$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/jghlrHBKsoI23SnieYV6XWAU13Y.roa File: jghlrHBKsoI23SnieYV6XWAU13Y.roa (raw, json) Hash identifier: QWv1vdhhe9v/NgEmumkV8FCmbv0+rSsg2Jd6EUXazRg= Subject key identifier: 8E:08:65:AC:70:4A:B2:82:36:DD:29:E2:79:85:7A:5D:60:14:D7:76 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0E80 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/jghlrHBKsoI23SnieYV6XWAU13Y.roa Signing time: Fri 22 Aug 2025 08:50:19 +0000 ROA not before: Fri 22 Aug 2025 08:50:19 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24158 IP address blocks: 103.2.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3712 (0xe80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 22 08:50:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8E0865AC704AB28236DD29E279857A5D6014D776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0c:84:f7:43:ec:6b:b0:6e:5c:7d:e6:1f:4a: 36:b3:97:65:bb:06:75:75:f6:ec:91:8d:de:b0:d9: 37:cb:30:e4:52:e5:43:85:8d:c0:8d:09:08:0b:fe: 84:8e:71:f2:02:74:6f:ac:27:a4:de:72:27:7e:64: 1c:c3:93:d5:83:31:e4:e1:ba:20:83:44:67:d9:e0: 87:08:2e:ad:11:b0:ef:d5:92:3e:51:27:bf:3a:9e: 58:f6:b9:8f:15:22:47:40:27:4d:60:9d:9f:9d:58: 35:91:0c:a6:5b:e0:04:79:76:18:79:9a:20:19:b9: 5c:e2:63:93:58:f7:68:d7:cb:ba:e3:48:cc:44:2e: e9:74:89:33:d6:25:fd:2f:ea:d5:47:ce:8a:cd:49: a8:52:3f:7e:c7:2c:05:a5:bb:b1:c6:2b:e8:bd:29: 04:e4:38:ce:5d:ee:b3:c7:75:c8:c0:70:0f:a1:6a: 09:b2:06:f9:da:79:2a:9b:f3:d8:82:65:5c:9c:92: ed:f1:f3:ab:2d:e1:7d:19:f1:09:7d:34:a0:d8:10: 9a:a4:01:2f:28:6b:cc:47:49:6b:c2:8b:6e:e4:ad: c0:f6:7f:2f:5f:c9:eb:8a:cc:67:18:c0:cf:04:1e: bf:26:3a:0f:c3:94:bf:07:73:e3:99:8c:4d:bb:ad: 41:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:08:65:AC:70:4A:B2:82:36:DD:29:E2:79:85:7A:5D:60:14:D7:76 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/jghlrHBKsoI23SnieYV6XWAU13Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.2.216.0/22 Signature Algorithm: sha256WithRSAEncryption d2:40:c1:da:ab:09:b7:bd:65:c2:38:fb:2b:a6:dc:30:d3:ed: 5b:37:3f:62:0b:26:95:00:84:c0:31:bd:7d:6c:0f:0e:ef:c6: 87:5f:8d:b2:d5:4b:a9:13:ed:e9:16:9c:c7:49:a1:b2:ee:1c: 41:06:45:f6:39:8c:b1:05:b8:3b:fd:06:88:bc:30:8f:a7:fe: 4c:96:49:ce:7b:db:d9:b2:5d:28:e3:1d:dc:48:77:06:00:4c: 1c:f6:a3:44:84:19:c0:6c:b8:87:ff:2f:1c:ef:d8:4e:aa:72: 3f:0d:32:9d:df:34:44:0b:6c:40:6d:88:0b:4d:70:a6:d0:5c: 4d:2c:d6:68:be:48:a4:10:f5:1a:70:92:39:8c:cf:3e:53:c3: 2b:13:09:f5:f3:16:27:cc:ad:2a:26:80:61:c7:dd:71:e2:12: 36:2a:41:49:8a:3d:0a:dc:44:28:97:b8:d9:8d:1d:64:38:7b: 0b:80:d4:68:13:f9:fe:d0:24:b3:86:51:1c:65:61:3a:d6:77: 3d:34:72:45:0f:3d:e2:db:9b:c3:98:7e:8d:3a:43:07:2d:14: 36:a6:94:bf:f4:3a:7c:7c:89:6f:a1:a1:de:34:11:1d:fb:94: 07:9b:80:37:5e:90:45:b7:10:6e:0c:a2:35:2a:8f:4c:d2:e3: 65:f9:11:48 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTA4MjIw ODUwMTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhFMDg2NUFDNzA0QUIy ODIzNkREMjlFMjc5ODU3QTVENjAxNEQ3NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIDIT3Q+xrsG5cfeYfSjazl2W7BnV19uyRjd6w2TfLMORS5UOF jcCNCQgL/oSOcfICdG+sJ6Tecid+ZBzDk9WDMeThuiCDRGfZ4IcILq0RsO/Vkj5R J786nlj2uY8VIkdAJ01gnZ+dWDWRDKZb4AR5dhh5miAZuVziY5NY92jXy7rjSMxE Lul0iTPWJf0v6tVHzorNSahSP37HLAWlu7HGK+i9KQTkOM5d7rPHdcjAcA+hagmy BvnaeSqb89iCZVycku3x86st4X0Z8Ql9NKDYEJqkAS8oa8xHSWvCi27krcD2fy9f yeuKzGcYwM8EHr8mOg/DlL8Hc+OZjE27rUFRAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUjghlrHBKsoI23SnieYV6XWAU13YwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL2pnaGxy SEJLc29JMjNTbmllWVY2WFdBVTEzWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAJnAtgwDQYJKoZIhvcNAQELBQADggEBANJAwdqrCbe9ZcI4+yum 3DDT7Vs3P2ILJpUAhMAxvX1sDw7vxodfjbLVS6kT7ekWnMdJobLuHEEGRfY5jLEF uDv9Boi8MI+n/kyWSc5729myXSjjHdxIdwYATBz2o0SEGcBsuIf/Lxzv2E6qcj8N Mp3fNEQLbEBtiAtNcKbQXE0s1mi+SKQQ9RpwkjmMzz5TwysTCfXzFifMrSomgGHH 3XHiEjYqQUmKPQrcRCiXuNmNHWQ4ewuA1GgT+f7QJLOGURxlYTrWdz00ckUPPeLb m8OYfo06QwctFDamlL/0Onx8iW+hod40ER37lAebgDdekEW3EG4MojUqj0zS42X5 EUg= -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:53 2025 by rpki-client