$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/wEUbPpPKl73YiElLanFeiYnxWwM.roa File: wEUbPpPKl73YiElLanFeiYnxWwM.roa (raw, json) Hash identifier: lHFy6yKLGOXZwh/vpeCsFJhFJaJqwCowi44Jrk7eyb0= Subject key identifier: C0:45:1B:3E:93:CA:97:BD:D8:88:49:4B:6A:71:5E:89:89:F1:5B:03 Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Certificate serial: 0285 Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/wEUbPpPKl73YiElLanFeiYnxWwM.roa Signing time: Mon 26 Aug 2024 05:11:15 +0000 ROA not before: Mon 26 Aug 2024 05:11:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 103.183.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 645 (0x285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Validity Not Before: Aug 26 05:11:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C0451B3E93CA97BDD888494B6A715E8989F15B03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:76:43:c7:d0:53:31:12:db:61:02:0f:ca:67: 57:cb:d4:a8:77:38:18:51:03:13:42:71:20:6a:1b: b1:06:fe:32:22:5f:e8:af:07:b5:f4:83:fe:76:bb: f4:10:46:2a:6c:3d:3f:49:3a:7b:4f:f1:4b:df:68: 69:00:95:13:40:2e:d2:9a:c4:e2:c5:9c:32:2b:41: 78:54:5e:fb:c7:97:45:04:ba:33:d4:9c:5a:b2:32: 22:90:ac:47:90:6e:82:4a:5f:85:f5:0c:96:a4:b5: 8e:a6:2c:83:c3:a4:da:b2:4b:5b:0e:b5:ce:07:c4: 48:bb:55:13:d8:a3:e2:0d:ad:d3:24:75:93:38:81: 1d:92:90:36:a3:10:e1:73:ab:43:84:d8:d3:fb:91: 14:1f:d2:fa:4b:58:65:20:8c:20:a3:42:3c:bd:26: 46:f4:ee:cc:55:4e:82:ce:a7:e1:b3:2f:4b:a0:bd: d9:b0:bb:35:4b:3a:4f:0e:ed:73:7e:d3:dd:6a:0b: b2:d4:42:2b:ab:98:f9:b5:fd:b4:9f:27:06:d1:9a: 2b:f3:65:fa:36:f9:80:73:68:57:81:8e:ec:70:3b: 8a:4e:53:39:0f:68:6d:06:78:ee:69:99:90:51:c1: 21:c5:7f:2f:c7:a5:6a:40:da:3a:7e:6d:a4:a3:53: 6b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:45:1B:3E:93:CA:97:BD:D8:88:49:4B:6A:71:5E:89:89:F1:5B:03 X509v3 Authority Key Identifier: keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/wEUbPpPKl73YiElLanFeiYnxWwM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.183.79.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:dc:95:55:05:28:b3:34:07:89:ef:c2:70:3c:94:f0:ee:4a: 52:c2:e8:18:fb:00:dc:8d:8b:e3:0d:d4:2f:c9:08:e2:7d:81: 29:7a:3d:29:20:92:a0:f3:81:2f:51:b4:47:c7:06:94:f7:85: 28:74:36:a7:d4:86:c4:42:f8:f3:4a:25:f4:0c:d7:bf:cd:b3: 5e:2b:16:f8:f0:3e:4c:a4:f8:84:bb:26:f2:aa:d1:63:35:4b: ae:98:39:21:f6:ef:66:77:99:e8:99:e3:3c:c1:00:9b:71:69: cf:9b:d6:9b:0e:9d:b4:32:9e:64:62:17:c3:70:f3:14:18:54: d4:b9:bc:1f:40:28:da:63:98:43:e5:85:a7:cb:1c:8d:4b:f4: 3e:bd:be:94:c4:04:23:1d:df:21:dd:c3:b8:f6:86:71:26:0a: e8:89:57:20:aa:fb:29:54:a2:5d:d9:45:e1:31:46:dc:ef:c5: 5d:2f:56:3e:5e:ea:e6:a1:1b:dc:33:f4:00:29:9b:dc:2c:98: 09:dc:7b:ee:48:cf:56:ae:95:0a:fa:98:fc:18:c5:b5:48:8c: 93:20:82:75:3c:38:c5:06:ec:f9:f1:4e:0e:cb:9c:8a:dc:34: ee:31:55:9b:02:1a:bc:d0:43:12:0f:b7:9a:73:8c:69:86:04: 81:a6:7a:e0 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAoUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJD ODQzOUZFMTlEOTlCMDM4MjcwMjA4Qzk0QjY2Q0EyMzFGRkVENTAeFw0yNDA4MjYw NTExMTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMwNDUxQjNFOTNDQTk3 QkREODg4NDk0QjZBNzE1RTg5ODlGMTVCMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCldkPH0FMxEtthAg/KZ1fL1Kh3OBhRAxNCcSBqG7EG/jIiX+iv B7X0g/52u/QQRipsPT9JOntP8UvfaGkAlRNALtKaxOLFnDIrQXhUXvvHl0UEujPU nFqyMiKQrEeQboJKX4X1DJaktY6mLIPDpNqyS1sOtc4HxEi7VRPYo+INrdMkdZM4 gR2SkDajEOFzq0OE2NP7kRQf0vpLWGUgjCCjQjy9Jkb07sxVToLOp+GzL0ugvdmw uzVLOk8O7XN+091qC7LUQiurmPm1/bSfJwbRmivzZfo2+YBzaFeBjuxwO4pOUzkP aG0GeO5pmZBRwSHFfy/HpWpA2jp+baSjU2tHAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUwEUbPpPKl73YiElLanFeiYnxWwMwHwYDVR0jBBgwFoAUq8hDn+GdmbA4JwII yUtmyiMf/tUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU RUwvcThoRG4tR2RtYkE0SndJSXlVdG15aU1mX3RVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOGhEbi1HZG1iQTRKd0lJeVV0bXlpTWZfdFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElOQVRFTC93RVViUHBQS2w3M1lp RWxMYW5GZWlZbnhXd00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ7dPMA0GCSqGSIb3DQEBCwUAA4IBAQAt3JVVBSizNAeJ78JwPJTw7kpSwugY +wDcjYvjDdQvyQjifYEpej0pIJKg84EvUbRHxwaU94UodDan1IbEQvjzSiX0DNe/ zbNeKxb48D5MpPiEuybyqtFjNUuumDkh9u9md5nomeM8wQCbcWnPm9abDp20Mp5k YhfDcPMUGFTUubwfQCjaY5hD5YWnyxyNS/Q+vb6UxAQjHd8h3cO49oZxJgroiVcg qvspVKJd2UXhMUbc78VdL1Y+XurmoRvcM/QAKZvcLJgJ3HvuSM9WrpUK+pj8GMW1 SIyTIIJ1PDjFBuz58U4Oy5yK3DTuMVWbAhq80EMSD7eac4xphgSBpnrg -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:02 2024 by rpki-client on console-ams.rpki-client.org