$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/o1TbZl2MQsAYh3UB0ZtNvYVgMik.roa File: o1TbZl2MQsAYh3UB0ZtNvYVgMik.roa (raw, json) Hash identifier: lFXxS3ZgEAakywivFh4pKw7buJ/zfEAzRWRNvn6j91U= Subject key identifier: A3:54:DB:66:5D:8C:42:C0:18:87:75:01:D1:9B:4D:BD:85:60:32:29 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0E79 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/o1TbZl2MQsAYh3UB0ZtNvYVgMik.roa Signing time: Fri 22 Aug 2025 08:50:18 +0000 ROA not before: Fri 22 Aug 2025 08:50:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24158 IP address blocks: 123.99.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3705 (0xe79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 22 08:50:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A354DB665D8C42C018877501D19B4DBD85603229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a1:65:6e:28:93:8f:86:57:0f:3d:7d:6f:b1: e8:2a:60:af:d3:7f:44:2e:09:22:9b:8c:8b:f1:96: b9:12:67:d5:e5:07:2f:53:85:6f:c0:41:28:91:4b: 45:d4:74:94:74:52:be:1e:ae:a6:30:63:c9:57:95: 28:c5:fd:3d:e0:81:6d:bd:e9:c3:af:5d:a1:0c:22: d5:63:68:8c:b9:f2:ae:e7:63:b5:9a:b5:4b:cb:a2: 0c:d9:24:8e:80:b0:61:23:e0:bd:93:6a:5f:90:c1: 6a:93:2d:ac:77:68:28:bb:08:ba:70:74:78:fd:24: 7b:ae:74:5e:35:b8:b7:6e:68:12:40:0e:93:31:72: 69:4f:5f:05:34:ea:59:74:1e:50:35:99:c1:ce:e5: e6:e4:37:75:f5:41:6b:11:8a:a6:b8:00:2a:1e:41: 54:f1:3d:dd:7a:a5:f1:d3:eb:13:41:6c:6d:d6:11: 22:b8:0f:3c:56:68:55:76:96:34:10:8b:06:5b:b7: 52:42:53:c9:fd:ab:bf:43:d4:e9:71:8f:be:e9:b3: 32:f6:64:2c:28:73:e5:40:8b:05:db:08:aa:35:30: 87:1c:54:c3:9f:cd:b4:44:09:ab:2a:e4:f5:d0:d8: 27:ef:d2:ed:b2:92:b1:7d:f6:3c:1c:17:7f:a3:26: 92:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:54:DB:66:5D:8C:42:C0:18:87:75:01:D1:9B:4D:BD:85:60:32:29 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/o1TbZl2MQsAYh3UB0ZtNvYVgMik.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.99.0.0/18 Signature Algorithm: sha256WithRSAEncryption b3:09:fb:1c:43:17:02:a6:28:4b:6d:d2:5c:18:5e:0d:81:23: 63:a9:66:d3:12:c1:8e:04:a2:c1:9a:ca:3c:75:4d:35:26:f1: c0:cc:91:b1:16:d0:a4:d7:36:c4:f7:e5:cf:aa:46:89:cb:6f: 75:bc:1e:d5:73:21:aa:12:df:03:74:dc:c0:94:b5:5d:a2:d5: 07:fa:a8:ed:54:2f:0f:8a:01:07:5a:c1:ce:4c:f4:1e:bf:33: 82:14:e0:1b:46:a1:96:17:41:94:bf:fa:69:22:7f:22:39:82: 24:6a:b6:e4:db:1d:e4:f8:8d:e4:a7:3a:9c:61:41:db:a4:59: 50:8e:71:5c:5c:1f:1a:d2:2c:eb:2f:09:53:8d:5d:5e:c3:6f: 6c:3c:89:c7:00:a0:b0:20:eb:a2:58:f6:94:96:b9:ea:73:ba: 35:4f:4d:f0:9d:63:e9:b4:a5:e3:dc:a4:18:53:c4:50:03:55: bd:59:d2:94:7a:aa:5d:36:c0:1d:a2:af:4e:30:f9:85:39:e6: 7a:05:f0:94:8d:26:22:77:2d:5d:34:94:63:d1:7e:25:a8:38: 14:94:ea:ab:4e:2e:7b:36:c7:b6:eb:e5:38:a7:b9:df:1a:ae: e8:a1:1d:ea:00:2d:6a:48:1b:87:d4:01:0d:56:5f:2f:e6:ed: 93:9f:5e:aa -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDnkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTA4MjIw ODUwMThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEzNTREQjY2NUQ4QzQy QzAxODg3NzUwMUQxOUI0REJEODU2MDMyMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3oWVuKJOPhlcPPX1vsegqYK/Tf0QuCSKbjIvxlrkSZ9XlBy9T hW/AQSiRS0XUdJR0Ur4erqYwY8lXlSjF/T3ggW296cOvXaEMItVjaIy58q7nY7Wa tUvLogzZJI6AsGEj4L2Tal+QwWqTLax3aCi7CLpwdHj9JHuudF41uLduaBJADpMx cmlPXwU06ll0HlA1mcHO5ebkN3X1QWsRiqa4ACoeQVTxPd16pfHT6xNBbG3WESK4 DzxWaFV2ljQQiwZbt1JCU8n9q79D1Olxj77pszL2ZCwoc+VAiwXbCKo1MIccVMOf zbRECasq5PXQ2Cfv0u2ykrF99jwcF3+jJpINAgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUo1TbZl2MQsAYh3UB0ZtNvYVgMikwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL28xVGJa bDJNUXNBWWgzVUIwWnROdllWZ01pay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAZ7YwAwDQYJKoZIhvcNAQELBQADggEBALMJ+xxDFwKmKEtt0lwY Xg2BI2OpZtMSwY4EosGayjx1TTUm8cDMkbEW0KTXNsT35c+qRonLb3W8HtVzIaoS 3wN03MCUtV2i1Qf6qO1ULw+KAQdawc5M9B6/M4IU4BtGoZYXQZS/+mkifyI5giRq tuTbHeT4jeSnOpxhQdukWVCOcVxcHxrSLOsvCVONXV7Db2w8iccAoLAg66JY9pSW uepzujVPTfCdY+m0pePcpBhTxFADVb1Z0pR6ql02wB2ir04w+YU55noF8JSNJiJ3 LV00lGPRfiWoOBSU6qtOLns2x7br5Tinud8aruihHeoALWpIG4fUAQ1WXy/m7ZOf Xqo= -----END CERTIFICATE-----Generated at Sun Aug 24 09:43:34 2025 by rpki-client