$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/j5JU0hK9Yyc0pIapJbEh_dT2aJg.roa File: j5JU0hK9Yyc0pIapJbEh_dT2aJg.roa (raw, json) Hash identifier: ipkldVWOSizOfqXmtdjlaT52RoVuDW+6K37ZUy+knx8= Subject key identifier: 8F:92:54:D2:12:BD:63:27:34:A4:86:A9:25:B1:21:FD:D4:F6:68:98 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0E81 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/j5JU0hK9Yyc0pIapJbEh_dT2aJg.roa Signing time: Fri 22 Aug 2025 08:50:19 +0000 ROA not before: Fri 22 Aug 2025 08:50:19 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24157 IP address blocks: 2403:c300::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3713 (0xe81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 22 08:50:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8F9254D212BD632734A486A925B121FDD4F66898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ef:4f:5b:13:2a:5e:e0:ec:96:dc:28:d3:fd: 8a:02:f8:e6:26:0f:6c:4c:4d:a5:4e:2a:78:bf:a0: 29:c0:41:aa:a4:95:e3:24:89:ca:ca:13:ee:4a:e6: a1:5a:51:c8:cd:37:65:c4:67:92:62:cb:86:9b:a9: d5:95:56:23:81:06:91:8c:fd:f3:21:ae:07:38:d4: ce:dd:a0:bc:f6:a6:56:9b:69:ea:7b:ee:1e:0f:dc: 77:2a:91:61:69:9d:2f:54:81:07:66:7e:dc:2b:73: 6f:87:78:68:b0:ab:92:a3:c0:77:be:61:c0:ee:66: e1:87:54:e5:31:99:b6:db:16:36:03:71:7a:dc:b2: 52:45:d7:b7:ca:20:bc:2b:cc:0e:3f:f0:13:6d:9e: d8:38:a6:c4:58:ae:2a:04:49:f8:63:30:18:12:2f: f9:d4:aa:63:af:2e:46:bc:f5:84:b1:86:2c:e9:c6: 54:16:51:90:40:2b:cd:5b:67:4a:38:17:ab:40:dc: 0b:b0:4d:8c:d4:b9:26:fe:b1:36:43:c5:e6:95:89: 5b:37:1d:67:6a:7d:63:d3:b9:7d:4d:24:43:eb:37: 5c:ed:a7:81:ff:3e:59:6b:da:8c:d8:f2:26:db:df: 89:76:d4:97:8d:07:4f:f7:84:86:29:3f:11:d6:d4: 40:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:92:54:D2:12:BD:63:27:34:A4:86:A9:25:B1:21:FD:D4:F6:68:98 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/j5JU0hK9Yyc0pIapJbEh_dT2aJg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:c300::/32 Signature Algorithm: sha256WithRSAEncryption 1a:b4:ee:0e:89:cf:0a:4c:09:a3:35:0d:bb:48:1a:28:da:f0: 24:58:c3:0d:4c:5a:57:4c:52:ab:48:22:02:de:7f:53:e3:44: 43:0f:0b:3b:81:98:f0:ed:36:05:66:3b:40:58:c3:b0:8b:60: 17:e8:27:4c:c6:77:43:67:71:2a:b0:b5:bd:54:1b:bb:8f:e1: 0d:b6:47:22:16:91:11:87:67:bb:61:db:04:41:8b:55:32:d9: c6:d7:5c:d4:d3:fe:a6:59:63:9c:58:23:56:86:b5:36:82:6f: 9c:e8:73:86:15:98:0d:82:85:bc:2b:19:2e:a4:84:92:b0:9f: 6e:85:cd:2f:38:e0:0f:25:ca:35:ba:0c:2e:f8:20:73:6b:6d: 7a:99:84:c0:17:eb:54:3b:c0:cb:b3:18:9d:b1:d5:d0:b3:ae: 27:f9:82:40:c6:70:5c:06:76:12:f3:6c:d0:fd:c7:b9:97:67: bc:3c:08:aa:ba:95:b0:26:bf:b4:4f:9f:e5:0a:a6:77:80:c7: 12:1b:fd:ca:3b:38:a0:44:1b:4e:4f:83:61:58:f0:92:3d:51: 09:ce:03:3f:dd:e7:75:be:bf:2d:29:0f:7a:89:5a:3b:94:fe: af:b9:1c:af:ed:34:d2:27:c3:b9:53:3b:af:39:01:27:3e:83: 83:73:71:ff -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgICDoEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTA4MjIw ODUwMTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhGOTI1NEQyMTJCRDYz MjczNEE0ODZBOTI1QjEyMUZERDRGNjY4OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCp709bEype4OyW3CjT/YoC+OYmD2xMTaVOKni/oCnAQaqkleMk icrKE+5K5qFaUcjNN2XEZ5Jiy4abqdWVViOBBpGM/fMhrgc41M7doLz2plabaep7 7h4P3HcqkWFpnS9UgQdmftwrc2+HeGiwq5KjwHe+YcDuZuGHVOUxmbbbFjYDcXrc slJF17fKILwrzA4/8BNtntg4psRYrioESfhjMBgSL/nUqmOvLka89YSxhizpxlQW UZBAK81bZ0o4F6tA3AuwTYzUuSb+sTZDxeaViVs3HWdqfWPTuX1NJEPrN1ztp4H/ Pllr2ozY8ibb34l21JeNB0/3hIYpPxHW1ECXAgMBAAGjggH7MIIB9zAdBgNVHQ4E FgQUj5JU0hK9Yyc0pIapJbEh/dT2aJgwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL2o1SlUw aEs5WXljMHBJYXBKYkVoX2RUMmFKZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAP MA0EAgACMAcDBQAkA8MAMA0GCSqGSIb3DQEBCwUAA4IBAQAatO4Oic8KTAmjNQ27 SBoo2vAkWMMNTFpXTFKrSCIC3n9T40RDDws7gZjw7TYFZjtAWMOwi2AX6CdMxndD Z3EqsLW9VBu7j+ENtkciFpERh2e7YdsEQYtVMtnG11zU0/6mWWOcWCNWhrU2gm+c 6HOGFZgNgoW8KxkupISSsJ9uhc0vOOAPJco1ugwu+CBza216mYTAF+tUO8DLsxid sdXQs64n+YJAxnBcBnYS82zQ/ce5l2e8PAiqupWwJr+0T5/lCqZ3gMcSG/3KOzig RBtOT4NhWPCSPVEJzgM/3ed1vr8tKQ96iVo7lP6vuRyv7TTSJ8O5UzuvOQEnPoOD c3H/ -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:45 2025 by rpki-client