$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/BmyWTH1_GV4OZblqN9HuWVaazcE.roa File: BmyWTH1_GV4OZblqN9HuWVaazcE.roa (raw, json) Hash identifier: ceEDI+WW2zCJtihArP/E2ZzX0uisVXZQ6Vf3Untijxw= Subject key identifier: 06:6C:96:4C:7D:7F:19:5E:0E:65:B9:6A:37:D1:EE:59:56:9A:CD:C1 Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Certificate serial: 0286 Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/BmyWTH1_GV4OZblqN9HuWVaazcE.roa Signing time: Mon 26 Aug 2024 05:11:15 +0000 ROA not before: Mon 26 Aug 2024 05:11:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 2400:61a0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 646 (0x286) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Validity Not Before: Aug 26 05:11:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=066C964C7D7F195E0E65B96A37D1EE59569ACDC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3c:12:cd:3c:28:57:39:f5:b7:03:65:63:3a: 9a:eb:d0:2b:89:df:39:10:92:97:c5:a2:79:b8:0e: 5e:96:0e:86:00:2b:f7:6a:b0:7f:20:80:8a:2d:06: c4:e1:a1:31:b6:dc:35:11:5b:c3:93:e0:2d:b2:a6: 14:01:3b:58:1c:ba:7f:ff:c2:87:04:a4:65:94:91: 23:91:f5:da:59:2e:17:34:ea:6d:13:68:52:7d:c8: 01:b4:f1:d5:ad:af:d5:7d:1c:22:10:40:e3:4c:64: 5c:a0:cc:e0:04:3e:fa:1b:17:ea:f5:ce:91:12:24: 98:96:60:4a:39:58:f5:97:46:5b:45:87:b5:73:64: e9:cd:7e:24:ec:a7:16:1e:6d:1b:fe:a8:27:b1:55: 8d:77:f3:92:94:6e:65:c3:a3:d4:e4:92:19:97:8d: 77:e7:ef:38:e4:8d:d0:e4:22:6c:5e:11:91:2d:20: 2e:8f:35:5b:ff:a5:ac:37:96:02:cc:e5:75:75:9f: 5c:73:01:f8:45:6d:57:22:8e:77:1a:fa:76:a4:b5: fe:2a:8d:ad:de:6b:8e:02:e4:34:50:49:bc:16:09: 8f:62:82:cd:05:9e:4b:31:cd:42:2d:c0:98:01:91: d1:b1:e5:65:19:11:65:67:33:b1:b3:ae:be:8d:54: c2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6C:96:4C:7D:7F:19:5E:0E:65:B9:6A:37:D1:EE:59:56:9A:CD:C1 X509v3 Authority Key Identifier: keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/BmyWTH1_GV4OZblqN9HuWVaazcE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:61a0::/32 Signature Algorithm: sha256WithRSAEncryption 45:a4:05:af:92:02:28:47:5a:7f:16:ca:da:49:86:bc:a6:ce: 06:8b:10:91:1f:15:f4:c6:37:1b:cb:28:84:68:50:d5:fa:1f: 61:3c:1a:a2:f7:6b:05:76:e0:a1:5f:2a:0c:32:84:83:a5:34: e9:a5:77:00:77:fe:e7:fc:95:8d:77:63:d7:d6:99:da:9d:3c: dd:c1:f1:0e:02:08:82:a9:10:90:38:56:98:cb:82:13:63:af: 5d:bf:0f:9d:92:90:75:2f:21:27:f3:a3:db:e0:39:0e:ad:69: 45:61:41:e3:ae:23:47:98:c2:eb:95:74:a4:41:2d:6d:2c:4a: 8b:82:09:ff:2c:06:e3:7b:80:93:23:b4:82:30:ae:2a:a9:7e: c8:88:1d:db:a3:10:68:97:8e:e9:b6:ff:21:71:65:35:b0:25: 45:f0:ae:4a:80:c7:58:c9:a8:71:63:c1:31:d3:29:c1:d4:ac: 07:a5:5a:5d:dc:90:1d:94:43:c1:bc:2e:fa:0b:d5:ad:1e:e8: 1e:11:8b:fb:1b:a5:12:e0:a6:2c:f8:4d:01:c1:ef:b1:3a:25: 3d:cb:c9:c9:f7:b9:33:f9:e3:a4:bd:96:e6:94:a2:78:f6:b5: d5:36:26:13:ed:5a:10:ab:72:e5:df:ef:14:d9:5c:c9:82:ab: ac:d3:47:20 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAoYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJD ODQzOUZFMTlEOTlCMDM4MjcwMjA4Qzk0QjY2Q0EyMzFGRkVENTAeFw0yNDA4MjYw NTExMTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA2NkM5NjRDN0Q3RjE5 NUUwRTY1Qjk2QTM3RDFFRTU5NTY5QUNEQzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZPBLNPChXOfW3A2VjOprr0CuJ3zkQkpfFonm4Dl6WDoYAK/dq sH8ggIotBsThoTG23DURW8OT4C2yphQBO1gcun//wocEpGWUkSOR9dpZLhc06m0T aFJ9yAG08dWtr9V9HCIQQONMZFygzOAEPvobF+r1zpESJJiWYEo5WPWXRltFh7Vz ZOnNfiTspxYebRv+qCexVY1385KUbmXDo9TkkhmXjXfn7zjkjdDkImxeEZEtIC6P NVv/paw3lgLM5XV1n1xzAfhFbVcijnca+naktf4qja3ea44C5DRQSbwWCY9igs0F nksxzUItwJgBkdGx5WUZEWVnM7Gzrr6NVMIZAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUBmyWTH1/GV4OZblqN9HuWVaazcEwHwYDVR0jBBgwFoAUq8hDn+GdmbA4JwII yUtmyiMf/tUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU RUwvcThoRG4tR2RtYkE0SndJSXlVdG15aU1mX3RVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOGhEbi1HZG1iQTRKd0lJeVV0bXlpTWZfdFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElOQVRFTC9CbXlXVEgxX0dWNE9a YmxxTjlIdVdWYWF6Y0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJABhoDANBgkqhkiG9w0BAQsFAAOCAQEARaQFr5ICKEdafxbK2kmGvKbOBosQ kR8V9MY3G8sohGhQ1fofYTwaovdrBXbgoV8qDDKEg6U06aV3AHf+5/yVjXdj19aZ 2p083cHxDgIIgqkQkDhWmMuCE2OvXb8PnZKQdS8hJ/Oj2+A5Dq1pRWFB464jR5jC 65V0pEEtbSxKi4IJ/ywG43uAkyO0gjCuKql+yIgd26MQaJeO6bb/IXFlNbAlRfCu SoDHWMmocWPBMdMpwdSsB6VaXdyQHZRDwbwu+gvVrR7oHhGL+xulEuCmLPhNAcHv sTolPcvJyfe5M/njpL2W5pSiePa11TYmE+1aEKty5d/vFNlcyYKrrNNHIA== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:35 2024 by rpki-client on console-fra.rpki-client.org