$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Z-0friyJRa-GxHzPG6sUnthP2mg.roa File: Z-0friyJRa-GxHzPG6sUnthP2mg.roa (raw, json) Hash identifier: riBnRXY50d88LkatPddbE9M/AcdKbYsUxrqJTTkSv6I= Subject key identifier: 67:ED:1F:AE:2C:89:45:AF:86:C4:7C:CF:1B:AB:14:9E:D8:4F:DA:68 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0E6A Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Z-0friyJRa-GxHzPG6sUnthP2mg.roa Signing time: Fri 22 Aug 2025 08:50:14 +0000 ROA not before: Fri 22 Aug 2025 08:50:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24158 IP address blocks: 2402:7500:faff::/48 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3690 (0xe6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 22 08:50:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=67ED1FAE2C8945AF86C47CCF1BAB149ED84FDA68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fd:17:92:33:6f:c5:6c:47:9c:5d:64:cb:63: 6f:14:79:d8:96:19:43:47:de:33:6a:a7:ea:32:5b: b5:66:cf:da:16:70:e5:a7:f5:68:f3:26:49:f9:b9: e6:7b:41:43:48:f0:f1:db:77:43:b9:e0:07:38:75: b3:6c:c5:e6:da:97:12:4a:24:4b:7a:2f:33:80:c8: c8:e0:00:a1:5d:47:0e:ec:6c:d5:97:09:85:8d:97: e0:a6:e8:3a:a6:d3:56:e2:60:d4:ad:97:54:06:29: fc:af:23:e1:ef:5b:b5:29:91:46:3b:11:29:d7:2c: fa:53:66:f2:86:dc:e5:65:69:f0:cb:32:7f:7e:d2: 28:cd:51:2a:ab:50:3b:7c:ae:c5:58:c9:d2:e7:29: 54:85:ab:2d:c4:46:10:a6:d0:16:80:19:32:9e:08: 5c:c4:8a:f7:ba:8a:6f:8c:d6:a4:0e:53:3b:69:5e: cb:7d:04:83:6d:88:1e:3d:da:0e:09:94:b9:94:1c: af:83:29:20:1a:16:8c:9e:dd:f9:7b:c7:12:a5:77: f8:26:0e:d7:0c:ec:b3:27:02:c4:78:e8:0a:3d:ed: fe:48:50:65:ef:7d:d8:05:4e:05:3d:b0:8f:66:9f: cc:75:e5:3c:19:31:eb:76:7c:23:e2:4f:9a:2c:85: 82:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:ED:1F:AE:2C:89:45:AF:86:C4:7C:CF:1B:AB:14:9E:D8:4F:DA:68 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/Z-0friyJRa-GxHzPG6sUnthP2mg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:7500:faff::/48 Signature Algorithm: sha256WithRSAEncryption 00:02:d7:47:c0:ae:8e:79:6d:03:9b:b4:83:7d:3a:7a:95:2a: 92:00:6a:08:ab:0e:83:00:79:f5:35:6f:34:1e:62:e5:ff:b9: a6:84:00:13:19:27:e3:94:50:91:a2:6a:43:bb:37:f2:ba:31: 45:15:2d:04:08:d6:66:40:56:8e:30:d9:b9:25:35:5c:f6:b4: 63:32:6f:d1:27:b9:d8:6c:58:c3:b0:fd:2f:64:aa:f8:d7:3c: 87:d4:9c:3a:29:02:38:d6:57:36:be:c2:e1:7e:8c:c5:36:83: a9:76:09:5f:2b:07:4a:5a:00:67:5a:17:f5:35:7a:c8:ec:27: a9:20:54:ae:82:e6:f4:d3:96:86:12:aa:08:d9:74:0c:99:81: db:e8:9e:47:bf:4b:8c:49:f4:99:a7:07:85:ac:05:7f:7c:fc: ef:e0:69:bc:2a:83:72:22:e8:ff:75:e8:c4:ac:86:f8:f5:1c: 32:9e:7d:0a:ad:21:6d:27:01:ce:ba:0b:96:d9:9f:2d:26:74: 4c:d4:18:7b:82:69:0b:60:cb:76:a0:7d:31:44:fe:04:78:46: 5b:7a:bc:32:66:94:b9:74:62:55:f9:45:d9:6b:48:08:f9:57: 5f:86:39:32:51:84:d6:64:b3:fd:39:1f:66:29:98:93:18:34: 0b:5e:2e:e9 -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgICDmowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTA4MjIw ODUwMTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY3RUQxRkFFMkM4OTQ1 QUY4NkM0N0NDRjFCQUIxNDlFRDg0RkRBNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2/ReSM2/FbEecXWTLY28UediWGUNH3jNqp+oyW7Vmz9oWcOWn 9WjzJkn5ueZ7QUNI8PHbd0O54Ac4dbNsxebalxJKJEt6LzOAyMjgAKFdRw7sbNWX CYWNl+Cm6Dqm01biYNStl1QGKfyvI+HvW7UpkUY7ESnXLPpTZvKG3OVlafDLMn9+ 0ijNUSqrUDt8rsVYydLnKVSFqy3ERhCm0BaAGTKeCFzEive6im+M1qQOUztpXst9 BINtiB492g4JlLmUHK+DKSAaFoye3fl7xxKld/gmDtcM7LMnAsR46Ao97f5IUGXv fdgFTgU9sI9mn8x15TwZMet2fCPiT5oshYLlAgMBAAGjggH9MIIB+TAdBgNVHQ4E FgQUZ+0friyJRa+GxHzPG6sUnthP2mgwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL1otMGZy aXlKUmEtR3hIelBHNnNVbnRoUDJtZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAkAnUA+v8wDQYJKoZIhvcNAQELBQADggEBAAAC10fAro55bQOb tIN9OnqVKpIAagirDoMAefU1bzQeYuX/uaaEABMZJ+OUUJGiakO7N/K6MUUVLQQI 1mZAVo4w2bklNVz2tGMyb9EnudhsWMOw/S9kqvjXPIfUnDopAjjWVza+wuF+jMU2 g6l2CV8rB0paAGdaF/U1esjsJ6kgVK6C5vTTloYSqgjZdAyZgdvonke/S4xJ9Jmn B4WsBX98/O/gabwqg3Ii6P916MSshvj1HDKefQqtIW0nAc66C5bZny0mdEzUGHuC aQtgy3agfTFE/gR4Rlt6vDJmlLl0YlX5RdlrSAj5V1+GOTJRhNZks/05H2YpmJMY NAteLuk= -----END CERTIFICATE-----Generated at Sun Aug 24 09:43:39 2025 by rpki-client