$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/AhCyzl2wFH8cjoCFLYz05TxwVCo.roa File: AhCyzl2wFH8cjoCFLYz05TxwVCo.roa (raw, json) Hash identifier: 9z8m78tHfTdnE54W+IJaf+RUa6EUiEZT1Nsp2iwJkH0= Subject key identifier: 02:10:B2:CE:5D:B0:14:7F:1C:8E:80:85:2D:8C:F4:E5:3C:70:54:2A Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Certificate serial: 0288 Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/AhCyzl2wFH8cjoCFLYz05TxwVCo.roa Signing time: Mon 26 Aug 2024 05:11:16 +0000 ROA not before: Mon 26 Aug 2024 05:11:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 103.183.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 648 (0x288) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Validity Not Before: Aug 26 05:11:16 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0210B2CE5DB0147F1C8E80852D8CF4E53C70542A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c8:8e:75:d0:c0:85:37:da:b7:7a:5a:73:dd: bf:e1:a9:70:fd:2b:03:a8:63:4f:1d:eb:73:d6:66: d8:f6:28:13:58:31:db:f7:bb:d8:b7:0d:c2:05:8f: f9:d4:30:1a:3f:61:52:0c:92:82:64:40:d2:38:2e: d0:88:a8:89:12:0a:99:d8:29:95:3c:fe:12:29:65: 83:56:de:c2:bd:b8:15:bc:d8:2f:5d:4b:d9:ad:4e: 49:31:dc:ca:6a:f4:f1:88:cc:fd:e6:2e:e3:8b:af: 62:9b:6b:ae:2a:d3:8a:d9:f7:49:2d:8f:c0:fc:2d: b0:2f:24:d6:7c:78:da:1a:49:a4:69:ae:d6:47:f7: 82:a6:95:53:95:94:8e:16:3d:94:17:26:ce:24:bd: 0e:02:97:ca:ef:51:ec:25:6b:3f:1f:b3:a0:90:fe: 3c:fe:65:45:0f:42:7e:e5:1c:57:c0:2a:21:00:b8: 93:93:34:53:a0:1f:29:85:f4:bd:51:84:56:59:fe: 40:10:94:86:18:8f:ad:7b:a8:c5:e1:7c:ce:47:8e: 08:fa:28:c6:a4:d4:bc:32:f7:20:70:20:cc:4e:55: 6d:bf:cc:35:3d:5b:46:e9:c2:9f:3b:28:f1:51:40: 37:f3:0e:ec:d7:72:70:38:ce:cf:37:2d:76:3f:6c: 65:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:10:B2:CE:5D:B0:14:7F:1C:8E:80:85:2D:8C:F4:E5:3C:70:54:2A X509v3 Authority Key Identifier: keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/AhCyzl2wFH8cjoCFLYz05TxwVCo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.183.78.0/23 Signature Algorithm: sha256WithRSAEncryption 03:6e:4a:14:4d:71:8c:77:92:83:9e:6d:75:64:72:cf:25:34: 42:6d:96:e4:eb:be:42:49:41:c8:d2:8b:25:cd:ac:88:51:f9: 42:d2:24:ea:8a:0f:39:4d:40:5e:b0:fc:25:65:31:84:f1:d5: b2:80:52:8a:02:61:32:ee:24:9f:2e:37:f6:46:09:4d:cb:25: 91:b0:93:c7:df:04:04:63:67:e2:49:fd:c9:64:df:e2:91:56: 54:1c:36:09:be:da:71:9a:61:d7:bd:1d:54:53:3e:b7:a3:9a: 59:5a:47:db:d4:7b:65:7d:cd:53:44:31:79:8d:ff:97:f1:e7: 79:0d:32:92:16:21:01:f2:03:f3:57:a9:00:ae:1d:b1:d5:21: dc:28:ae:3c:75:b0:11:a8:90:ff:bb:83:b6:18:30:19:1d:c1: ea:92:7b:4c:9c:09:0f:66:74:e0:45:77:73:dd:73:53:82:f7: 2c:f4:73:65:48:50:0f:d3:67:97:3e:f8:ca:fd:fb:19:09:bf: 44:75:ea:d2:f4:9d:5c:79:61:37:fa:a4:e0:0a:a5:b7:75:20: 0d:91:6b:7d:53:8e:05:78:69:7b:9e:46:1d:68:8f:99:f9:8c: 4a:ed:13:7d:aa:f0:60:a1:16:07:b3:14:29:e2:c8:20:a8:6e: b9:0d:53:27 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAogwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJD ODQzOUZFMTlEOTlCMDM4MjcwMjA4Qzk0QjY2Q0EyMzFGRkVENTAeFw0yNDA4MjYw NTExMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAyMTBCMkNFNURCMDE0 N0YxQzhFODA4NTJEOENGNEU1M0M3MDU0MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCyI510MCFN9q3elpz3b/hqXD9KwOoY08d63PWZtj2KBNYMdv3 u9i3DcIFj/nUMBo/YVIMkoJkQNI4LtCIqIkSCpnYKZU8/hIpZYNW3sK9uBW82C9d S9mtTkkx3Mpq9PGIzP3mLuOLr2Kba64q04rZ90ktj8D8LbAvJNZ8eNoaSaRprtZH 94KmlVOVlI4WPZQXJs4kvQ4Cl8rvUewlaz8fs6CQ/jz+ZUUPQn7lHFfAKiEAuJOT NFOgHymF9L1RhFZZ/kAQlIYYj617qMXhfM5Hjgj6KMak1Lwy9yBwIMxOVW2/zDU9 W0bpwp87KPFRQDfzDuzXcnA4zs83LXY/bGUvAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUAhCyzl2wFH8cjoCFLYz05TxwVCowHwYDVR0jBBgwFoAUq8hDn+GdmbA4JwII yUtmyiMf/tUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU RUwvcThoRG4tR2RtYkE0SndJSXlVdG15aU1mX3RVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOGhEbi1HZG1iQTRKd0lJeVV0bXlpTWZfdFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElOQVRFTC9BaEN5emwyd0ZIOGNq b0NGTFl6MDVUeHdWQ28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ7dOMA0GCSqGSIb3DQEBCwUAA4IBAQADbkoUTXGMd5KDnm11ZHLPJTRCbZbk 675CSUHI0oslzayIUflC0iTqig85TUBesPwlZTGE8dWygFKKAmEy7iSfLjf2RglN yyWRsJPH3wQEY2fiSf3JZN/ikVZUHDYJvtpxmmHXvR1UUz63o5pZWkfb1Htlfc1T RDF5jf+X8ed5DTKSFiEB8gPzV6kArh2x1SHcKK48dbARqJD/u4O2GDAZHcHqkntM nAkPZnTgRXdz3XNTgvcs9HNlSFAP02eXPvjK/fsZCb9EderS9J1ceWE3+qTgCqW3 dSANkWt9U44FeGl7nkYdaI+Z+YxK7RN9qvBgoRYHsxQp4sggqG65DVMn -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org