$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/m3W-C1l9XeacJfcVzvOmPfn8ELY.roa File: m3W-C1l9XeacJfcVzvOmPfn8ELY.roa (raw, json) Hash identifier: oJ4aAlj0UTVRbe3YRPiyxw1wZwaRAUF8532dNBQBOdk= Subject key identifier: 9B:75:BE:0B:59:7D:5D:E6:9C:25:F7:15:CE:F3:A6:3D:F9:FC:10:B6 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0D6B Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/m3W-C1l9XeacJfcVzvOmPfn8ELY.roa Signing time: Mon 10 Feb 2025 13:58:41 +0000 ROA not before: Mon 10 Feb 2025 13:58:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 2402:7500::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3435 (0xd6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Feb 10 13:58:41 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9B75BE0B597D5DE69C25F715CEF3A63DF9FC10B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ed:dd:d7:05:2a:d8:ab:99:37:24:97:61:8d: d0:ed:80:a7:53:d0:9d:b9:ea:41:44:1c:7e:d8:ce: df:8a:b4:af:66:09:9c:5c:fd:ff:2d:15:3d:26:b1: 94:36:59:52:09:71:e1:66:23:2f:ca:18:0c:7b:a9: 88:f1:97:a3:a7:82:66:69:c9:45:f7:fa:bb:13:98: cb:f9:e2:b4:e7:43:4f:5a:c8:a8:90:f4:89:9d:18: 4c:93:22:1f:e3:bc:d3:47:dc:f2:32:8f:dd:1d:78: d5:aa:69:d5:a1:e0:7a:8a:7b:59:36:75:31:59:f5: 14:6d:f5:25:e0:aa:a2:17:0d:be:e6:c0:34:ae:db: 50:08:21:69:6d:d0:db:a0:a6:10:32:cc:62:bd:ae: 05:cd:7d:b0:21:e1:3b:0f:b5:e9:49:0f:d3:7b:0e: a1:56:54:7f:85:8a:04:59:d4:a2:f0:8d:0c:90:2e: 36:cc:3d:0f:de:66:34:ac:84:55:5f:c6:ce:36:2f: f8:77:c8:27:13:5b:f6:7e:4b:a2:bf:0b:2d:d2:78: a8:bb:30:9e:53:35:79:25:77:ba:65:36:dd:be:a6: d2:30:88:0d:34:94:a3:a3:3e:e1:94:df:2f:27:4c: d1:55:c8:61:b6:47:00:52:20:f0:27:f5:23:50:01: 14:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:75:BE:0B:59:7D:5D:E6:9C:25:F7:15:CE:F3:A6:3D:F9:FC:10:B6 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/m3W-C1l9XeacJfcVzvOmPfn8ELY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:7500::/32 Signature Algorithm: sha256WithRSAEncryption 0a:5a:9e:68:c2:44:12:c1:00:60:ce:0e:c0:5e:7a:31:ca:94: 26:75:bf:0d:1b:4a:b2:05:1e:98:f8:17:ef:09:14:d4:56:8a: 04:9f:40:e1:82:2c:a3:b9:83:7e:07:c3:2d:3a:78:f8:ab:c4: a4:a1:ad:93:e7:f9:6e:82:56:71:9f:73:97:88:a3:a1:bb:e2: 10:ab:9c:9b:cd:71:8f:87:37:7f:63:ce:87:5a:e4:88:1e:98: 74:a5:5d:c1:7e:c0:79:7f:16:d5:da:d7:d5:68:a7:43:eb:d0: ea:63:c9:0c:fa:18:ce:0e:d8:39:88:8d:80:25:62:b6:32:c6: ba:7b:14:88:60:f8:ae:28:75:c9:8b:a7:92:d7:56:0f:f1:37: c4:4f:a5:13:1b:1a:e8:82:c6:e1:49:c9:b2:5a:eb:67:d6:cb: c5:99:02:90:4d:a8:fd:fb:c7:fa:d2:bc:b1:0c:b9:47:e1:9d: 19:66:cc:93:ef:37:3b:4f:2a:e2:91:2d:5d:e2:c3:35:bb:ae: 32:29:4e:cd:4f:ea:8d:77:49:b7:3b:44:36:b8:4d:a0:e2:c9: 3a:60:04:e3:82:e6:a8:54:27:01:0d:c9:a8:57:59:d7:f5:08: fd:ae:b2:3c:66:fe:52:57:80:cd:21:55:10:da:d4:13:f9:d1: d5:cf:ee:48 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgICDWswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTAyMTAx MzU4NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlCNzVCRTBCNTk3RDVE RTY5QzI1RjcxNUNFRjNBNjNERjlGQzEwQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCy7d3XBSrYq5k3JJdhjdDtgKdT0J256kFEHH7Yzt+KtK9mCZxc /f8tFT0msZQ2WVIJceFmIy/KGAx7qYjxl6OngmZpyUX3+rsTmMv54rTnQ09ayKiQ 9ImdGEyTIh/jvNNH3PIyj90deNWqadWh4HqKe1k2dTFZ9RRt9SXgqqIXDb7mwDSu 21AIIWlt0NugphAyzGK9rgXNfbAh4TsPtelJD9N7DqFWVH+FigRZ1KLwjQyQLjbM PQ/eZjSshFVfxs42L/h3yCcTW/Z+S6K/Cy3SeKi7MJ5TNXkld7plNt2+ptIwiA00 lKOjPuGU3y8nTNFVyGG2RwBSIPAn9SNQARTBAgMBAAGjggH7MIIB9zAdBgNVHQ4E FgQUm3W+C1l9XeacJfcVzvOmPfn8ELYwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL20zVy1D MWw5WGVhY0pmY1Z6dk9tUGZuOEVMWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAP MA0EAgACMAcDBQAkAnUAMA0GCSqGSIb3DQEBCwUAA4IBAQAKWp5owkQSwQBgzg7A XnoxypQmdb8NG0qyBR6Y+BfvCRTUVooEn0DhgiyjuYN+B8MtOnj4q8Skoa2T5/lu glZxn3OXiKOhu+IQq5ybzXGPhzd/Y86HWuSIHph0pV3BfsB5fxbV2tfVaKdD69Dq Y8kM+hjODtg5iI2AJWK2Msa6exSIYPiuKHXJi6eS11YP8TfET6UTGxrogsbhScmy Wutn1svFmQKQTaj9+8f60ryxDLlH4Z0ZZsyT7zc7TyrikS1d4sM1u64yKU7NT+qN d0m3O0Q2uE2g4sk6YATjguaoVCcBDcmoV1nX9Qj9rrI8Zv5SV4DNIVUQ2tQT+dHV z+5I -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:44 2025 by rpki-client on console.sobornost.net