$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/_pGJGGRXQInxGfurKdMtRxbMo-0.roa File: _pGJGGRXQInxGfurKdMtRxbMo-0.roa (raw, json) Hash identifier: 2lDPOvL0eR7rBqEv7TGA8dxE++DZX37CtExhPDYQ+0w= Subject key identifier: FE:91:89:18:64:57:40:89:F1:19:FB:AB:29:D3:2D:47:16:CC:A3:ED Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Certificate serial: 0300 Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/_pGJGGRXQInxGfurKdMtRxbMo-0.roa Signing time: Mon 10 Feb 2025 13:57:24 +0000 ROA not before: Mon 10 Feb 2025 13:57:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 103.183.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 22:07:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 768 (0x300) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Validity Not Before: Feb 10 13:57:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FE91891864574089F119FBAB29D32D4716CCA3ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ca:fd:22:e0:34:cd:b9:50:35:f8:31:58:15: 9c:d5:3b:6f:7b:a9:13:35:8d:8f:7d:c8:16:4d:a8: 3a:aa:0a:6d:72:99:d1:e9:d3:c9:ad:f7:6f:6a:ea: 9c:0a:c4:ad:dd:2c:1b:27:d3:74:5d:f5:a2:4b:83: 56:e3:cf:e7:7a:25:d9:4b:2e:50:06:b2:4d:11:fd: 9d:07:d3:11:e1:d4:b9:94:ec:77:c2:2e:6f:fe:a7: 97:79:19:21:c9:00:23:8c:d7:57:04:a2:20:b2:80: 92:53:dd:72:bb:23:94:23:93:ed:dc:b5:b9:75:0c: 17:bd:1f:52:d6:3e:87:2e:65:e7:c1:38:cb:1e:d6: 4b:8f:09:69:15:f2:df:ed:8b:f7:af:6b:23:3a:f0: 73:16:f1:e9:4f:60:f0:b6:1b:17:1d:eb:fc:23:41: 24:8c:ee:37:cf:05:0a:df:c4:ad:0e:57:3f:f0:ac: dc:b8:c0:3c:00:cd:38:e2:bd:00:0a:1c:86:e6:0b: dd:f9:f3:08:2c:aa:13:95:8a:76:2f:b1:64:d2:02: f0:52:dd:89:47:84:72:d7:5f:80:e4:f7:42:00:80: 2a:ce:40:0d:c0:d2:cd:18:0d:c8:6c:71:e5:fc:be: 97:10:d2:f2:2c:ee:9b:e1:6b:91:14:e1:28:ef:3b: 5a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:91:89:18:64:57:40:89:F1:19:FB:AB:29:D3:2D:47:16:CC:A3:ED X509v3 Authority Key Identifier: keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/_pGJGGRXQInxGfurKdMtRxbMo-0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.183.78.0/24 Signature Algorithm: sha256WithRSAEncryption 88:22:1d:9a:14:27:3c:6b:42:6e:7e:fb:35:23:a6:b3:d4:6f: 38:38:1e:cc:e5:b6:9f:6b:75:df:49:c2:c7:de:8e:a5:1e:57: 0a:ad:6a:b9:33:62:39:f7:b3:47:3f:99:5a:92:a6:b4:26:35: 16:d9:35:1c:90:38:3f:02:6b:cd:7b:09:71:7a:ac:5a:31:de: a9:98:d8:f0:58:8b:76:1f:1e:65:cc:32:7c:82:15:ea:1d:b2: cb:b1:7c:ab:bf:0e:6e:e8:c8:d0:f0:7e:0b:f1:19:07:a1:3b: d6:ba:92:67:1a:c6:ad:c9:bb:cd:e4:b0:0c:63:77:e0:c2:35: f5:89:7d:d0:e6:b9:bc:78:01:ba:09:fb:7e:0a:b6:75:92:9e: 0f:34:d1:cb:b3:bf:03:90:ea:c0:23:fa:89:7c:18:14:a3:8c: 0b:74:a5:ca:6f:c5:0c:8f:ed:0e:e8:fa:94:c9:c9:3b:03:4c: 7c:c0:d2:e8:b0:2b:bb:f9:aa:d1:46:ef:ac:08:f5:26:36:da: b3:1b:d4:b8:56:81:96:8c:45:55:83:a9:8b:8d:18:16:8b:7b: 20:dd:6b:42:10:8b:9f:5a:4c:16:da:d3:9c:03:3c:4a:5b:5a: df:c9:bd:a9:07:eb:b1:ba:45:62:68:53:69:8d:f4:77:f2:3a: f7:32:31:8c -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAwAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJD ODQzOUZFMTlEOTlCMDM4MjcwMjA4Qzk0QjY2Q0EyMzFGRkVENTAeFw0yNTAyMTAx MzU3MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFOTE4OTE4NjQ1NzQw ODlGMTE5RkJBQjI5RDMyRDQ3MTZDQ0EzRUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+yv0i4DTNuVA1+DFYFZzVO297qRM1jY99yBZNqDqqCm1ymdHp 08mt929q6pwKxK3dLBsn03Rd9aJLg1bjz+d6JdlLLlAGsk0R/Z0H0xHh1LmU7HfC Lm/+p5d5GSHJACOM11cEoiCygJJT3XK7I5Qjk+3ctbl1DBe9H1LWPocuZefBOMse 1kuPCWkV8t/ti/evayM68HMW8elPYPC2Gxcd6/wjQSSM7jfPBQrfxK0OVz/wrNy4 wDwAzTjivQAKHIbmC9358wgsqhOVinYvsWTSAvBS3YlHhHLXX4Dk90IAgCrOQA3A 0s0YDchsceX8vpcQ0vIs7pvha5EU4SjvO1rRAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU/pGJGGRXQInxGfurKdMtRxbMo+0wHwYDVR0jBBgwFoAUq8hDn+GdmbA4JwII yUtmyiMf/tUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU RUwvcThoRG4tR2RtYkE0SndJSXlVdG15aU1mX3RVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOGhEbi1HZG1iQTRKd0lJeVV0bXlpTWZfdFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElOQVRFTC9fcEdKR0dSWFFJbnhH ZnVyS2RNdFJ4Yk1vLTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ7dOMA0GCSqGSIb3DQEBCwUAA4IBAQCIIh2aFCc8a0Jufvs1I6az1G84OB7M 5bafa3XfScLH3o6lHlcKrWq5M2I597NHP5lakqa0JjUW2TUckDg/AmvNewlxeqxa Md6pmNjwWIt2Hx5lzDJ8ghXqHbLLsXyrvw5u6MjQ8H4L8RkHoTvWupJnGsatybvN 5LAMY3fgwjX1iX3Q5rm8eAG6Cft+CrZ1kp4PNNHLs78DkOrAI/qJfBgUo4wLdKXK b8UMj+0O6PqUyck7A0x8wNLosCu7+arRRu+sCPUmNtqzG9S4VoGWjEVVg6mLjRgW i3sg3WtCEIufWkwW2tOcAzxKW1rfyb2pB+uxukViaFNpjfR38jr3MjGM -----END CERTIFICATE-----Generated at Sat Apr 12 20:22:32 2025 by rpki-client