$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/O7JnmraX88MSe4JBI_X75tRfGzM.roa File: O7JnmraX88MSe4JBI_X75tRfGzM.roa (raw, json) Hash identifier: AbDRdDWKYyexEzKXsnVVwSk73gXUlf8hXemXnOvybZU= Subject key identifier: 3B:B2:67:9A:B6:97:F3:C3:12:7B:82:41:23:F5:FB:E6:D4:5F:1B:33 Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Certificate serial: 0182 Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/O7JnmraX88MSe4JBI_X75tRfGzM.roa Signing time: Fri 01 Sep 2023 08:30:01 +0000 ROA not before: Fri 01 Sep 2023 08:30:01 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38047 IP address blocks: 2400:61a0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 21:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Validity Not Before: Sep 1 08:30:01 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=3BB2679AB697F3C3127B824123F5FBE6D45F1B33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b5:df:05:49:f9:ca:f4:92:56:24:df:fe:3d: 62:8d:1b:0f:e1:b2:3e:00:d9:e6:fb:19:46:d5:d4: e7:db:ae:8a:b2:f6:73:4d:fa:7f:39:ce:c6:61:28: 80:8a:8c:59:6e:f1:7d:80:87:ee:ee:68:c2:c7:d3: 1f:45:6b:45:63:a1:a6:78:fe:84:e2:dc:08:73:64: cc:58:a3:26:82:47:51:9e:70:24:55:35:73:13:68: f6:14:d8:9d:4f:62:0b:6c:94:23:bc:2c:9e:e9:48: 30:d1:75:3e:7f:87:d5:4b:4c:9e:8a:18:03:80:cd: d3:dd:24:33:46:c7:92:44:e0:f5:ff:0b:70:ea:1f: dc:3c:96:fd:df:76:cf:27:4e:f9:72:8d:73:61:2f: 56:77:ba:19:f8:5a:00:97:03:ee:25:57:0f:b9:30: aa:97:ee:0a:cc:93:89:a2:0b:54:e3:56:91:f6:de: d6:20:24:cd:ae:df:7d:11:d8:12:19:dc:0e:ef:ed: 98:c7:e7:a6:c4:c3:2e:4b:a0:1e:ac:7f:14:c5:7a: c2:ef:7e:f4:ed:88:69:2c:dc:d5:d7:65:1c:50:18: 5e:6b:ec:40:01:a7:a0:3c:20:3c:e1:b1:9e:bf:85: c4:94:aa:a8:da:41:72:b2:5c:97:04:97:bb:4b:cf: 20:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:B2:67:9A:B6:97:F3:C3:12:7B:82:41:23:F5:FB:E6:D4:5F:1B:33 X509v3 Authority Key Identifier: keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/O7JnmraX88MSe4JBI_X75tRfGzM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:61a0::/32 Signature Algorithm: sha256WithRSAEncryption 16:c1:c1:f9:85:c3:67:a0:f4:88:3a:48:1a:0a:e4:89:92:41: 45:f2:aa:81:26:41:8a:47:92:1e:a2:74:d0:a2:8a:3a:29:85: 8a:6d:20:32:95:df:72:fb:c4:b3:ec:de:a2:ff:a5:c9:66:06: 28:fa:7e:9a:b5:88:39:bf:0a:16:80:7e:c2:09:43:ae:96:e5: ac:53:e6:44:cd:a5:be:8d:c1:28:15:59:17:47:91:a5:33:e5: fb:3a:10:45:30:c2:0c:f6:52:ca:d9:91:ec:9b:c2:35:1f:6b: 01:7f:65:b6:79:98:55:21:9d:29:49:8b:a7:4a:d4:17:cb:61: f7:43:5f:82:73:7f:e7:ed:c3:52:98:91:70:78:9e:df:10:6d: fe:58:09:25:3f:2d:ba:17:b6:c6:13:63:3b:8d:61:38:ee:fb: 2e:1c:6e:30:d3:62:9c:89:25:3f:56:3d:73:55:f9:6c:13:db: a1:08:24:ff:c1:0b:bc:37:ab:6e:a1:c6:15:80:c8:51:d2:e2: 23:20:6e:58:1b:f8:34:ea:0f:a0:48:80:7a:91:42:fb:e2:91: 1e:83:61:83:be:5a:60:af:3a:49:ae:f3:96:49:4b:6a:93:ab: f1:db:2f:e3:5f:ec:53:b0:94:a1:a7:bd:08:42:39:ef:13:e0: 6d:18:a1:1d -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJD ODQzOUZFMTlEOTlCMDM4MjcwMjA4Qzk0QjY2Q0EyMzFGRkVENTAeFw0yMzA5MDEw ODMwMDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDNCQjI2NzlBQjY5N0Yz QzMxMjdCODI0MTIzRjVGQkU2RDQ1RjFCMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCtd8FSfnK9JJWJN/+PWKNGw/hsj4A2eb7GUbV1Ofbroqy9nNN +n85zsZhKICKjFlu8X2Ah+7uaMLH0x9Fa0VjoaZ4/oTi3AhzZMxYoyaCR1GecCRV NXMTaPYU2J1PYgtslCO8LJ7pSDDRdT5/h9VLTJ6KGAOAzdPdJDNGx5JE4PX/C3Dq H9w8lv3fds8nTvlyjXNhL1Z3uhn4WgCXA+4lVw+5MKqX7grMk4miC1TjVpH23tYg JM2u330R2BIZ3A7v7ZjH56bEwy5LoB6sfxTFesLvfvTtiGks3NXXZRxQGF5r7EAB p6A8IDzhsZ6/hcSUqqjaQXKyXJcEl7tLzyCzAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUO7JnmraX88MSe4JBI/X75tRfGzMwHwYDVR0jBBgwFoAUq8hDn+GdmbA4JwII yUtmyiMf/tUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU RUwvcThoRG4tR2RtYkE0SndJSXlVdG15aU1mX3RVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOGhEbi1HZG1iQTRKd0lJeVV0bXlpTWZfdFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElOQVRFTC9PN0pubXJhWDg4TVNl NEpCSV9YNzV0UmZHek0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJABhoDANBgkqhkiG9w0BAQsFAAOCAQEAFsHB+YXDZ6D0iDpIGgrkiZJBRfKq gSZBikeSHqJ00KKKOimFim0gMpXfcvvEs+zeov+lyWYGKPp+mrWIOb8KFoB+wglD rpblrFPmRM2lvo3BKBVZF0eRpTPl+zoQRTDCDPZSytmR7JvCNR9rAX9ltnmYVSGd KUmLp0rUF8th90NfgnN/5+3DUpiRcHie3xBt/lgJJT8tuhe2xhNjO41hOO77Lhxu MNNinIklP1Y9c1X5bBPboQgk/8ELvDerbqHGFYDIUdLiIyBuWBv4NOoPoEiAepFC ++KRHoNhg75aYK86Sa7zlklLapOr8dsv41/sU7CUoae9CEI57xPgbRihHQ== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:41 2024 by rpki-client on console-ams.rpki-client.org