$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/Iidl9KDXzf3l5HuZ24HppGxZZWE.roa File: Iidl9KDXzf3l5HuZ24HppGxZZWE.roa (raw, json) Hash identifier: LbGudeP3NMAy34RC4ZuFPABW4E8f6HhxFBGk0f1Ibp0= Subject key identifier: 22:27:65:F4:A0:D7:CD:FD:E5:E4:7B:99:DB:81:E9:A4:6C:59:65:61 Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D Certificate serial: 0C26 Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/Iidl9KDXzf3l5HuZ24HppGxZZWE.roa Signing time: Mon 26 Aug 2024 05:11:12 +0000 ROA not before: Mon 26 Aug 2024 05:11:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 103.123.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3110 (0xc26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D Validity Not Before: Aug 26 05:11:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=222765F4A0D7CDFDE5E47B99DB81E9A46C596561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:49:38:4d:69:06:3c:fa:b0:30:a3:50:bc:0c: 12:75:32:74:88:22:2a:cf:d4:17:d3:74:e5:5a:28: c9:cb:29:32:da:6e:5b:5a:70:e3:ca:2a:9c:87:9a: 2e:c6:c9:4e:10:8a:ce:2d:76:7a:5e:d5:d0:8f:fe: 78:72:bc:80:0c:98:48:a2:b2:68:17:bb:d9:03:3c: 4e:d3:54:81:e0:86:7b:27:78:61:01:0e:63:6c:fb: 05:81:b0:ad:c5:74:d6:cd:88:d3:56:50:03:a9:6b: 32:4c:47:c1:7c:c7:d1:86:46:f6:07:40:03:a4:6a: 02:fe:51:bb:04:a4:d2:44:d2:e5:29:f1:04:19:3a: bf:b3:f7:35:1e:5d:4b:b4:a4:c3:d8:e9:63:8b:22: 48:05:1c:92:34:e2:32:26:8f:f0:b2:ea:52:07:96: f8:b0:81:52:52:86:4e:72:e9:45:e1:f9:04:91:1b: ed:11:40:26:db:c8:9b:ad:e9:33:be:86:97:df:f8: 95:43:33:08:92:40:c6:2f:36:54:4a:de:2c:1b:3f: 87:2b:b3:4f:ae:51:22:34:f3:e1:21:f1:9e:6f:d6: e4:0a:90:1b:a0:be:24:53:f3:eb:a0:00:0c:14:94: eb:62:9c:0b:4e:c3:1a:82:63:de:ee:27:bf:46:27: 5e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:27:65:F4:A0:D7:CD:FD:E5:E4:7B:99:DB:81:E9:A4:6C:59:65:61 X509v3 Authority Key Identifier: keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/Iidl9KDXzf3l5HuZ24HppGxZZWE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.188.0/24 Signature Algorithm: sha256WithRSAEncryption a3:e6:84:f7:6a:df:2a:30:18:0f:6c:0d:7d:74:43:f2:f6:ca: c2:18:d2:db:04:90:e1:6c:32:62:fd:84:4b:b9:06:89:0c:14: bc:62:97:71:a7:96:9d:d1:6c:dc:af:62:c9:15:d3:89:02:7b: 01:ab:53:8c:f4:da:25:f4:00:37:7f:65:0a:84:6b:a1:6b:8e: e6:c3:53:0a:59:5c:1e:89:75:07:c2:6f:85:ef:81:b2:15:91: 71:24:22:d6:58:8f:ce:3e:a6:8f:5d:07:fe:85:e8:e6:92:f9: de:88:68:ec:22:13:3e:7a:6a:f8:d8:23:80:0b:23:a6:c0:e4: 8c:f6:0f:ea:f3:28:f7:01:fb:e1:71:e6:8d:da:55:94:24:6e: d2:f2:40:1e:0b:b1:f2:c7:23:57:1f:e6:d3:40:cd:8d:9f:b9: cb:d8:dc:86:b6:bc:02:5a:f8:5a:f3:49:d9:25:15:0b:ee:0d: a4:72:a9:39:39:22:ad:68:85:c2:93:61:1e:02:ba:ca:72:b2: ff:10:90:fd:3c:6f:32:2d:68:6b:78:5a:0c:2d:83:f4:87:3e: 7b:69:56:3e:be:cb:ec:b4:3a:a9:de:00:7c:7a:0b:3d:11:7b: 2b:64:b6:64:ec:8e:a0:4d:40:da:d3:31:57:ae:68:42:20:61: 83:34:0d:be -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDCYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODk2 QUQwQjUxNjA5NzlGRUFDNTBDNjM4NENCRkMxNjJENDAzRTc4RDAeFw0yNDA4MjYw NTExMTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIyMjc2NUY0QTBEN0NE RkRFNUU0N0I5OURCODFFOUE0NkM1OTY1NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzSThNaQY8+rAwo1C8DBJ1MnSIIirP1BfTdOVaKMnLKTLablta cOPKKpyHmi7GyU4Qis4tdnpe1dCP/nhyvIAMmEiismgXu9kDPE7TVIHghnsneGEB DmNs+wWBsK3FdNbNiNNWUAOpazJMR8F8x9GGRvYHQAOkagL+UbsEpNJE0uUp8QQZ Or+z9zUeXUu0pMPY6WOLIkgFHJI04jImj/Cy6lIHlviwgVJShk5y6UXh+QSRG+0R QCbbyJut6TO+hpff+JVDMwiSQMYvNlRK3iwbP4crs0+uUSI08+Eh8Z5v1uQKkBug viRT8+ugAAwUlOtinAtOwxqCY97uJ79GJ15dAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUIidl9KDXzf3l5HuZ24HppGxZZWEwHwYDVR0jBBgwFoAUiWrQtRYJef6sUMY4 TL/BYtQD540wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFM SUZFL2lXclF0UllKZWY2c1VNWTRUTF9CWXRRRDU0MC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvaVdyUXRSWUplZjZzVU1ZNFRMX0JZdFFENTQwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFMSUZFL0lpZGw5S0RYemYz bDVIdVoyNEhwcEd4WlpXRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABne7wwDQYJKoZIhvcNAQELBQADggEBAKPmhPdq3yowGA9sDX10Q/L2ysIY 0tsEkOFsMmL9hEu5BokMFLxil3Gnlp3RbNyvYskV04kCewGrU4z02iX0ADd/ZQqE a6FrjubDUwpZXB6JdQfCb4XvgbIVkXEkItZYj84+po9dB/6F6OaS+d6IaOwiEz56 avjYI4ALI6bA5Iz2D+rzKPcB++Fx5o3aVZQkbtLyQB4LsfLHI1cf5tNAzY2fucvY 3Ia2vAJa+FrzSdklFQvuDaRyqTk5Iq1ohcKTYR4Cuspysv8QkP08bzItaGt4Wgwt g/SHPntpVj6+y+y0OqneAHx6Cz0ReytktmTsjqBNQNrTMVeuaEIgYYM0Db4= -----END CERTIFICATE-----Generated at Fri Sep 27 23:36:42 2024 by rpki-client on console-fra.rpki-client.org