$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/u9jzllMDFqD31toU7F_ax7R6Oj4.roa File: u9jzllMDFqD31toU7F_ax7R6Oj4.roa (raw, json) Hash identifier: OyCEXC4onuCiG3lwOZllMOcNHTNl87OmCjJTWlf0124= Subject key identifier: BB:D8:F3:96:53:03:16:A0:F7:D6:DA:14:EC:5F:DA:C7:B4:7A:3A:3E Certificate issuer: /CN=75BD930C745D23E9EA585C04D6B99F95A96322E5 Certificate serial: 0BDA Authority key identifier: 75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/u9jzllMDFqD31toU7F_ax7R6Oj4.roa Signing time: Mon 26 Aug 2024 05:11:18 +0000 ROA not before: Mon 26 Aug 2024 05:11:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131143 IP address blocks: 175.184.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3034 (0xbda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75BD930C745D23E9EA585C04D6B99F95A96322E5 Validity Not Before: Aug 26 05:11:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BBD8F396530316A0F7D6DA14EC5FDAC7B47A3A3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:89:4f:b9:a4:78:34:b0:15:a8:3d:80:e2:f7: 6a:91:e3:c8:2e:96:cc:c6:67:af:30:67:fc:42:25: 0e:8f:7c:94:1d:56:8a:ef:d4:0a:d6:1b:ae:79:1c: 11:82:9e:21:16:e3:a4:9b:f7:6a:06:d6:ed:b1:27: d4:4c:4e:3f:46:2b:b1:14:a1:6b:91:53:4b:32:db: f3:f3:f3:4d:20:5b:06:65:87:e5:ad:77:60:de:1a: 45:1c:2b:dd:2a:47:39:39:17:49:f5:f5:4a:86:ef: ca:8d:35:5a:e0:c3:75:bb:3b:c5:0b:72:85:ab:88: 64:69:a4:dc:96:60:a9:9a:cf:49:7c:9a:77:a9:81: 9d:14:5d:ab:06:41:bd:87:b9:54:8a:ce:28:ad:6a: 38:36:a5:cc:76:8c:8b:23:4b:eb:6d:a0:e9:96:e4: 50:9c:db:b4:16:19:a3:d9:19:5b:c8:b1:04:b3:8e: ab:c7:dd:37:28:a9:c6:dc:06:d1:c0:84:b1:d2:12: 7f:54:87:6e:dc:31:96:6f:de:16:d6:29:ba:ad:29: a4:62:eb:05:a6:c1:0c:22:20:af:6c:ed:1f:06:20: 77:4f:fb:12:a1:cc:b8:12:1b:43:30:61:bd:af:f1: 3d:15:75:b4:48:a3:35:f4:4a:86:3f:da:2e:f1:c4: a1:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D8:F3:96:53:03:16:A0:F7:D6:DA:14:EC:5F:DA:C7:B4:7A:3A:3E X509v3 Authority Key Identifier: keyid:75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/u9jzllMDFqD31toU7F_ax7R6Oj4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.184.240.0/21 Signature Algorithm: sha256WithRSAEncryption 7c:8c:78:c2:57:06:87:b8:98:63:cc:3e:63:9e:54:24:ad:09: 30:ad:4f:e9:1a:71:f5:ca:ba:fa:2a:8f:97:ef:99:6b:e9:ba: 44:d2:e6:b9:8c:ef:60:63:52:ad:fe:82:42:5a:48:6b:b6:10: ce:34:6a:f0:b3:06:87:41:51:7c:e4:7b:20:ed:46:dc:8e:3c: 46:11:ba:e8:a3:b0:e4:8b:9a:88:a1:3a:99:95:91:b5:d4:51: 6e:ec:33:86:b4:ba:76:08:a6:07:dd:25:c4:21:c7:67:32:d5: 72:95:9d:a2:f0:ef:37:56:c2:7d:d5:4a:fd:eb:e8:9e:79:f9: 3f:17:44:8f:1b:1e:fa:6e:5a:bb:5b:f9:01:af:af:7c:db:cf: a4:5c:b9:b3:29:e0:1c:9d:4b:e5:bc:3f:0c:99:f1:c4:df:3b: 44:5a:03:d3:25:cf:75:d8:22:28:a6:3b:d6:f9:0e:58:15:56: 21:7e:eb:04:95:be:6d:bf:66:00:1d:13:98:e6:55:b6:25:7a: 64:8b:21:59:27:c1:79:a1:6f:d1:97:9e:e3:bb:86:4e:94:4f: 63:f2:11:bf:d0:e0:0e:b9:f6:bd:0b:cf:75:5e:7a:a8:22:83: 7c:32:91:2b:cd:73:56:a7:4e:d5:31:c4:ac:4a:75:fa:b2:c7: 5c:a5:6b:bd -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICC9owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC RDkzMEM3NDVEMjNFOUVBNTg1QzA0RDZCOTlGOTVBOTYzMjJFNTAeFw0yNDA4MjYw NTExMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJCRDhGMzk2NTMwMzE2 QTBGN0Q2REExNEVDNUZEQUM3QjQ3QTNBM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRiU+5pHg0sBWoPYDi92qR48gulszGZ68wZ/xCJQ6PfJQdVorv 1ArWG655HBGCniEW46Sb92oG1u2xJ9RMTj9GK7EUoWuRU0sy2/Pz800gWwZlh+Wt d2DeGkUcK90qRzk5F0n19UqG78qNNVrgw3W7O8ULcoWriGRppNyWYKmaz0l8mnep gZ0UXasGQb2HuVSKziitajg2pcx2jIsjS+ttoOmW5FCc27QWGaPZGVvIsQSzjqvH 3TcoqcbcBtHAhLHSEn9Uh27cMZZv3hbWKbqtKaRi6wWmwQwiIK9s7R8GIHdP+xKh zLgSG0MwYb2v8T0VdbRIozX0SoY/2i7xxKFlAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUu9jzllMDFqD31toU7F/ax7R6Oj4wHwYDVR0jBBgwFoAUdb2TDHRdI+nqWFwE 1rmflaljIuUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU UlVTVC9kYjJUREhSZEktbnFXRndFMXJtZmxhbGpJdVUuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL2RiMlRESFJkSS1ucVdGd0Uxcm1mbGFsakl1VS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NISU5BVFJVU1QvdTlqemxsTURG cUQzMXRvVTdGX2F4N1I2T2o0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA6+48DANBgkqhkiG9w0BAQsFAAOCAQEAfIx4wlcGh7iYY8w+Y55UJK0J MK1P6Rpx9cq6+iqPl++Za+m6RNLmuYzvYGNSrf6CQlpIa7YQzjRq8LMGh0FRfOR7 IO1G3I48RhG66KOw5IuaiKE6mZWRtdRRbuwzhrS6dgimB90lxCHHZzLVcpWdovDv N1bCfdVK/evonnn5PxdEjxse+m5au1v5Aa+vfNvPpFy5syngHJ1L5bw/DJnxxN87 RFoD0yXPddgiKKY71vkOWBVWIX7rBJW+bb9mAB0TmOZVtiV6ZIshWSfBeaFv0Zee 47uGTpRPY/IRv9DgDrn2vQvPdV56qCKDfDKRK81zVqdO1THErEp1+rLHXKVrvQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org