$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/UDemUE4WWAsVxIqF5T519l_bRj0.roa File: UDemUE4WWAsVxIqF5T519l_bRj0.roa (raw, json) Hash identifier: NfVUM0qymiaV6DnjOqAEjSgmaQADhs7ylbVfRU1WLHo= Subject key identifier: 50:37:A6:50:4E:16:58:0B:15:C4:8A:85:E5:3E:75:F6:5F:DB:46:3D Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Certificate serial: 0220 Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/UDemUE4WWAsVxIqF5T519l_bRj0.roa Signing time: Wed 17 Apr 2024 08:35:47 +0000 ROA not before: Wed 17 Apr 2024 08:35:47 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38047 IP address blocks: 103.183.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 21:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Validity Not Before: Apr 17 08:35:47 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5037A6504E16580B15C48A85E53E75F65FDB463D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:80:b8:66:e3:50:75:bd:ea:ae:99:d3:62:12: d8:84:51:b6:4e:84:2f:6d:73:4c:30:08:81:33:03: 08:5b:ec:b2:a6:17:91:5a:73:8a:96:27:a6:a3:62: f0:a6:64:fe:98:32:fb:60:51:3c:55:f7:ec:98:0b: d6:59:4e:a7:65:a4:01:51:7e:3f:53:49:be:7c:5b: 9d:9a:00:d7:6f:70:23:bb:b9:f8:bd:f8:09:30:ba: b1:7e:b9:91:29:73:30:e8:2c:fd:54:5e:c2:5d:6a: 01:a1:00:0f:ac:39:da:53:2e:44:f3:cf:01:64:1d: a0:e9:02:54:83:02:2c:c0:aa:62:28:51:eb:69:c3: 34:f4:95:dd:e8:ce:47:40:61:a5:3b:63:24:23:13: e0:94:7d:20:5c:b9:46:35:a0:35:bc:f7:dd:bc:62: 97:22:a7:2d:fc:65:45:1b:ba:f8:cf:23:82:41:d1: dd:29:35:9d:99:04:70:95:67:ca:29:26:c8:ae:cb: 99:8f:68:c0:f9:b2:99:1b:1c:50:a8:70:2b:71:8f: dc:a7:ab:54:79:70:f5:16:2b:ac:9e:e6:ea:34:79: 7a:c9:d4:8b:f6:9d:c5:85:cd:32:0d:8d:69:d9:e9: 3a:ae:ba:f6:91:0d:76:c2:7d:d0:fa:2d:94:42:a8: d5:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:37:A6:50:4E:16:58:0B:15:C4:8A:85:E5:3E:75:F6:5F:DB:46:3D X509v3 Authority Key Identifier: keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/UDemUE4WWAsVxIqF5T519l_bRj0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.183.78.0/23 Signature Algorithm: sha256WithRSAEncryption 02:21:ee:6d:b7:62:33:de:50:4b:fb:9a:af:70:79:f7:76:ef: 83:af:92:6d:5e:de:e3:c8:e5:ba:61:fc:6e:6b:91:fd:92:91: f9:3d:ba:72:b7:f4:12:da:8e:af:a9:17:ac:2f:7e:58:13:1d: d2:66:f6:4d:50:c5:f7:94:10:66:2d:b3:38:05:56:3f:0b:3c: b9:cd:61:63:bb:18:fa:65:38:4d:28:8b:6e:e1:06:f4:4f:52: 82:b8:c5:61:28:03:2f:56:c1:83:d3:eb:51:2c:d8:14:c8:22: 10:c8:a5:2e:5e:96:06:66:94:b3:58:4a:92:6e:37:48:f7:51: 86:30:49:57:e9:69:60:74:48:12:b8:11:be:75:7e:31:b1:3e: 2b:07:f4:b6:0c:76:c8:b8:be:6f:f9:db:6a:76:84:a9:f1:49: 6b:a3:29:d0:40:2c:41:52:5c:f4:a4:a2:a6:18:c9:ce:7d:2e: 74:ef:7a:ac:a5:51:e5:a1:42:65:ab:6b:a1:df:a0:c3:ed:e5: bc:5e:d3:39:b7:c3:1f:16:db:6d:3a:2d:f6:6f:50:35:60:fc: b7:9f:d9:ae:65:42:84:07:6c:11:93:e9:d4:f7:65:89:ea:d8: d3:23:31:64:59:29:bd:07:87:d9:a5:82:eb:10:4b:7f:81:d2: 56:7b:a7:f5 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJD ODQzOUZFMTlEOTlCMDM4MjcwMjA4Qzk0QjY2Q0EyMzFGRkVENTAeFw0yNDA0MTcw ODM1NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDUwMzdBNjUwNEUxNjU4 MEIxNUM0OEE4NUU1M0U3NUY2NUZEQjQ2M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1gLhm41B1vequmdNiEtiEUbZOhC9tc0wwCIEzAwhb7LKmF5Fa c4qWJ6ajYvCmZP6YMvtgUTxV9+yYC9ZZTqdlpAFRfj9TSb58W52aANdvcCO7ufi9 +AkwurF+uZEpczDoLP1UXsJdagGhAA+sOdpTLkTzzwFkHaDpAlSDAizAqmIoUetp wzT0ld3ozkdAYaU7YyQjE+CUfSBcuUY1oDW89928Ypcipy38ZUUbuvjPI4JB0d0p NZ2ZBHCVZ8opJsiuy5mPaMD5spkbHFCocCtxj9ynq1R5cPUWK6ye5uo0eXrJ1Iv2 ncWFzTINjWnZ6TquuvaRDXbCfdD6LZRCqNWzAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUUDemUE4WWAsVxIqF5T519l/bRj0wHwYDVR0jBBgwFoAUq8hDn+GdmbA4JwII yUtmyiMf/tUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU RUwvcThoRG4tR2RtYkE0SndJSXlVdG15aU1mX3RVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOGhEbi1HZG1iQTRKd0lJeVV0bXlpTWZfdFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElOQVRFTC9VRGVtVUU0V1dBc1Z4 SXFGNVQ1MTlsX2JSajAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ7dOMA0GCSqGSIb3DQEBCwUAA4IBAQACIe5tt2Iz3lBL+5qvcHn3du+Dr5Jt Xt7jyOW6Yfxua5H9kpH5Pbpyt/QS2o6vqResL35YEx3SZvZNUMX3lBBmLbM4BVY/ Czy5zWFjuxj6ZThNKItu4Qb0T1KCuMVhKAMvVsGD0+tRLNgUyCIQyKUuXpYGZpSz WEqSbjdI91GGMElX6WlgdEgSuBG+dX4xsT4rB/S2DHbIuL5v+dtqdoSp8UlroynQ QCxBUlz0pKKmGMnOfS5073qspVHloUJlq2uh36DD7eW8XtM5t8MfFtttOi32b1A1 YPy3n9muZUKEB2wRk+nU92WJ6tjTIzFkWSm9B4fZpYLrEEt/gdJWe6f1 -----END CERTIFICATE-----Generated at Mon Jun 3 12:43:59 2024 by rpki-client on console-fra.rpki-client.org