$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/dciPjex1zpZHM9esKFLkRcRsIvI.roa File: dciPjex1zpZHM9esKFLkRcRsIvI.roa (raw, json) Hash identifier: wftzWbgtLgveCLU/lG6+E+cTS6nwo95C38nJIT1zU+A= Subject key identifier: 75:C8:8F:8D:EC:75:CE:96:47:33:D7:AC:28:52:E4:45:C4:6C:22:F2 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0E6C Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/dciPjex1zpZHM9esKFLkRcRsIvI.roa Signing time: Fri 22 Aug 2025 08:50:14 +0000 ROA not before: Fri 22 Aug 2025 08:50:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24158 IP address blocks: 2402:7500:600::/40 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3692 (0xe6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 22 08:50:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=75C88F8DEC75CE964733D7AC2852E445C46C22F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:84:9b:3d:08:b2:37:6c:ed:fe:8a:cb:ca:e3: c6:ed:c4:24:2f:49:04:04:f4:17:23:1f:f5:f0:24: 80:a9:60:76:3e:b0:5a:2c:7b:8a:7c:04:22:be:27: e5:36:80:08:85:d9:11:49:fa:14:05:94:11:09:e4: 45:b4:15:cb:39:46:47:04:50:1a:d9:d4:5b:03:04: 6e:a1:94:be:7a:73:9d:71:61:14:a7:cd:8d:6f:6b: 9a:75:a5:e7:cf:7d:98:65:81:34:b5:fd:2c:a4:4f: 74:94:ea:36:12:a6:1f:fd:ab:df:ed:a9:31:98:ed: fe:47:b3:bd:c1:d6:2f:89:8a:88:37:0e:10:3e:42: 62:27:f5:94:fd:81:75:ac:46:4b:eb:4c:57:08:92: f7:a8:92:05:c5:39:12:9c:09:d6:3f:c9:ba:bd:e5: 86:a7:4c:73:03:1f:cf:77:9a:2e:01:95:75:35:f5: 95:f8:89:ff:09:3a:5b:d7:20:93:b1:59:b5:ce:74: 2c:fa:51:0f:1d:97:f0:00:95:c6:96:e1:e6:32:29: 29:b4:5b:3d:0e:48:d9:67:fa:25:35:b0:5b:ee:ce: 72:80:37:a0:bc:52:40:67:56:7d:9f:9a:33:0b:23: 5d:70:da:41:ba:f8:2e:31:1d:fe:d0:e3:32:2b:0f: 0f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:C8:8F:8D:EC:75:CE:96:47:33:D7:AC:28:52:E4:45:C4:6C:22:F2 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/dciPjex1zpZHM9esKFLkRcRsIvI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:7500:600::/40 Signature Algorithm: sha256WithRSAEncryption 17:1b:bf:74:f2:c3:2c:eb:95:16:72:9d:68:8a:a0:3f:16:86: b6:b3:48:19:04:b2:24:7c:cc:23:11:8c:0d:3a:d7:33:1e:27: 91:e4:46:7c:f6:e6:95:0d:bc:c0:f7:c8:d6:4e:a2:76:d2:a5: b4:66:fc:f7:e8:7f:37:ce:51:f4:da:57:f2:4f:f6:97:e8:f9: 3b:33:e2:7b:dc:c4:13:46:2c:ae:0a:93:e9:fb:26:62:29:1d: 25:f5:38:af:4e:12:69:a9:e8:ea:c3:77:d1:a1:33:3b:05:7c: 97:e2:a9:0d:a8:a1:97:66:ae:ad:e3:8d:1b:84:ee:07:df:a1: 41:34:07:4f:15:98:84:5c:05:73:ab:2f:b5:f5:54:24:a5:4b: bd:94:ea:10:28:aa:ce:da:a5:59:e5:9e:41:08:91:ba:dd:ec: 1e:f0:1f:e4:c0:57:aa:60:5e:7a:1e:b1:c3:b5:c5:30:25:b7: 17:7a:4f:2f:60:96:b9:cb:99:4c:9d:d8:22:07:cb:8b:30:ba: fa:c9:b2:7f:67:c2:48:b4:da:f2:a0:54:14:84:d4:f2:1e:d8: 7d:d0:aa:e4:da:59:b0:0a:95:33:d1:2c:69:99:64:82:1c:61: 8e:c5:c0:46:81:cd:f8:de:f7:cf:1e:1c:29:99:9f:41:13:29: 62:73:43:05 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgICDmwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTA4MjIw ODUwMTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc1Qzg4RjhERUM3NUNF OTY0NzMzRDdBQzI4NTJFNDQ1QzQ2QzIyRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwhJs9CLI3bO3+isvK48btxCQvSQQE9BcjH/XwJICpYHY+sFos e4p8BCK+J+U2gAiF2RFJ+hQFlBEJ5EW0Fcs5RkcEUBrZ1FsDBG6hlL56c51xYRSn zY1va5p1pefPfZhlgTS1/SykT3SU6jYSph/9q9/tqTGY7f5Hs73B1i+Jiog3DhA+ QmIn9ZT9gXWsRkvrTFcIkveokgXFORKcCdY/ybq95YanTHMDH893mi4BlXU19ZX4 if8JOlvXIJOxWbXOdCz6UQ8dl/AAlcaW4eYyKSm0Wz0OSNln+iU1sFvuznKAN6C8 UkBnVn2fmjMLI11w2kG6+C4xHf7Q4zIrDw/5AgMBAAGjggH8MIIB+DAdBgNVHQ4E FgQUdciPjex1zpZHM9esKFLkRcRsIvIwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL2RjaVBq ZXgxenBaSE05ZXNLRkxrUmNSc0l2SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQ MA4EAgACMAgDBgAkAnUABjANBgkqhkiG9w0BAQsFAAOCAQEAFxu/dPLDLOuVFnKd aIqgPxaGtrNIGQSyJHzMIxGMDTrXMx4nkeRGfPbmlQ28wPfI1k6idtKltGb89+h/ N85R9NpX8k/2l+j5OzPie9zEE0YsrgqT6fsmYikdJfU4r04Saano6sN30aEzOwV8 l+KpDaihl2aureONG4TuB9+hQTQHTxWYhFwFc6svtfVUJKVLvZTqECiqztqlWeWe QQiRut3sHvAf5MBXqmBeeh6xw7XFMCW3F3pPL2CWucuZTJ3YIgfLizC6+smyf2fC SLTa8qBUFITU8h7YfdCq5NpZsAqVM9EsaZlkghxhjsXARoHN+N73zx4cKZmfQRMp YnNDBQ== -----END CERTIFICATE-----Generated at Sun Aug 24 11:43:57 2025 by rpki-client