$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/99-Ht5fIvv8NqUiqRFjjATs4yvs.roa File: 99-Ht5fIvv8NqUiqRFjjATs4yvs.roa (raw, json) Hash identifier: jL/obe+7Kx+nWQGg+/THZeQ74eBoNE8cIJIvIUh+jBE= Subject key identifier: F7:DF:87:B7:97:C8:BE:FF:0D:A9:48:AA:44:58:E3:01:3B:38:CA:FB Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Certificate serial: 02FE Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/99-Ht5fIvv8NqUiqRFjjATs4yvs.roa Signing time: Mon 10 Feb 2025 13:57:24 +0000 ROA not before: Mon 10 Feb 2025 13:57:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 103.183.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 22:07:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 766 (0x2fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Validity Not Before: Feb 10 13:57:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F7DF87B797C8BEFF0DA948AA4458E3013B38CAFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:04:ca:72:13:c3:d7:da:84:b1:4d:a0:97:bd: 52:b1:15:6c:89:56:fc:5e:0f:57:ac:d7:3e:7a:b6: 6b:c5:d1:2c:3c:cf:26:fe:b0:75:59:cb:ca:4d:04: aa:ea:93:5e:92:56:4b:4d:61:42:bb:ef:73:14:7d: fd:ec:8b:e6:fa:cb:13:b1:04:8c:11:12:3c:c4:e0: 09:07:41:1b:e0:54:02:ee:9c:41:0a:7e:c1:58:98: 83:75:ee:1e:82:9c:17:bd:86:61:12:f6:82:5f:8d: 1e:f1:86:0c:6c:bb:ab:f3:9c:10:b0:08:12:3e:bb: f8:4b:36:39:64:17:ae:6a:3d:c3:6c:7d:d6:00:5f: 0c:b8:47:57:fb:32:83:23:32:f0:e0:1a:28:d4:7b: c9:b3:ef:f5:15:70:8a:74:3b:08:ab:05:cd:e3:e6: 7f:0f:23:43:ba:7c:fc:f1:8a:03:a3:f2:5e:0a:99: 2b:d0:68:67:f4:07:57:66:88:be:d5:4e:ab:4d:76: f1:9c:7f:03:bc:81:31:f2:4d:87:fa:ef:7f:ad:f0: 1b:3a:2c:2a:b1:52:68:05:39:9f:fc:d5:22:95:fd: 4a:ad:97:e0:64:64:3a:77:c4:0f:50:ce:b3:06:16: 7e:47:8e:35:d2:25:f2:63:3c:50:54:52:34:fb:27: 46:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:DF:87:B7:97:C8:BE:FF:0D:A9:48:AA:44:58:E3:01:3B:38:CA:FB X509v3 Authority Key Identifier: keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/99-Ht5fIvv8NqUiqRFjjATs4yvs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.183.79.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:2c:be:cd:5b:4f:7e:a6:eb:bd:35:e6:47:45:57:d7:75:db: c1:6d:f7:e0:50:69:31:5d:de:e7:89:f9:b0:8d:0f:36:e5:dc: 4a:40:6d:02:b7:dd:d0:99:6d:b2:11:47:57:b3:aa:c4:d7:85: 02:9d:8b:00:19:59:3c:8c:8f:56:ab:77:26:ac:4d:9d:13:ec: 46:86:02:b6:ca:0a:d0:f5:8f:3c:68:34:1c:9d:3a:61:c6:6a: 8a:9c:9f:89:e4:3d:b8:48:ec:35:19:b7:40:25:32:9b:76:96: 92:51:2a:43:49:fc:04:c5:01:c5:bb:84:37:01:e7:02:ae:01: 06:fe:45:95:a8:15:34:3e:ac:71:21:2b:81:cd:31:b7:2b:6e: f2:5b:b6:f1:4c:b1:e3:75:66:26:ed:96:dc:10:2b:1e:bd:f2: 26:e2:8a:2d:cf:d0:a7:fa:7d:79:37:0f:8d:fc:76:5e:53:41: f9:20:18:39:82:2e:62:20:36:98:f7:85:54:47:28:c7:d3:24: 6e:60:58:4b:96:74:9c:e1:84:36:19:0d:c4:1c:93:40:f4:98: fc:31:ae:f9:73:4d:4f:9c:b3:2c:9c:5d:b8:7b:ee:d7:0d:b8: 2c:0d:cd:ac:5b:1a:35:84:ad:b8:7d:2d:48:5d:d8:38:fa:49: 07:41:a1:45 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAv4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJD ODQzOUZFMTlEOTlCMDM4MjcwMjA4Qzk0QjY2Q0EyMzFGRkVENTAeFw0yNTAyMTAx MzU3MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY3REY4N0I3OTdDOEJF RkYwREE5NDhBQTQ0NThFMzAxM0IzOENBRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuBMpyE8PX2oSxTaCXvVKxFWyJVvxeD1es1z56tmvF0Sw8zyb+ sHVZy8pNBKrqk16SVktNYUK773MUff3si+b6yxOxBIwREjzE4AkHQRvgVALunEEK fsFYmIN17h6CnBe9hmES9oJfjR7xhgxsu6vznBCwCBI+u/hLNjlkF65qPcNsfdYA Xwy4R1f7MoMjMvDgGijUe8mz7/UVcIp0OwirBc3j5n8PI0O6fPzxigOj8l4KmSvQ aGf0B1dmiL7VTqtNdvGcfwO8gTHyTYf673+t8Bs6LCqxUmgFOZ/81SKV/Uqtl+Bk ZDp3xA9QzrMGFn5HjjXSJfJjPFBUUjT7J0aPAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU99+Ht5fIvv8NqUiqRFjjATs4yvswHwYDVR0jBBgwFoAUq8hDn+GdmbA4JwII yUtmyiMf/tUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU RUwvcThoRG4tR2RtYkE0SndJSXlVdG15aU1mX3RVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOGhEbi1HZG1iQTRKd0lJeVV0bXlpTWZfdFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElOQVRFTC85OS1IdDVmSXZ2OE5x VWlxUkZqakFUczR5dnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ7dPMA0GCSqGSIb3DQEBCwUAA4IBAQAdLL7NW09+puu9NeZHRVfXddvBbffg UGkxXd7nifmwjQ825dxKQG0Ct93QmW2yEUdXs6rE14UCnYsAGVk8jI9Wq3cmrE2d E+xGhgK2ygrQ9Y88aDQcnTphxmqKnJ+J5D24SOw1GbdAJTKbdpaSUSpDSfwExQHF u4Q3AecCrgEG/kWVqBU0PqxxISuBzTG3K27yW7bxTLHjdWYm7ZbcECsevfIm4oot z9Cn+n15Nw+N/HZeU0H5IBg5gi5iIDaY94VURyjH0yRuYFhLlnSc4YQ2GQ3EHJNA 9Jj8Ma75c01PnLMsnF24e+7XDbgsDc2sWxo1hK24fS1IXdg4+kkHQaFF -----END CERTIFICATE-----Generated at Sat Apr 12 20:22:33 2025 by rpki-client