$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/YlVWyxg5k4AemiA08mPZoP9MYhI.roa File: YlVWyxg5k4AemiA08mPZoP9MYhI.roa (raw, json) Hash identifier: GXbjo0KfxCZVkzeda+KCBwP3h8fZ7kQy9tiIxe3myXw= Subject key identifier: 62:55:56:CB:18:39:93:80:1E:9A:20:34:F2:63:D9:A0:FF:4C:62:12 Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D Certificate serial: 0C27 Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/YlVWyxg5k4AemiA08mPZoP9MYhI.roa Signing time: Mon 26 Aug 2024 05:11:12 +0000 ROA not before: Mon 26 Aug 2024 05:11:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 103.123.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D Validity Not Before: Aug 26 05:11:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=625556CB183993801E9A2034F263D9A0FF4C6212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4b:dc:45:7f:f2:5e:7a:91:3d:53:11:49:bf: c9:83:79:06:13:18:f2:ac:96:7e:75:dc:7c:28:c5: 19:e8:55:99:a3:37:20:ac:73:f0:bc:bb:8c:81:8b: 24:90:b2:59:fb:6b:bd:5d:dc:9b:6a:8d:21:e8:b6: 5b:6e:63:1e:7a:ce:c3:6b:f3:1c:c8:07:d1:58:67: 06:c4:6d:f4:b5:30:c3:a7:dd:84:93:3c:58:e5:43: 8a:e7:76:b5:d8:d6:5b:8f:d6:e5:c7:22:c8:b2:37: 6e:36:6a:9b:83:20:78:b8:e3:9d:0a:c9:da:5a:81: f4:46:4a:80:28:33:cd:61:c8:e1:5d:dc:71:c6:00: 64:94:b4:ea:f1:a1:64:89:de:2a:f2:95:bb:f4:56: 6a:0a:2d:87:bc:c3:6e:39:a1:6b:86:4a:ed:9f:d9: 08:70:e3:65:8a:bb:91:c4:ab:5a:13:d7:a0:45:08: 8c:bc:74:62:5b:23:69:dd:be:8f:43:39:e4:bc:d2: 6a:96:f9:26:29:f2:70:8d:d2:9a:c4:5c:85:fb:c7: dc:05:ae:b3:a2:b5:12:a8:5e:eb:95:f6:93:11:86: 25:c6:3e:26:60:00:04:0c:3c:4d:75:bc:08:13:50: 5d:8d:92:fb:51:5a:0e:1f:1f:e1:dd:75:99:0b:b4: 44:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:55:56:CB:18:39:93:80:1E:9A:20:34:F2:63:D9:A0:FF:4C:62:12 X509v3 Authority Key Identifier: keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/YlVWyxg5k4AemiA08mPZoP9MYhI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.190.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:9d:f1:05:aa:8e:1f:06:fa:4f:7d:e2:70:00:25:22:46:8d: b9:85:b1:75:10:7a:fe:76:93:72:35:35:7e:5f:23:98:a2:f6: 3f:e6:94:7b:20:30:b6:d5:95:d9:0c:6d:3e:8a:e8:c8:e1:42: 91:a8:b1:57:23:b6:20:cd:a2:18:6f:74:3f:01:46:43:c7:8d: 8a:3f:7c:47:4b:3a:51:80:02:d9:01:0f:ab:58:70:f6:b7:ec: 4f:d1:67:80:e0:4f:dd:fb:0d:59:42:2f:99:62:f4:81:60:2f: b0:78:8e:a3:0b:f6:f1:d1:ae:46:55:c2:81:1f:95:d6:52:12: dc:2a:5a:e1:e1:8a:da:73:fb:95:19:81:2d:e3:67:af:65:95: 9a:79:ab:20:a0:6d:17:99:bc:13:f3:3d:af:2b:03:ee:8f:cd: bb:cd:5c:0a:b7:1a:a9:e2:4b:b4:70:19:d4:be:e4:bf:47:87: 31:1f:ff:45:b1:f8:97:3d:d2:0c:36:12:1a:11:57:2e:1e:68: ca:60:ec:76:64:4d:32:91:1e:9d:10:c0:a5:4a:a9:4a:65:46: 11:3a:a5:dc:af:11:a3:5e:95:a2:48:06:df:e6:83:63:d1:d2: 47:53:66:72:dc:70:53:ba:68:1a:b6:c2:bf:4d:b1:91:6a:ac: 36:da:9a:79 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODk2 QUQwQjUxNjA5NzlGRUFDNTBDNjM4NENCRkMxNjJENDAzRTc4RDAeFw0yNDA4MjYw NTExMTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYyNTU1NkNCMTgzOTkz ODAxRTlBMjAzNEYyNjNEOUEwRkY0QzYyMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgS9xFf/JeepE9UxFJv8mDeQYTGPKsln513HwoxRnoVZmjNyCs c/C8u4yBiySQsln7a71d3JtqjSHotltuYx56zsNr8xzIB9FYZwbEbfS1MMOn3YST PFjlQ4rndrXY1luP1uXHIsiyN242apuDIHi4450KydpagfRGSoAoM81hyOFd3HHG AGSUtOrxoWSJ3irylbv0VmoKLYe8w245oWuGSu2f2Qhw42WKu5HEq1oT16BFCIy8 dGJbI2ndvo9DOeS80mqW+SYp8nCN0prEXIX7x9wFrrOitRKoXuuV9pMRhiXGPiZg AAQMPE11vAgTUF2NkvtRWg4fH+HddZkLtESlAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUYlVWyxg5k4AemiA08mPZoP9MYhIwHwYDVR0jBBgwFoAUiWrQtRYJef6sUMY4 TL/BYtQD540wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFM SUZFL2lXclF0UllKZWY2c1VNWTRUTF9CWXRRRDU0MC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvaVdyUXRSWUplZjZzVU1ZNFRMX0JZdFFENTQwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFMSUZFL1lsVld5eGc1azRB ZW1pQTA4bVBab1A5TVloSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABne74wDQYJKoZIhvcNAQELBQADggEBAE2d8QWqjh8G+k994nAAJSJGjbmF sXUQev52k3I1NX5fI5ii9j/mlHsgMLbVldkMbT6K6MjhQpGosVcjtiDNohhvdD8B RkPHjYo/fEdLOlGAAtkBD6tYcPa37E/RZ4DgT937DVlCL5li9IFgL7B4jqML9vHR rkZVwoEfldZSEtwqWuHhitpz+5UZgS3jZ69llZp5qyCgbReZvBPzPa8rA+6PzbvN XAq3GqniS7RwGdS+5L9HhzEf/0Wx+Jc90gw2EhoRVy4eaMpg7HZkTTKRHp0QwKVK qUplRhE6pdyvEaNelaJIBt/mg2PR0kdTZnLccFO6aBq2wr9NsZFqrDbamnk= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:06 2024 by rpki-client on console-fra.rpki-client.org