$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/0Yj4d34foUlxyyW5JStmEPNhXoc.roa File: 0Yj4d34foUlxyyW5JStmEPNhXoc.roa (raw, json) Hash identifier: urT/PK1t5AXfqCV7fp/7RUA4sMa77YZtUw4mYkXup5c= Subject key identifier: D1:88:F8:77:7E:1F:A1:49:71:CB:25:B9:25:2B:66:10:F3:61:5E:87 Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Certificate serial: 0186 Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/0Yj4d34foUlxyyW5JStmEPNhXoc.roa Signing time: Fri 01 Sep 2023 08:30:02 +0000 ROA not before: Fri 01 Sep 2023 08:30:02 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38047 IP address blocks: 2400:61a0:a001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 10:32:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Validity Not Before: Sep 1 08:30:02 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D188F8777E1FA14971CB25B9252B6610F3615E87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:89:e5:eb:ee:d9:d5:56:f9:bc:49:f8:8f:03: d9:9c:5e:27:06:ff:e8:d1:3e:f2:53:b3:4c:06:9f: 9f:40:de:bb:50:7a:89:a3:4a:c8:76:0d:67:14:17: 5b:15:9b:af:9a:97:f7:01:94:88:50:28:21:84:7b: 2a:2f:d6:bb:9d:09:b2:9d:1e:07:8b:4f:41:88:06: d6:6c:b2:e6:69:44:83:3e:30:8b:c3:e9:bc:e3:ff: 76:1e:e5:fb:e3:14:17:8b:49:03:fb:8d:b5:d4:7d: cf:51:5b:5a:54:4e:64:e4:e7:9b:c7:d9:f6:ae:d0: c0:77:ca:c2:51:f4:6c:09:44:5b:3a:7b:e0:5a:e7: f0:ca:d3:48:51:a2:2e:88:04:40:93:22:e3:09:f2: 6e:bb:9e:e7:89:cd:23:29:e3:7e:42:3b:90:29:c4: c3:24:54:1b:57:91:d6:8e:c7:f6:7f:6d:cf:ce:6b: 66:86:d9:20:4b:0f:ee:d9:9c:ba:03:2c:e8:eb:1e: 63:84:c7:da:92:5c:dd:f5:e8:41:21:2c:53:32:ac: a4:53:d9:77:5b:ed:8a:30:c1:e9:41:da:04:c9:0d: 0b:26:aa:9c:f7:c1:b4:cd:cb:52:e6:ca:ab:10:f0: f8:6e:27:7e:70:d4:53:57:a1:fc:2a:f8:ea:83:e9: 60:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:88:F8:77:7E:1F:A1:49:71:CB:25:B9:25:2B:66:10:F3:61:5E:87 X509v3 Authority Key Identifier: keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/0Yj4d34foUlxyyW5JStmEPNhXoc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:61a0:a001::/48 Signature Algorithm: sha256WithRSAEncryption 48:fd:bb:71:f6:ca:10:0e:89:31:9f:ff:2e:e3:18:74:6f:66: b2:e1:21:a7:3e:7a:b4:bc:7c:ef:15:8b:a3:04:1b:77:6f:2c: 9d:41:b7:3f:4c:f7:ce:13:a4:20:70:4c:77:bf:77:0f:85:96: 84:29:4d:64:c7:18:af:07:da:1c:d3:f8:64:5a:df:d2:6f:73: 02:66:81:9b:d2:3a:76:97:9a:4c:83:e0:f9:26:de:c9:15:90: 73:71:c6:fc:34:30:dc:44:bc:0d:c5:31:db:18:10:20:fb:4a: fd:c7:58:47:19:7e:6e:50:dd:52:e8:5a:41:14:d2:6d:69:ef: fa:b2:1d:b7:34:05:c7:04:70:78:45:d9:99:b6:db:ad:79:95: 45:21:31:91:af:42:ed:4a:d5:53:11:74:b2:13:bb:f6:39:b6: 9b:45:e4:eb:70:bd:74:13:9c:65:fa:49:58:8e:0e:b7:79:7d: 31:80:6e:8f:4a:ea:79:b2:f3:3d:5e:65:4a:e4:f4:60:56:6f: 15:db:ef:50:53:6e:48:37:9a:64:25:2d:cc:f3:54:9b:7e:75: c0:9c:d3:f5:c4:e2:8d:ff:33:39:c1:6d:6a:b4:3c:13:34:ce: bd:04:9e:ba:87:67:27:0f:71:a5:c0:7f:60:fa:9d:72:c5:11: 7b:00:ea:63 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJD ODQzOUZFMTlEOTlCMDM4MjcwMjA4Qzk0QjY2Q0EyMzFGRkVENTAeFw0yMzA5MDEw ODMwMDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQxODhGODc3N0UxRkEx NDk3MUNCMjVCOTI1MkI2NjEwRjM2MTVFODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtieXr7tnVVvm8SfiPA9mcXicG/+jRPvJTs0wGn59A3rtQeomj Ssh2DWcUF1sVm6+al/cBlIhQKCGEeyov1rudCbKdHgeLT0GIBtZssuZpRIM+MIvD 6bzj/3Ye5fvjFBeLSQP7jbXUfc9RW1pUTmTk55vH2fau0MB3ysJR9GwJRFs6e+Ba 5/DK00hRoi6IBECTIuMJ8m67nueJzSMp435CO5ApxMMkVBtXkdaOx/Z/bc/Oa2aG 2SBLD+7ZnLoDLOjrHmOEx9qSXN316EEhLFMyrKRT2Xdb7YowwelB2gTJDQsmqpz3 wbTNy1LmyqsQ8PhuJ35w1FNXofwq+OqD6WCpAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQU0Yj4d34foUlxyyW5JStmEPNhXocwHwYDVR0jBBgwFoAUq8hDn+GdmbA4JwII yUtmyiMf/tUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU RUwvcThoRG4tR2RtYkE0SndJSXlVdG15aU1mX3RVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOGhEbi1HZG1iQTRKd0lJeVV0bXlpTWZfdFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElOQVRFTC8wWWo0ZDM0Zm9VbHh5 eVc1SlN0bUVQTmhYb2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcAJABhoKABMA0GCSqGSIb3DQEBCwUAA4IBAQBI/btx9soQDokxn/8u4xh0b2ay 4SGnPnq0vHzvFYujBBt3byydQbc/TPfOE6QgcEx3v3cPhZaEKU1kxxivB9oc0/hk Wt/Sb3MCZoGb0jp2l5pMg+D5Jt7JFZBzccb8NDDcRLwNxTHbGBAg+0r9x1hHGX5u UN1S6FpBFNJtae/6sh23NAXHBHB4RdmZttuteZVFITGRr0LtStVTEXSyE7v2Obab ReTrcL10E5xl+klYjg63eX0xgG6PSup5svM9XmVK5PRgVm8V2+9QU25IN5pkJS3M 81SbfnXAnNP1xOKN/zM5wW1qtDwTNM69BJ66h2cnD3GlwH9g+p1yxRF7AOpj -----END CERTIFICATE-----Generated at Sun Jun 23 13:19:14 2024 by rpki-client on console-fra.rpki-client.org