$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/dU9nxreEUwX3Fak37F91AyVI4TY.roa File: dU9nxreEUwX3Fak37F91AyVI4TY.roa (raw, json) Hash identifier: wo/4qQmV9QLqqvux+b4EMYrLsfPaGymYe09+rSqZ9eA= Subject key identifier: 75:4F:67:C6:B7:84:53:05:F7:15:A9:37:EC:5F:75:03:25:48:E1:36 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0E68 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/dU9nxreEUwX3Fak37F91AyVI4TY.roa Signing time: Fri 22 Aug 2025 08:50:14 +0000 ROA not before: Fri 22 Aug 2025 08:50:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24157 IP address blocks: 112.78.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3688 (0xe68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 22 08:50:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=754F67C6B7845305F715A937EC5F75032548E136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:1c:f3:bf:14:e3:a7:2b:aa:87:57:bf:80:87: 9c:5f:41:ed:61:82:08:9c:3e:0a:7e:c2:fc:7c:5a: 0b:a3:7d:e2:16:63:ec:d1:2c:9e:fc:9d:c7:c1:73: 1d:55:10:ef:64:5a:31:b0:36:5c:49:f0:48:19:ec: 79:d6:0c:79:9e:62:41:ee:66:cf:07:78:65:0a:04: 38:78:7d:74:09:b3:c4:c0:15:88:57:a7:e7:d5:20: 32:e2:f2:39:74:f5:42:45:ad:a6:92:ba:b2:0e:7f: 07:d5:06:ee:1c:44:ef:fc:29:84:9f:0e:ef:53:5c: 0b:1c:7d:24:f2:10:5b:1b:05:40:7c:d2:5c:72:1b: c0:1e:e6:c8:fb:ce:09:20:64:6c:31:cc:e7:cd:ee: af:bb:e7:4b:37:36:0a:6c:5e:d3:f1:2a:8a:3a:e9: 05:9b:f7:f3:51:c2:5c:15:c9:7c:6a:20:78:17:61: f3:97:86:6b:93:bb:b6:6e:96:b4:6b:17:17:44:a1: 42:3a:f9:d6:b8:4e:d6:d4:bd:2a:e6:44:ea:09:4d: bd:f6:d1:68:61:25:5a:2a:99:cc:7e:67:8b:2a:ad: 8c:ec:a0:1f:56:b1:4e:c8:08:b7:7d:cb:65:a9:48: 46:93:4d:32:2d:d0:72:69:be:ef:18:74:cc:e8:b9: 09:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:4F:67:C6:B7:84:53:05:F7:15:A9:37:EC:5F:75:03:25:48:E1:36 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/dU9nxreEUwX3Fak37F91AyVI4TY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.78.64.0/19 Signature Algorithm: sha256WithRSAEncryption 66:9f:21:49:16:c1:2f:e8:75:41:20:6a:c3:10:ec:ba:3f:62: ef:74:ea:66:61:e3:ad:93:6a:b8:f7:4b:24:89:b1:89:b3:f6: 1a:ff:cd:50:a4:a5:3d:75:75:30:81:34:16:bb:54:e2:bf:89: ff:46:a2:05:56:85:13:ff:eb:98:23:4d:46:5f:eb:b1:3e:11: e7:aa:37:18:af:fd:86:60:51:54:1b:cf:e1:61:d7:89:1c:e8: 04:4d:6b:7a:64:4f:1b:fd:29:3c:c3:2e:b3:6c:17:9a:92:ac: 5f:1b:62:04:4d:59:de:65:ae:ae:6c:c1:66:33:06:40:e2:5c: 69:52:41:7a:34:69:fa:58:07:ec:6e:cf:c0:b9:05:b7:da:28: 7d:04:a7:33:80:c5:35:16:37:45:c2:00:2c:bb:88:2d:35:b6: 62:07:7f:9c:3d:bb:21:87:d6:d1:00:a8:b6:5e:63:9c:2b:d4: b2:fa:5a:8b:6e:2e:d2:f2:99:c2:e8:75:b0:f1:39:d4:a9:3f: 16:00:c4:54:5a:e9:0c:e0:56:4a:a8:d1:49:d5:51:b2:a5:bc: eb:e6:86:2e:f4:22:b5:af:31:86:53:88:4a:24:2c:e0:ef:20: bc:8c:a1:6f:9f:87:00:45:84:fe:90:4c:77:57:30:46:69:5a: 1b:38:ec:e6 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDmgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTA4MjIw ODUwMTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc1NEY2N0M2Qjc4NDUz MDVGNzE1QTkzN0VDNUY3NTAzMjU0OEUxMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnHPO/FOOnK6qHV7+Ah5xfQe1hggicPgp+wvx8WgujfeIWY+zR LJ78ncfBcx1VEO9kWjGwNlxJ8EgZ7HnWDHmeYkHuZs8HeGUKBDh4fXQJs8TAFYhX p+fVIDLi8jl09UJFraaSurIOfwfVBu4cRO/8KYSfDu9TXAscfSTyEFsbBUB80lxy G8Ae5sj7zgkgZGwxzOfN7q+750s3NgpsXtPxKoo66QWb9/NRwlwVyXxqIHgXYfOX hmuTu7ZulrRrFxdEoUI6+da4TtbUvSrmROoJTb320WhhJVoqmcx+Z4sqrYzsoB9W sU7ICLd9y2WpSEaTTTIt0HJpvu8YdMzouQnVAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUdU9nxreEUwX3Fak37F91AyVI4TYwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL2RVOW54 cmVFVXdYM0ZhazM3RjkxQXlWSTRUWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAVwTkAwDQYJKoZIhvcNAQELBQADggEBAGafIUkWwS/odUEgasMQ 7Lo/Yu906mZh462Tarj3SySJsYmz9hr/zVCkpT11dTCBNBa7VOK/if9GogVWhRP/ 65gjTUZf67E+EeeqNxiv/YZgUVQbz+Fh14kc6ARNa3pkTxv9KTzDLrNsF5qSrF8b YgRNWd5lrq5swWYzBkDiXGlSQXo0afpYB+xuz8C5BbfaKH0EpzOAxTUWN0XCACy7 iC01tmIHf5w9uyGH1tEAqLZeY5wr1LL6WotuLtLymcLodbDxOdSpPxYAxFRa6Qzg Vkqo0UnVUbKlvOvmhi70IrWvMYZTiEokLODvILyMoW+fhwBFhP6QTHdXMEZpWhs4 7OY= -----END CERTIFICATE-----Generated at Sun Aug 24 07:44:00 2025 by rpki-client