$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/H0TFJ28RvayVeC41mvi25wMdqc0.roa File: H0TFJ28RvayVeC41mvi25wMdqc0.roa (raw, json) Hash identifier: CJHJ8NLNHC47h2MGnbLw4Xk5QVSdRbIl/HX/9Ff9r5g= Subject key identifier: 1F:44:C5:27:6F:11:BD:AC:95:78:2E:35:9A:F8:B6:E7:03:1D:A9:CD Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0E70 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/H0TFJ28RvayVeC41mvi25wMdqc0.roa Signing time: Fri 22 Aug 2025 08:50:15 +0000 ROA not before: Fri 22 Aug 2025 08:50:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24158 IP address blocks: 124.29.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3696 (0xe70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 22 08:50:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1F44C5276F11BDAC95782E359AF8B6E7031DA9CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6c:a5:8b:b7:98:23:5a:ce:07:f0:d5:83:23: b1:fb:a0:bd:a3:1c:42:78:6d:aa:c5:b7:de:72:c7: df:09:ee:8e:88:ad:72:3d:aa:a3:e1:5c:70:13:e1: eb:6a:4d:73:ac:32:b6:31:e6:f1:cb:6b:c3:75:44: 34:d6:e7:1a:f6:ac:1e:99:e4:3f:54:5e:8a:af:a0: 87:1b:fb:e5:57:84:dc:31:26:fa:1b:fa:c7:8e:4b: 4f:04:17:58:c8:ce:07:2a:10:17:29:48:b5:ed:f3: bc:79:99:db:95:ba:69:73:f2:3f:d1:2a:97:ab:a1: 29:89:ce:49:32:89:30:2f:46:4d:e7:e3:a2:96:5f: e4:73:61:bf:72:2e:7f:4b:be:c4:e7:d0:30:4c:e8: 65:b7:78:15:fa:48:62:49:7d:f1:86:e2:d4:40:24: 17:5b:62:08:90:eb:b4:eb:d6:97:7b:9f:94:23:81: 3f:a8:7e:31:27:63:1f:c7:48:e7:8e:a1:be:88:81: eb:0e:1d:d4:59:f2:ac:74:23:40:5c:0a:98:9b:45: d2:a4:2e:e4:33:77:b3:24:42:b5:2b:a2:cc:08:18: 67:59:b7:07:18:93:1b:63:65:5c:e1:a1:6b:6e:f9: 64:9d:15:e8:fc:ce:45:31:fd:6c:97:22:ed:ea:fb: ff:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:44:C5:27:6F:11:BD:AC:95:78:2E:35:9A:F8:B6:E7:03:1D:A9:CD X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/H0TFJ28RvayVeC41mvi25wMdqc0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.29.128.0/19 Signature Algorithm: sha256WithRSAEncryption c8:ee:a8:60:7c:b8:3c:29:ab:2e:c9:2c:8f:c5:15:9f:d6:e4: 97:eb:59:39:9a:ae:94:ee:39:b0:e9:31:28:0c:f6:49:c4:6b: bb:ff:af:f6:79:97:00:89:e2:79:ab:e6:98:5e:7f:f8:5a:0f: 96:2a:0c:90:20:a5:f7:70:89:bd:a8:54:ec:55:48:a9:a3:7d: e2:e8:66:3a:8f:62:11:0c:c6:41:61:89:17:a0:e4:88:f2:26: 06:59:3e:20:3b:0f:9c:4f:53:dc:15:57:73:16:f5:c4:50:3a: db:e8:3f:88:b7:b7:db:95:57:3c:21:49:29:ce:90:18:69:5c: f6:54:81:12:b9:ea:18:c6:44:40:f6:3c:91:bd:1f:a7:67:d2: d9:22:e6:13:8a:0a:00:a3:b7:05:79:05:55:65:68:ec:b3:62: 9d:e1:ea:4e:55:56:7f:50:66:7f:aa:b0:fd:8d:74:a3:91:01: c2:63:24:a6:2f:6d:69:c2:c8:2f:60:fc:77:4b:92:12:95:28: 68:8c:77:91:a3:06:d7:74:f5:77:b9:72:d3:49:6c:5d:91:51: cc:db:06:5f:fe:07:75:4f:18:44:df:1b:ac:54:15:0c:37:01: 10:d8:0e:c6:01:36:e3:b4:80:83:22:1b:5f:db:1f:7e:b7:eb: 28:02:e5:a5 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDnAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTA4MjIw ODUwMTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFGNDRDNTI3NkYxMUJE QUM5NTc4MkUzNTlBRjhCNkU3MDMxREE5Q0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGbKWLt5gjWs4H8NWDI7H7oL2jHEJ4barFt95yx98J7o6IrXI9 qqPhXHAT4etqTXOsMrYx5vHLa8N1RDTW5xr2rB6Z5D9UXoqvoIcb++VXhNwxJvob +seOS08EF1jIzgcqEBcpSLXt87x5mduVumlz8j/RKperoSmJzkkyiTAvRk3n46KW X+RzYb9yLn9LvsTn0DBM6GW3eBX6SGJJffGG4tRAJBdbYgiQ67Tr1pd7n5QjgT+o fjEnYx/HSOeOob6IgesOHdRZ8qx0I0BcCpibRdKkLuQzd7MkQrUroswIGGdZtwcY kxtjZVzhoWtu+WSdFej8zkUx/WyXIu3q+//vAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUH0TFJ28RvayVeC41mvi25wMdqc0wHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL0gwVEZK MjhSdmF5VmVDNDFtdmkyNXdNZHFjMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAV8HYAwDQYJKoZIhvcNAQELBQADggEBAMjuqGB8uDwpqy7JLI/F FZ/W5JfrWTmarpTuObDpMSgM9knEa7v/r/Z5lwCJ4nmr5phef/haD5YqDJAgpfdw ib2oVOxVSKmjfeLoZjqPYhEMxkFhiReg5IjyJgZZPiA7D5xPU9wVV3MW9cRQOtvo P4i3t9uVVzwhSSnOkBhpXPZUgRK56hjGRED2PJG9H6dn0tki5hOKCgCjtwV5BVVl aOyzYp3h6k5VVn9QZn+qsP2NdKORAcJjJKYvbWnCyC9g/HdLkhKVKGiMd5GjBtd0 9Xe5ctNJbF2RUczbBl/+B3VPGETfG6xUFQw3ARDYDsYBNuO0gIMiG1/bH3636ygC 5aU= -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:53 2025 by rpki-client