$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/oTLRBnZpUqhIzWbbX6DoVmRD5p8.roa File: oTLRBnZpUqhIzWbbX6DoVmRD5p8.roa (raw, json) Hash identifier: 4eUDS+iSgpLLWZhpVHi6wjjDi1oUEDPNJopxiTcw76M= Subject key identifier: A1:32:D1:06:76:69:52:A8:48:CD:66:DB:5F:A0:E8:56:64:43:E6:9F Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Certificate serial: 0183 Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/oTLRBnZpUqhIzWbbX6DoVmRD5p8.roa Signing time: Fri 01 Sep 2023 08:30:02 +0000 ROA not before: Fri 01 Sep 2023 08:30:02 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38047 IP address blocks: 103.183.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 21:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Validity Not Before: Sep 1 08:30:02 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A132D106766952A848CD66DB5FA0E8566443E69F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:68:4d:2a:c6:95:40:d7:3b:97:96:00:c1:f7: ee:54:6f:7f:e3:08:f7:40:99:31:7b:60:77:c6:cd: f0:92:39:70:06:29:d5:b2:f4:6b:98:f4:cf:1e:86: c4:d3:ea:a9:ac:99:f3:c3:3b:5f:47:be:b8:d5:54: 2e:7b:8b:0b:89:4e:af:7d:3f:8b:38:fb:2d:34:ed: 75:69:f3:e4:fa:d4:15:6b:67:0a:65:bb:ad:27:a2: eb:30:75:3c:a2:93:0e:4b:b2:79:61:43:ff:b1:ab: c6:76:27:34:1f:9c:19:60:d4:d3:66:c1:02:05:c1: b3:aa:1a:2d:c5:65:7a:30:47:51:09:13:c2:48:8a: 5d:35:a1:05:1c:97:06:6a:70:79:86:ab:39:70:85: 1b:71:52:e8:75:a1:a4:cf:75:b8:fa:5b:be:33:b9: ad:7d:85:bd:a0:05:d5:da:ea:58:07:fa:3d:9e:7d: 1b:50:f3:46:98:20:90:29:7a:be:81:e1:27:71:9f: fc:f9:98:09:19:cf:dd:4e:87:92:fc:a4:05:91:74: f7:d1:85:a7:d0:8d:2d:27:86:56:48:3e:8f:1d:84: 4e:91:c6:64:ed:2b:57:69:1f:d2:70:e1:44:d7:14: 9c:26:d1:55:e8:5e:a2:9a:e9:bc:72:f9:04:8a:0d: 17:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:32:D1:06:76:69:52:A8:48:CD:66:DB:5F:A0:E8:56:64:43:E6:9F X509v3 Authority Key Identifier: keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/oTLRBnZpUqhIzWbbX6DoVmRD5p8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.183.79.0/24 Signature Algorithm: sha256WithRSAEncryption 95:e4:06:b7:63:44:13:8c:a4:0e:64:47:81:5a:a6:18:68:05: 45:9e:c7:b3:a0:87:38:c5:72:55:1e:6b:d1:b8:22:f2:a2:76: dc:0e:3d:f0:d5:1d:8e:1c:fe:c7:57:7e:d6:02:f8:f4:d4:a3: 56:88:d7:e9:9e:b2:3f:5d:8b:cf:9d:48:4f:be:7e:89:09:76: 31:17:0a:e5:f6:d7:f1:10:eb:5c:ed:26:e0:1d:d2:ed:ce:02: 7f:6f:03:c7:6d:ca:f6:09:5a:9a:e4:bc:55:92:a3:c8:d0:f6: 0f:03:65:e9:28:f0:df:15:7c:7b:12:3b:fb:22:df:33:0d:5b: 27:33:4c:0e:17:25:81:b0:b9:3f:2e:52:4c:12:46:93:f2:ee: 52:67:32:26:53:b7:9e:11:84:4b:ca:31:36:9a:9c:4f:bd:01: bb:72:34:ba:49:f2:c3:01:fd:1f:f5:fa:f1:45:e1:a0:ca:d4: 4a:e7:9e:e7:33:3a:25:a4:0c:94:55:6f:d3:88:8d:70:56:6e: 40:04:0e:94:69:5b:cd:30:cc:be:38:17:b3:bb:44:02:a5:b7: da:29:80:70:3f:66:e8:98:ad:b9:22:70:19:5f:53:14:82:28: d1:99:f2:7e:b8:bb:d5:48:a2:fb:c2:4c:81:b3:f2:00:aa:e5: 53:cd:00:c3 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJD ODQzOUZFMTlEOTlCMDM4MjcwMjA4Qzk0QjY2Q0EyMzFGRkVENTAeFw0yMzA5MDEw ODMwMDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEExMzJEMTA2NzY2OTUy QTg0OENENjZEQjVGQTBFODU2NjQ0M0U2OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIaE0qxpVA1zuXlgDB9+5Ub3/jCPdAmTF7YHfGzfCSOXAGKdWy 9GuY9M8ehsTT6qmsmfPDO19HvrjVVC57iwuJTq99P4s4+y007XVp8+T61BVrZwpl u60nouswdTyikw5LsnlhQ/+xq8Z2JzQfnBlg1NNmwQIFwbOqGi3FZXowR1EJE8JI il01oQUclwZqcHmGqzlwhRtxUuh1oaTPdbj6W74zua19hb2gBdXa6lgH+j2efRtQ 80aYIJAper6B4Sdxn/z5mAkZz91Oh5L8pAWRdPfRhafQjS0nhlZIPo8dhE6RxmTt K1dpH9Jw4UTXFJwm0VXoXqKa6bxy+QSKDReFAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUoTLRBnZpUqhIzWbbX6DoVmRD5p8wHwYDVR0jBBgwFoAUq8hDn+GdmbA4JwII yUtmyiMf/tUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU RUwvcThoRG4tR2RtYkE0SndJSXlVdG15aU1mX3RVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOGhEbi1HZG1iQTRKd0lJeVV0bXlpTWZfdFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElOQVRFTC9vVExSQm5acFVxaEl6 V2JiWDZEb1ZtUkQ1cDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ7dPMA0GCSqGSIb3DQEBCwUAA4IBAQCV5Aa3Y0QTjKQOZEeBWqYYaAVFnsez oIc4xXJVHmvRuCLyonbcDj3w1R2OHP7HV37WAvj01KNWiNfpnrI/XYvPnUhPvn6J CXYxFwrl9tfxEOtc7SbgHdLtzgJ/bwPHbcr2CVqa5LxVkqPI0PYPA2XpKPDfFXx7 Ejv7It8zDVsnM0wOFyWBsLk/LlJMEkaT8u5SZzImU7eeEYRLyjE2mpxPvQG7cjS6 SfLDAf0f9frxReGgytRK557nMzolpAyUVW/TiI1wVm5ABA6UaVvNMMy+OBezu0QC pbfaKYBwP2bomK25InAZX1MUgijRmfJ+uLvVSKL7wkyBs/IAquVTzQDD -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:38 2024 by rpki-client on console-fra.rpki-client.org