$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/bS63T15VKi8z3jI7Pzy-1ztaYIE.roa File: bS63T15VKi8z3jI7Pzy-1ztaYIE.roa (raw, json) Hash identifier: g83MthDDU96AnaQiMvlQy4TnxFShlMzjmV8Sqke4bVE= Subject key identifier: 6D:2E:B7:4F:5E:55:2A:2F:33:DE:32:3B:3F:3C:BE:D7:3B:5A:60:81 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0E66 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/bS63T15VKi8z3jI7Pzy-1ztaYIE.roa Signing time: Fri 22 Aug 2025 08:50:13 +0000 ROA not before: Fri 22 Aug 2025 08:50:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24157 IP address blocks: 116.89.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3686 (0xe66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 22 08:50:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6D2EB74F5E552A2F33DE323B3F3CBED73B5A6081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b4:13:22:3b:29:c7:a8:09:eb:83:f5:cd:6d: b7:6a:48:0f:8d:9d:65:5c:44:5f:c3:46:ef:eb:f4: aa:85:f4:dd:7f:cd:c3:9e:36:6a:c3:90:0b:af:f1: 82:10:31:04:b4:b4:8d:ca:9c:e9:7d:1c:68:67:a5: 58:ce:ab:83:16:8d:35:97:f7:03:e5:07:6d:a0:f5: 52:48:83:54:03:41:2b:f9:5e:1c:36:3f:69:19:4f: cf:70:97:14:f7:62:16:ee:a6:f9:4a:bb:f7:24:a0: 2a:1e:78:d3:c2:37:00:db:39:50:31:7b:2c:83:4b: 7b:60:4a:f1:b9:48:98:3d:b0:8e:14:9c:81:09:21: e0:ea:f5:b8:45:a0:6c:b0:67:dc:93:89:f8:3e:ab: d9:bb:a8:8c:b2:7e:dd:a1:b2:c1:3f:f1:e3:fb:12: 5a:0e:04:31:8d:70:d7:78:cd:ad:dc:a4:a3:7f:aa: c0:53:25:71:d0:3d:63:97:6f:7e:78:9e:72:eb:98: a0:d8:2e:e0:6a:3a:1a:00:b8:c4:c9:39:f7:56:9c: da:b5:b3:56:16:d7:3b:9d:de:76:67:84:9d:49:48: a1:ef:3d:5b:fc:8a:da:87:79:b9:eb:37:6b:34:01: 9c:a7:2a:b4:22:9d:d3:64:bb:2e:69:d8:64:5d:58: 52:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:2E:B7:4F:5E:55:2A:2F:33:DE:32:3B:3F:3C:BE:D7:3B:5A:60:81 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/bS63T15VKi8z3jI7Pzy-1ztaYIE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 116.89.128.0/20 Signature Algorithm: sha256WithRSAEncryption a3:87:86:42:37:10:3c:cf:f4:28:f2:e5:75:0b:20:d8:68:d3: e5:f1:59:6d:00:e9:b0:c2:b9:d6:28:ff:c6:88:9b:f8:6b:9e: c4:3b:5d:e2:6c:7b:2c:79:51:8d:92:e4:44:92:95:06:33:95: 91:5b:83:61:ac:03:fd:25:53:14:75:ba:e5:38:e4:cc:14:e7: 6e:7b:32:c0:7b:8c:76:20:f5:a1:68:26:0e:6a:00:62:4e:e3: a8:b9:86:33:38:dc:8a:cb:aa:39:16:14:c1:a8:a3:7e:93:e3: 3a:c3:a7:09:3e:86:dc:b2:49:7c:a4:10:e8:b0:d4:25:ff:cb: 71:f0:25:84:24:07:b8:c4:7f:c1:04:c3:ab:a2:b8:87:b4:8d: d3:4d:ee:5b:2a:ed:87:b0:56:56:8f:88:c7:bf:e5:16:6f:8b: b0:f8:7e:81:be:81:1f:38:62:06:e6:d0:c4:65:70:b6:5c:fe: 88:0b:8f:87:b9:15:14:d5:4c:7b:69:2f:f2:59:fd:51:e3:d5: cf:92:82:e9:ac:bf:97:b4:ff:e9:c9:92:d1:26:6f:e6:ed:eb: 9a:e8:88:b1:73:7f:3f:48:7f:74:62:1f:dd:35:19:38:64:f2: ac:9f:8b:ec:e0:73:35:f9:bd:c4:b1:85:08:73:b7:fd:6a:cf: 4a:fd:9c:e9 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDmYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTA4MjIw ODUwMTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZEMkVCNzRGNUU1NTJB MkYzM0RFMzIzQjNGM0NCRUQ3M0I1QTYwODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTtBMiOynHqAnrg/XNbbdqSA+NnWVcRF/DRu/r9KqF9N1/zcOe NmrDkAuv8YIQMQS0tI3KnOl9HGhnpVjOq4MWjTWX9wPlB22g9VJIg1QDQSv5Xhw2 P2kZT89wlxT3YhbupvlKu/ckoCoeeNPCNwDbOVAxeyyDS3tgSvG5SJg9sI4UnIEJ IeDq9bhFoGywZ9yTifg+q9m7qIyyft2hssE/8eP7EloOBDGNcNd4za3cpKN/qsBT JXHQPWOXb354nnLrmKDYLuBqOhoAuMTJOfdWnNq1s1YW1zud3nZnhJ1JSKHvPVv8 itqHebnrN2s0AZynKrQindNkuy5p2GRdWFIHAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUbS63T15VKi8z3jI7Pzy+1ztaYIEwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL2JTNjNU MTVWS2k4ejNqSTdQenktMXp0YVlJRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAR0WYAwDQYJKoZIhvcNAQELBQADggEBAKOHhkI3EDzP9Cjy5XUL INho0+XxWW0A6bDCudYo/8aIm/hrnsQ7XeJseyx5UY2S5ESSlQYzlZFbg2GsA/0l UxR1uuU45MwU5257MsB7jHYg9aFoJg5qAGJO46i5hjM43IrLqjkWFMGoo36T4zrD pwk+htyySXykEOiw1CX/y3HwJYQkB7jEf8EEw6uiuIe0jdNN7lsq7YewVlaPiMe/ 5RZvi7D4foG+gR84Ygbm0MRlcLZc/ogLj4e5FRTVTHtpL/JZ/VHj1c+Sgumsv5e0 /+nJktEmb+bt65roiLFzfz9If3RiH901GThk8qyfi+zgczX5vcSxhQhzt/1qz0r9 nOk= -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:54 2025 by rpki-client