$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/FlTNjDGoO49tQ1Yb-qw5tYjBhLs.roa File: FlTNjDGoO49tQ1Yb-qw5tYjBhLs.roa (raw, json) Hash identifier: djD8UAarhzHKavzTIlKWY0AvkjkpqYqjqPGa5/2qHgg= Subject key identifier: 16:54:CD:8C:31:A8:3B:8F:6D:43:56:1B:FA:AC:39:B5:88:C1:84:BB Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0E7A Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/FlTNjDGoO49tQ1Yb-qw5tYjBhLs.roa Signing time: Fri 22 Aug 2025 08:50:18 +0000 ROA not before: Fri 22 Aug 2025 08:50:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24158 IP address blocks: 115.80.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3706 (0xe7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 22 08:50:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1654CD8C31A83B8F6D43561BFAAC39B588C184BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:f1:35:ce:9f:4d:00:51:d1:60:49:a2:b7:17: 40:c2:14:7f:72:13:5c:64:70:4d:5c:33:03:6d:53: 24:c6:43:35:d6:7f:a6:80:af:85:96:00:8e:20:5b: aa:7d:5f:dd:34:f4:54:7f:9c:a9:d9:b8:19:4e:73: c5:be:96:61:ee:08:cb:8d:18:a6:7c:65:60:56:bf: 94:3e:2c:78:79:8a:f8:05:16:ab:e9:1a:3f:e5:55: b9:1e:08:ec:bb:63:df:fa:3a:4e:79:0f:77:7f:06: d2:af:19:1e:58:7f:8a:2d:b7:c8:35:96:08:ad:1a: d2:b6:3f:3e:fc:fb:d0:87:a5:cb:2e:93:8c:f0:09: 59:16:c4:2a:5e:6f:33:6e:7c:cb:a2:06:91:de:34: 6a:01:8f:57:ca:63:b2:32:76:7a:16:f2:51:c4:e8: 2e:60:d9:31:8e:a0:7b:b0:54:2e:a0:d1:a2:b1:4b: 97:81:51:04:25:d3:41:44:60:45:65:e5:2e:a4:e9: b8:8c:4b:4e:15:b3:d1:56:52:8e:40:0c:17:d5:ac: e2:4b:c4:ed:40:76:0b:16:25:40:36:c5:f9:f7:ae: c1:37:b9:30:6b:7f:e1:bd:d1:da:f2:5a:16:d5:fc: 26:66:29:97:57:b0:f3:ba:8c:31:aa:2f:df:f0:d5: 9e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:54:CD:8C:31:A8:3B:8F:6D:43:56:1B:FA:AC:39:B5:88:C1:84:BB X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/FlTNjDGoO49tQ1Yb-qw5tYjBhLs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.80.0.0/14 Signature Algorithm: sha256WithRSAEncryption d8:52:49:3f:f5:8e:dc:2a:fc:cb:8c:8c:6a:54:0e:8f:80:dc: 40:16:46:7d:cc:44:e8:fa:a5:de:88:f3:a6:60:53:35:20:02: 58:12:c3:d3:9b:64:bd:09:47:74:9a:8d:61:59:72:eb:52:ab: af:41:17:8a:b7:71:56:2d:d9:e9:cc:43:45:fc:74:49:c1:d2: 47:4d:6f:65:2c:82:28:86:60:de:c8:46:5b:96:53:d9:30:b5: b5:a9:d2:5a:c0:81:d5:e0:80:68:39:87:72:91:c2:36:fc:aa: 04:bd:4b:0f:4e:51:e6:22:52:e8:39:f2:87:f2:b0:dc:a1:67: 38:9c:e6:dd:bf:bb:76:2f:08:41:ea:50:80:29:32:fb:c0:1a: 04:7f:50:eb:36:46:a3:8e:89:d0:69:cc:68:5b:e2:1f:56:ff: af:cd:a2:e2:b5:a8:aa:34:1d:fd:21:f1:a7:a9:f4:0c:0a:91: 98:1a:ed:5b:66:63:34:81:cb:bc:c8:c2:11:b0:3b:b2:13:b3: 0f:d0:13:29:17:6c:f6:57:7f:a3:62:db:5c:d1:80:ed:a9:9d: 89:39:82:19:73:75:0b:b6:14:c5:a5:ee:8f:d8:5d:0b:7f:99: 7b:68:1f:03:07:a7:7d:ba:a4:15:af:20:62:99:ac:9f:1e:23: a4:24:8e:d7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgICDnowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTA4MjIw ODUwMThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE2NTRDRDhDMzFBODNC OEY2RDQzNTYxQkZBQUMzOUI1ODhDMTg0QkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDx8TXOn00AUdFgSaK3F0DCFH9yE1xkcE1cMwNtUyTGQzXWf6aA r4WWAI4gW6p9X9009FR/nKnZuBlOc8W+lmHuCMuNGKZ8ZWBWv5Q+LHh5ivgFFqvp Gj/lVbkeCOy7Y9/6Ok55D3d/BtKvGR5Yf4ott8g1lgitGtK2Pz78+9CHpcsuk4zw CVkWxCpebzNufMuiBpHeNGoBj1fKY7IydnoW8lHE6C5g2TGOoHuwVC6g0aKxS5eB UQQl00FEYEVl5S6k6biMS04Vs9FWUo5ADBfVrOJLxO1AdgsWJUA2xfn3rsE3uTBr f+G90dryWhbV/CZmKZdXsPO6jDGqL9/w1Z7XAgMBAAGjggH5MIIB9TAdBgNVHQ4E FgQUFlTNjDGoO49tQ1Yb+qw5tYjBhLswHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL0ZsVE5q REdvTzQ5dFExWWItcXc1dFlqQmhMcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzAN MAsEAgABMAUDAwJzUDANBgkqhkiG9w0BAQsFAAOCAQEA2FJJP/WO3Cr8y4yMalQO j4DcQBZGfcxE6Pql3ojzpmBTNSACWBLD05tkvQlHdJqNYVly61Krr0EXirdxVi3Z 6cxDRfx0ScHSR01vZSyCKIZg3shGW5ZT2TC1tanSWsCB1eCAaDmHcpHCNvyqBL1L D05R5iJS6Dnyh/Kw3KFnOJzm3b+7di8IQepQgCky+8AaBH9Q6zZGo46J0GnMaFvi H1b/r82i4rWoqjQd/SHxp6n0DAqRmBrtW2ZjNIHLvMjCEbA7shOzD9ATKRds9ld/ o2LbXNGA7amdiTmCGXN1C7YUxaXuj9hdC3+Ze2gfAwenfbqkFa8gYpmsnx4jpCSO 1w== -----END CERTIFICATE-----Generated at Sun Aug 24 09:39:11 2025 by rpki-client