80:47:41:96:5f:c9:66:c4:2e:6a:4a:f1: a5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D1:A4:7B:36:E7:27:98:82:CA:FF:76:FD:2F:F3:C6:13:51:32:26 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/a9GkezbnJ5iCyv92_S_zxhNRMiY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:7500:800::/40 Signature Algorithm: sha256WithRSAEncryption cc:87:7f:21:7b:38:fd:98:17:98:04:e4:8a:53:45:f2:32:04: 92:a9:81:64:b8:1d:24:6c:08:2e:96:06:d0:2a:87:21:05:10: 22:1a:dd:86:8c:2c:7f:dd:d3:07:68:f4:7a:57:4a:8f:fe:28: 10:25:a0:9d:dd:17:8a:86:b9:bd:c1:66:7c:e5:17:a0:8f:af: f1:62:3a:f2:f2:52:9c:04:13:0b:97:cb:82:2f:e0:3f:ae:fc: ad:e8:79:73:09:30:b0:b4:6e:d1:5f:c2:d2:f4:91:39:b8:33: 26:ba:ed:fa:55:0f:02:ee:7d:3a:b9:97:c6:e0:76:14:b3:a8: 28:d9:b7:e1:95:14:f0:33:18:5d:70:9c:95:f2:53:23:44:a6: 66:0a:23:4a:7e:d5:33:e9:70:47:cc:5b:8b:7e:89:f8:a0:7e: 81:c9:51:2c:08:0b:eb:86:60:9a:94:d0:74:4d:6d:25:ce:ef: e4:95:c0:a7:c3:1c:ca:2e:ad:28:62:92:b8:e2:c6:67:a2:4d: ea:6c:00:dc:3f:c8:1a:27:8c:ab:89:6a:f9:19:9c:2d:ce:86: 1d:06:e9:fa:22:54:53:c6:2b:a2:58:dd:24:bf:50:4e:ae:01: 73:22:2c:a6:41:51:a7:20:d4:93:e6:3b:81:74:ab:58:03:96: e1:fd:e3:3d -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgICDWMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTAyMTAx MzU4MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZCRDFBNDdCMzZFNzI3 OTg4MkNBRkY3NkZEMkZGM0M2MTM1MTMyMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1CYH/SC4E9Pv1q6HV+qDzT1yAUFp8ye/9LyZjQRtPA9ymNNcq ivSEyMKFZjGOYNAD9fhehUx4kowqIQZ00UcE+xHdqtGzaIY2kfcmKkkh48l7bV2v X1z+56rFwHtCd/uuzFTw9T6zWg62xZhV4JIZBA2r9ekjh4mbeUNqo8UktFhrb9Ao dx9pjH6MHRu6jQJAiM/Wi8Th9N8iemucMoY2u9zn8wH77mtO+H3tK/IDUdgx7aMn cEqdYamyZYDEayjSev7kUWtictZOxIK4t5ypWHVX3cd8dMnDWOtgMYVC/hFdm9kl XKum+HAh1CATl3Bm8oBHQZZfyWbELmpK8aVhAgMBAAGjggH8MIIB+DAdBgNVHQ4E FgQUa9GkezbnJ5iCyv92/S/zxhNRMiYwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL2E5R2tl emJuSjVpQ3l2OTJfU196eGhOUk1pWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQ MA4EAgACMAgDBgAkAnUACDANBgkqhkiG9w0BAQsFAAOCAQEAzId/IXs4/ZgXmATk ilNF8jIEkqmBZLgdJGwILpYG0CqHIQUQIhrdhowsf93TB2j0eldKj/4oECWgnd0X ioa5vcFmfOUXoI+v8WI68vJSnAQTC5fLgi/gP678reh5cwkwsLRu0V/C0vSRObgz Jrrt+lUPAu59OrmXxuB2FLOoKNm34ZUU8DMYXXCclfJTI0SmZgojSn7VM+lwR8xb i36J+KB+gclRLAgL64ZgmpTQdE1tJc7v5JXAp8Mcyi6tKGKSuOLGZ6JN6mwA3D/I GieMq4lq+RmcLc6GHQbp+iJUU8YroljdJL9QTq4BcyIspkFRpyDUk+Y7gXSrWAOW 4f3jPQ== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:44 2025 by rpki-client on console.sobornost.net