$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/L7ooTkthLSQ099qVgVIbvOW189w.roa File: L7ooTkthLSQ099qVgVIbvOW189w.roa (raw, json) Hash identifier: 0QA0YKtld+Zgj008W2ubvK0FfhdNUOu8e2bOYYoRK0g= Subject key identifier: 2F:BA:28:4E:4B:61:2D:24:34:F7:DA:95:81:52:1B:BC:E5:B5:F3:DC Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0E77 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/L7ooTkthLSQ099qVgVIbvOW189w.roa Signing time: Fri 22 Aug 2025 08:50:17 +0000 ROA not before: Fri 22 Aug 2025 08:50:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24157 IP address blocks: 43.255.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3703 (0xe77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 22 08:50:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2FBA284E4B612D2434F7DA9581521BBCE5B5F3DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b4:13:f0:37:86:e6:f8:ea:9b:51:1b:9a:09: b4:26:55:8c:dd:d2:25:56:56:fe:7f:ee:d6:20:e8: 12:e4:58:fe:a7:10:1a:54:53:6a:0b:15:a2:72:c2: 1e:64:41:5a:5b:6a:04:30:84:dd:7e:64:58:85:7a: 3b:b3:88:6f:ac:73:0d:b7:f9:27:8b:e5:92:4a:aa: 1a:35:cd:fc:95:ad:e6:6d:fc:ae:c8:7d:97:72:d9: 86:bb:0a:da:c2:cc:a4:fa:a8:88:e9:0e:c8:30:89: 00:d2:ff:a6:9c:63:7b:48:84:51:1c:aa:4b:79:6b: fe:ab:1f:80:68:d3:53:1e:06:2c:8c:51:cc:b4:5a: ab:c9:72:e9:29:d5:8c:f7:7b:14:4f:dc:5c:c1:38: fb:b5:48:01:e5:82:e9:52:03:79:13:b6:cf:01:58: 1b:9e:94:40:34:55:e7:80:88:fc:16:7c:2b:fb:d8: 23:fa:fa:0a:43:e3:d3:5d:ef:97:b6:43:b6:05:7c: df:b9:8a:1a:4f:7c:45:af:2d:de:b7:14:66:59:49: fe:f9:f7:08:62:d6:b5:e8:75:2b:96:c4:9a:57:b3: e6:e9:72:60:4a:70:f9:ed:14:4b:ae:d9:d6:ba:ec: 58:7b:63:ba:16:33:91:8c:28:39:15:76:9b:38:f5: 3b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BA:28:4E:4B:61:2D:24:34:F7:DA:95:81:52:1B:BC:E5:B5:F3:DC X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/L7ooTkthLSQ099qVgVIbvOW189w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.255.180.0/22 Signature Algorithm: sha256WithRSAEncryption 35:91:86:38:1f:5d:61:61:9c:23:f9:a1:fb:34:31:6f:92:b6: bb:51:73:39:11:c7:bb:d4:15:43:20:6d:22:eb:2b:d6:2f:aa: 60:25:e8:67:5a:80:5b:fd:9f:e7:c2:c8:5e:5e:ce:0e:3b:f0: f5:46:1c:90:40:25:67:b1:d1:37:a2:78:37:6d:ce:36:eb:5d: d7:e5:0b:08:37:f2:e4:bf:52:e5:b4:a2:b1:77:c8:de:ca:5c: e4:bc:38:84:a4:86:38:40:5f:03:d1:c9:5a:da:bb:3f:d1:68: 4f:85:e2:91:d5:e1:ef:57:23:75:6c:db:c4:b8:96:e4:7c:ed: 8f:df:87:8b:0c:cd:da:d3:20:c3:2a:ca:1c:23:89:26:94:e0: 6f:d9:7b:b9:d8:71:d2:ff:ba:0c:5d:bf:5b:eb:a3:36:78:d4: 0c:fc:85:24:1f:3e:c9:b4:dd:e0:e5:4a:35:4c:55:e1:01:29: c1:6e:45:f8:a5:2c:a4:55:12:aa:9f:66:f7:bb:9c:e5:ec:08: e4:85:02:77:b4:5c:92:80:23:8e:6f:2c:c3:99:a8:96:4c:ce: 52:0c:3a:0d:b2:f0:12:34:78:25:f5:f3:34:95:4a:bb:7c:9f: 0e:70:2d:ec:5c:e4:0f:32:90:d9:4e:a2:a1:ac:89:7f:25:3a: a4:a9:53:15 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDncwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTA4MjIw ODUwMTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJGQkEyODRFNEI2MTJE MjQzNEY3REE5NTgxNTIxQkJDRTVCNUYzREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCtBPwN4bm+OqbURuaCbQmVYzd0iVWVv5/7tYg6BLkWP6nEBpU U2oLFaJywh5kQVpbagQwhN1+ZFiFejuziG+scw23+SeL5ZJKqho1zfyVreZt/K7I fZdy2Ya7CtrCzKT6qIjpDsgwiQDS/6acY3tIhFEcqkt5a/6rH4Bo01MeBiyMUcy0 WqvJcukp1Yz3exRP3FzBOPu1SAHlgulSA3kTts8BWBuelEA0VeeAiPwWfCv72CP6 +gpD49Nd75e2Q7YFfN+5ihpPfEWvLd63FGZZSf759whi1rXodSuWxJpXs+bpcmBK cPntFEuu2da67Fh7Y7oWM5GMKDkVdps49TtxAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUL7ooTkthLSQ099qVgVIbvOW189wwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL0w3b29U a3RoTFNRMDk5cVZnVklidk9XMTg5dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAIr/7QwDQYJKoZIhvcNAQELBQADggEBADWRhjgfXWFhnCP5ofs0 MW+StrtRczkRx7vUFUMgbSLrK9YvqmAl6GdagFv9n+fCyF5ezg478PVGHJBAJWex 0TeieDdtzjbrXdflCwg38uS/UuW0orF3yN7KXOS8OISkhjhAXwPRyVrauz/RaE+F 4pHV4e9XI3Vs28S4luR87Y/fh4sMzdrTIMMqyhwjiSaU4G/Ze7nYcdL/ugxdv1vr ozZ41Az8hSQfPsm03eDlSjVMVeEBKcFuRfilLKRVEqqfZve7nOXsCOSFAne0XJKA I45vLMOZqJZMzlIMOg2y8BI0eCX18zSVSrt8nw5wLexc5A8ykNlOoqGsiX8lOqSp UxU= -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:14 2025 by rpki-client