$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/y2CCRDDTlo4OLEotxXJMX70ALPM.roa File: y2CCRDDTlo4OLEotxXJMX70ALPM.roa (raw, json) Hash identifier: vwOS3QcqEPML4fpXZjndjp34F46z0F2RJdHwMqO1zTs= Subject key identifier: CB:60:82:44:30:D3:96:8E:0E:2C:4A:2D:C5:72:4C:5F:BD:00:2C:F3 Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Certificate serial: 0184 Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/y2CCRDDTlo4OLEotxXJMX70ALPM.roa Signing time: Fri 01 Sep 2023 08:30:02 +0000 ROA not before: Fri 01 Sep 2023 08:30:02 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38047 IP address blocks: 2400:61a0:a054::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 21:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Validity Not Before: Sep 1 08:30:02 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CB60824430D3968E0E2C4A2DC5724C5FBD002CF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:09:aa:38:92:cd:ce:74:62:2e:99:67:3b:5c: ca:d4:b1:20:36:88:fe:cd:68:6c:33:e5:04:aa:d2: 37:74:dd:a1:9b:86:73:f1:29:a4:6d:f9:e0:e1:61: fc:0f:da:57:35:5a:52:ac:8a:15:cf:ad:5d:19:d9: a1:48:52:04:65:9c:ef:6a:7b:04:4a:21:f3:14:59: fa:52:37:32:b2:ef:2d:51:2a:01:3e:2a:f6:fd:f1: b1:c5:ee:68:c8:5f:72:78:2d:cc:fc:2c:7d:5e:51: 21:60:8f:70:59:87:76:33:be:98:fe:28:f3:cb:39: a4:bf:96:63:f2:d0:9d:a9:4f:6d:20:90:b0:84:9e: f4:77:45:ab:b1:09:fb:23:00:1b:f0:e3:c5:fd:8a: 05:dc:ee:5d:08:44:09:3b:ec:4a:e9:eb:5c:6d:1a: 2b:c1:8e:43:7f:d9:fc:76:24:4a:1b:a7:74:89:8f: 79:98:c3:2d:97:0f:c2:da:f3:87:a1:9d:f0:c0:5f: 21:d7:4e:d3:31:04:d9:c6:f0:38:02:07:fc:2c:f7: 7e:71:f1:c7:99:0d:5d:21:66:1b:43:55:74:35:dc: 8d:61:d4:98:42:dc:6c:73:b6:af:b9:0c:df:3b:df: 26:83:36:42:4d:7a:44:f1:85:90:6b:83:c2:dd:49: cf:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:60:82:44:30:D3:96:8E:0E:2C:4A:2D:C5:72:4C:5F:BD:00:2C:F3 X509v3 Authority Key Identifier: keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/y2CCRDDTlo4OLEotxXJMX70ALPM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:61a0:a054::/48 Signature Algorithm: sha256WithRSAEncryption 61:7b:8a:82:df:e8:43:d6:e3:67:94:a1:17:39:b9:fd:6c:39: 06:8c:a6:37:fe:bb:75:89:a0:50:8b:d0:58:3b:3d:03:10:ff: bd:dc:d8:fe:4f:c4:a8:ae:ac:cf:cf:95:4e:ec:d4:48:bc:4c: ba:d4:c9:a1:3c:5f:86:81:c8:5e:79:6c:a3:1a:8e:02:9b:07: d5:41:00:6e:39:cb:6e:27:ad:cb:b0:1f:87:53:f5:ab:db:94: e9:a8:5d:8e:45:b7:58:ad:32:a2:f0:2c:e2:49:43:86:ab:03: fe:cf:7d:01:26:c3:8d:66:bc:7f:d1:b5:4e:6e:07:2c:35:e7: 06:07:4c:6c:1e:b9:29:a7:98:17:dd:f0:97:31:ab:fa:03:40: 1e:63:cc:2b:34:2b:29:9a:36:3e:df:cd:3c:55:ad:f7:ca:c4: 03:d7:52:90:e7:b7:d3:57:02:97:b4:f6:67:b8:a1:a7:61:cc: 89:a1:09:3a:37:2d:62:71:e3:a8:c0:fb:37:e8:5d:19:2d:44: 8e:6a:e6:75:ea:58:66:f1:74:c3:40:fc:65:bb:c8:d3:ff:e7: 4f:36:dc:84:dd:0d:17:4a:81:d0:06:4b:89:70:29:79:75:8d: 0a:bb:13:b6:59:62:f4:01:08:6d:9a:d8:0f:35:54:e7:9d:d9: 31:de:b4:0f -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJD ODQzOUZFMTlEOTlCMDM4MjcwMjA4Qzk0QjY2Q0EyMzFGRkVENTAeFw0yMzA5MDEw ODMwMDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENCNjA4MjQ0MzBEMzk2 OEUwRTJDNEEyREM1NzI0QzVGQkQwMDJDRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdCao4ks3OdGIumWc7XMrUsSA2iP7NaGwz5QSq0jd03aGbhnPx KaRt+eDhYfwP2lc1WlKsihXPrV0Z2aFIUgRlnO9qewRKIfMUWfpSNzKy7y1RKgE+ Kvb98bHF7mjIX3J4Lcz8LH1eUSFgj3BZh3Yzvpj+KPPLOaS/lmPy0J2pT20gkLCE nvR3RauxCfsjABvw48X9igXc7l0IRAk77Erp61xtGivBjkN/2fx2JEobp3SJj3mY wy2XD8La84ehnfDAXyHXTtMxBNnG8DgCB/ws935x8ceZDV0hZhtDVXQ13I1h1JhC 3Gxztq+5DN873yaDNkJNekTxhZBrg8LdSc8bAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUy2CCRDDTlo4OLEotxXJMX70ALPMwHwYDVR0jBBgwFoAUq8hDn+GdmbA4JwII yUtmyiMf/tUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU RUwvcThoRG4tR2RtYkE0SndJSXlVdG15aU1mX3RVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOGhEbi1HZG1iQTRKd0lJeVV0bXlpTWZfdFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElOQVRFTC95MkNDUkREVGxvNE9M RW90eFhKTVg3MEFMUE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcAJABhoKBUMA0GCSqGSIb3DQEBCwUAA4IBAQBhe4qC3+hD1uNnlKEXObn9bDkG jKY3/rt1iaBQi9BYOz0DEP+93Nj+T8SorqzPz5VO7NRIvEy61MmhPF+GgcheeWyj Go4CmwfVQQBuOctuJ63LsB+HU/Wr25TpqF2ORbdYrTKi8CziSUOGqwP+z30BJsON Zrx/0bVObgcsNecGB0xsHrkpp5gX3fCXMav6A0AeY8wrNCspmjY+3808Va33ysQD 11KQ57fTVwKXtPZnuKGnYcyJoQk6Ny1iceOowPs36F0ZLUSOauZ16lhm8XTDQPxl u8jT/+dPNtyE3Q0XSoHQBkuJcCl5dY0KuxO2WWL0AQhtmtgPNVTnndkx3rQP -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:41 2024 by rpki-client on console-ams.rpki-client.org