$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/tzhwZffEdsd3wrhbJDIH77ppfjw.roa File: tzhwZffEdsd3wrhbJDIH77ppfjw.roa (raw, json) Hash identifier: sM6+c7i25LD7G/2EWyS7zuxtuH1ThU8/z/eP/8AnJmM= Subject key identifier: B7:38:70:65:F7:C4:76:C7:77:C2:B8:5B:24:32:07:EF:BA:69:7E:3C Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0E76 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/tzhwZffEdsd3wrhbJDIH77ppfjw.roa Signing time: Fri 22 Aug 2025 08:50:17 +0000 ROA not before: Fri 22 Aug 2025 08:50:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24157 IP address blocks: 2401:7080::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3702 (0xe76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 22 08:50:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B7387065F7C476C777C2B85B243207EFBA697E3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b7:03:67:2e:84:a6:86:8d:0f:7e:ae:58:f6: b7:c3:a3:01:c5:1b:42:f2:3c:74:73:77:6c:66:43: fe:da:d5:e1:c8:56:19:f5:f9:33:49:d0:c6:ee:8d: 7d:3f:f1:35:8a:a0:20:2d:48:c2:1f:9f:31:f2:e5: d5:f3:e6:de:ac:81:00:41:4b:56:07:22:3a:e3:24: e0:c1:67:93:67:1e:e0:88:3d:e8:08:10:a2:34:66: c4:c8:19:88:f7:86:68:87:a4:7d:d2:e7:d8:55:63: ff:94:b5:9b:4c:f9:57:3d:be:ff:eb:44:74:12:ab: ae:e5:d4:41:6f:41:40:11:13:2a:8c:41:ee:a9:87: 9d:70:29:70:a2:bc:57:a6:7d:9d:3e:4c:2b:be:d8: 42:a0:8d:77:33:8b:f8:d0:18:c6:96:c5:92:af:48: e3:45:8b:d2:ce:d5:1b:e5:91:ec:b0:16:94:c8:e7: 1c:1b:5f:5f:5e:71:27:a8:ee:6a:d2:e0:f3:45:79: 2d:9d:68:46:46:a0:45:27:d0:3b:f3:de:30:57:8a: 06:c4:f6:8c:94:04:50:bb:ea:d1:e7:37:c8:3d:ec: af:92:77:94:82:7b:5f:a9:21:0b:be:1a:6a:14:52: 49:ad:4d:51:25:d3:2a:b5:80:a1:dc:a1:2b:0a:cd: f1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:38:70:65:F7:C4:76:C7:77:C2:B8:5B:24:32:07:EF:BA:69:7E:3C X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/tzhwZffEdsd3wrhbJDIH77ppfjw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:7080::/32 Signature Algorithm: sha256WithRSAEncryption c3:ac:55:cc:65:96:21:74:b5:bd:c7:35:8b:6a:7d:86:a0:82: e7:a8:60:0a:bb:0b:76:ae:c0:ff:b5:41:b2:df:d4:80:48:d9: 7a:f9:22:2a:db:2e:02:15:f0:9b:8b:91:b0:97:2c:df:e3:d1: 3a:1f:1b:4d:54:45:5b:15:ba:f6:f3:ad:2a:f3:42:f8:27:47: 3f:b8:86:ba:de:dd:cc:c6:12:ea:b9:c5:0f:92:e9:cd:3b:70: a2:ab:fa:b0:3e:83:b0:fd:16:8c:5e:4f:5f:04:ad:ca:d2:15: 4c:e6:06:cd:f8:bd:07:ee:69:46:c3:87:84:12:5d:9c:96:23: e4:14:e6:cf:92:44:f1:df:86:0c:3c:87:98:80:7c:3e:fb:19: d2:f0:fa:91:80:5e:a6:fe:d4:b0:97:17:fc:e2:6d:21:04:b5: 40:21:04:fc:af:5a:b0:81:ae:4a:2a:ac:cf:46:31:ae:4d:a0: 29:12:b8:75:57:45:cf:c9:ee:4e:28:5f:76:1a:3c:34:20:6b: 07:2e:af:fa:64:ff:60:33:3b:04:89:76:98:c0:f8:16:ae:70: f6:a6:7b:b0:f3:90:61:e6:39:3a:d2:b9:2d:ac:dd:e9:a6:33: 7e:90:5a:71:64:3a:fd:70:e2:b1:1f:df:5a:64:25:58:ac:14: a4:c8:ea:4a -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgICDnYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNTA4MjIw ODUwMTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI3Mzg3MDY1RjdDNDc2 Qzc3N0MyQjg1QjI0MzIwN0VGQkE2OTdFM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3twNnLoSmho0Pfq5Y9rfDowHFG0LyPHRzd2xmQ/7a1eHIVhn1 +TNJ0MbujX0/8TWKoCAtSMIfnzHy5dXz5t6sgQBBS1YHIjrjJODBZ5NnHuCIPegI EKI0ZsTIGYj3hmiHpH3S59hVY/+UtZtM+Vc9vv/rRHQSq67l1EFvQUAREyqMQe6p h51wKXCivFemfZ0+TCu+2EKgjXczi/jQGMaWxZKvSONFi9LO1RvlkeywFpTI5xwb X19ecSeo7mrS4PNFeS2daEZGoEUn0Dvz3jBXigbE9oyUBFC76tHnN8g97K+Sd5SC e1+pIQu+GmoUUkmtTVEl0yq1gKHcoSsKzfERAgMBAAGjggH7MIIB9zAdBgNVHQ4E FgQUtzhwZffEdsd3wrhbJDIH77ppfjwwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL3R6aHda ZmZFZHNkM3dyaGJKRElINzdwcGZqdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAP MA0EAgACMAcDBQAkAXCAMA0GCSqGSIb3DQEBCwUAA4IBAQDDrFXMZZYhdLW9xzWL an2GoILnqGAKuwt2rsD/tUGy39SASNl6+SIq2y4CFfCbi5Gwlyzf49E6HxtNVEVb Fbr2860q80L4J0c/uIa63t3MxhLqucUPkunNO3Ciq/qwPoOw/RaMXk9fBK3K0hVM 5gbN+L0H7mlGw4eEEl2cliPkFObPkkTx34YMPIeYgHw++xnS8PqRgF6m/tSwlxf8 4m0hBLVAIQT8r1qwga5KKqzPRjGuTaApErh1V0XPye5OKF92Gjw0IGsHLq/6ZP9g MzsEiXaYwPgWrnD2pnuw85Bh5jk60rktrN3ppjN+kFpxZDr9cOKxH99aZCVYrBSk yOpK -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:25 2025 by rpki-client