$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/OuXWb26C5YX__8HWvJAEDlUt3lQ.roa File: OuXWb26C5YX__8HWvJAEDlUt3lQ.roa (raw, json) Hash identifier: KGfZIxcIq5ODG+8puxvCZCj3QQR/6Saal+VwTXgZ6iQ= Subject key identifier: 3A:E5:D6:6F:6E:82:E5:85:FF:FF:C1:D6:BC:90:04:0E:55:2D:DE:54 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0E6F Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/OuXWb26C5YX__8HWvJAEDlUt3lQ.roa Signing time: Fri 22 Aug 2025 08:50:15 +0000 ROA not before: Fri 22 Aug 2025 08:50:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24158 IP address blocks: 124.29.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3695 (0xe6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 22 08:50:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3AE5D66F6E82E585FFFFC1D6BC90040E552DDE54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ca:11:ef:07:bd:90:89:a7:24:1b:86:9a:b6: a1:0e:df:69:f1:53:c1:1a:9a:28:2d:b4:af:43:5c: 7b:f0:7b:50:e6:59:8c:a2:5f:37:63:5c:59:b6:70: 95:c5:f2:1b:ca:4a:8a:6c:91:bb:9b:31:0e:37:70: 62:66:fa:27:30:ba:7c:d7:b3:fe:11:18:a3:93:a6: d6:cc:d7:00:d2:ed:83:b5:f9:f1:3e:e0:4c:95:3a: 50:5c:68:bc:e4:e4:e3:d1:b8:fa:4a:f3:6a:45:ea: a4:d3:0a:77:f6:d4:53:32:ee:af:70:01:66:7d:00: 42:e4:1a:ec:6d:0b:ba:59:c7:c8:f0:b4:16:56:42: 21:ac:ff:bc:c1:9b:a8:53:3c:cb:77:16:29:b7:01: db:de:71:06:d1:47:5e:f6:2c:a1:ba:71:af:85:10: c2:e4:36:47:70:22:08:c1:3e:11:9e:0c:94:b9:14: 3a:26:0c:f0:c8:99:69:9a:04:ac:83:8d:18:e7:e4: d9:08:7f:a8:d2:1d:34:dd:45:57:db:b2:d1:23:86: 25:91:cc:d8:d2:03:91:b1:90:b9:37:30:72:52:6c: 15:3f:b8:d0:17:14:af:4e:2c:8b:e8:18:c6:36:40: fa:e5:0e:a6:3b:20:fc:91:4e:3d:9a:a8:c9:b4:df: 39:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E5:D6:6F:6E:82:E5:85:FF:FF:C1:D6:BC:90:04:0E:55:2D:DE:54 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/OuXWb26C5YX__8HWvJAEDlUt3lQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.29.160.0/19 Signature Algorithm: sha256WithRSAEncryption 8e:d7:4c:d8:4e:20:44:f2:89:8c:88:8d:f6:a6:c1:b9:7c:cb: 64:29:5b:93:98:37:94:65:31:37:44:1b:fd:d7:25:a7:0a:b8: 8a:45:23:1c:92:88:2c:78:9a:4a:ff:fc:00:0e:3d:ec:9b:5f: 59:81:c3:e7:07:2f:d4:f2:1d:f9:f9:dc:0b:34:49:09:f4:e5: 27:ad:17:3b:eb:68:4a:3a:fb:be:df:e5:af:60:9d:5c:f7:33: 5a:d3:29:66:51:2c:4f:4f:ce:8f:dc:cc:67:07:db:18:d2:b9: e0:76:30:ea:c1:c4:80:f7:82:b4:7f:76:c8:6b:6f:55:89:b1: 55:fa:cd:1a:67:8e:e3:40:31:7f:0e:e2:d8:c0:7a:10:84:09: 4b:17:b6:d1:2b:23:3d:3a:a3:d6:01:c8:ce:47:2f:0b:73:20: 66:27:80:46:f9:3a:f6:7c:04:32:b9:6a:78:71:e9:4f:77:5f: 59:f5:01:56:e3:54:2e:98:02:82:8b:49:a1:da:59:a1:51:8b: 25:52:6d:65:7a:0d:65:f5:40:82:58:d8:ff:eb:a8:82:e4:55: e9:8e:05:2f:87:17:11:07:80:91:c4:df:aa:d8:ab:f3:b0:0e: 9b:2a:52:b7:48:1d:f9:11:f0:00:3b:80:02:2e:3b:15:70:25: 39:25:d1:94 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDm8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTA4MjIw ODUwMTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNBRTVENjZGNkU4MkU1 ODVGRkZGQzFENkJDOTAwNDBFNTUyRERFNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmyhHvB72QiackG4aatqEO32nxU8EamigttK9DXHvwe1DmWYyi XzdjXFm2cJXF8hvKSopskbubMQ43cGJm+icwunzXs/4RGKOTptbM1wDS7YO1+fE+ 4EyVOlBcaLzk5OPRuPpK82pF6qTTCnf21FMy7q9wAWZ9AELkGuxtC7pZx8jwtBZW QiGs/7zBm6hTPMt3Fim3AdvecQbRR172LKG6ca+FEMLkNkdwIgjBPhGeDJS5FDom DPDImWmaBKyDjRjn5NkIf6jSHTTdRVfbstEjhiWRzNjSA5GxkLk3MHJSbBU/uNAX FK9OLIvoGMY2QPrlDqY7IPyRTj2aqMm03znlAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUOuXWb26C5YX//8HWvJAEDlUt3lQwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL091WFdi MjZDNVlYX184SFd2SkFFRGxVdDNsUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAV8HaAwDQYJKoZIhvcNAQELBQADggEBAI7XTNhOIETyiYyIjfam wbl8y2QpW5OYN5RlMTdEG/3XJacKuIpFIxySiCx4mkr//AAOPeybX1mBw+cHL9Ty Hfn53As0SQn05SetFzvraEo6+77f5a9gnVz3M1rTKWZRLE9Pzo/czGcH2xjSueB2 MOrBxID3grR/dshrb1WJsVX6zRpnjuNAMX8O4tjAehCECUsXttErIz06o9YByM5H LwtzIGYngEb5OvZ8BDK5anhx6U93X1n1AVbjVC6YAoKLSaHaWaFRiyVSbWV6DWX1 QIJY2P/rqILkVemOBS+HFxEHgJHE36rYq/OwDpsqUrdIHfkR8AA7gAIuOxVwJTkl 0ZQ= -----END CERTIFICATE-----Generated at Sun Aug 24 09:39:50 2025 by rpki-client