This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/tX0IyNh3VPQkQNruOEv-T_kk5Ik.roa File: tX0IyNh3VPQkQNruOEv-T_kk5Ik.roa (raw, json) Hash identifier: z1PihgNvp5QNWLh8ove0zMMFPi/hwk0/waLqEF0osek= Subject key identifier: B5:7D:08:C8:D8:77:54:F4:24:40:DA:EE:38:4B:FE:4F:F9:24:E4:89 Certificate issuer: /CN=4091DB5A6EA03B760F54E090CB909873AE33F649 Certificate serial: 11 Authority key identifier: 40:91:DB:5A:6E:A0:3B:76:0F:54:E0:90:CB:90:98:73:AE:33:F6:49 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QJHbWm6gO3YPVOCQy5CYc64z9kk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/tX0IyNh3VPQkQNruOEv-T_kk5Ik.roa Signing time: Tue 06 Jan 2026 04:37:23 +0000 ROA not before: Tue 06 Jan 2026 04:37:23 +0000 ROA not after: Wed 30 Dec 2026 15:30:20 +0000 asID: 152612 IP address blocks: 144.79.237.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/QJHbWm6gO3YPVOCQy5CYc64z9kk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 Jan 2026 22:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4091DB5A6EA03B760F54E090CB909873AE33F649 Validity Not Before: Jan 6 04:37:23 2026 GMT Not After : Dec 30 15:30:20 2026 GMT Subject: CN=B57D08C8D87754F42440DAEE384BFE4FF924E489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:29:ef:e1:67:ae:ab:8b:d9:41:63:63:fe:c5: 10:7f:7b:19:74:89:56:6f:f3:f5:4e:d5:7d:b2:ea: 81:0d:09:41:6e:77:69:21:a1:f0:cb:1f:a7:c2:c0: ac:52:77:55:6e:57:77:3e:a7:74:d8:26:1b:2c:c7: be:d3:90:6d:02:8a:24:7f:76:0a:15:b9:e3:53:a0: 58:3a:40:c3:ce:53:59:cd:f2:74:2d:02:8b:a2:15: 1c:99:3b:f8:cd:51:b3:88:c9:21:f7:55:e1:09:b8: a1:61:87:c1:ae:33:a5:64:d9:2e:be:06:1f:2c:ac: a1:2a:ad:bf:95:70:41:3d:05:cd:73:83:a3:60:69: 19:6a:7e:5f:99:67:b0:06:b0:5f:e3:de:ec:fd:e6: ce:cd:82:a1:44:70:0e:9d:9a:75:a8:6e:f6:2f:cd: 87:15:b8:8b:4d:0d:ab:2b:59:54:2f:a5:37:02:bf: 0b:f4:0d:35:7e:19:af:c8:ec:49:a8:e5:d4:3c:8e: ae:91:d3:d9:d9:a2:89:ea:6a:c0:ef:e1:20:82:76: 77:da:e2:73:90:89:fe:82:f0:91:5a:5c:fc:6f:dd: 82:0c:88:a0:6b:ac:74:45:3d:6a:4f:49:02:dd:d4: b2:73:3d:af:b7:6e:1b:2c:2e:ee:44:d8:50:1e:2b: 1c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:7D:08:C8:D8:77:54:F4:24:40:DA:EE:38:4B:FE:4F:F9:24:E4:89 X509v3 Authority Key Identifier: keyid:40:91:DB:5A:6E:A0:3B:76:0F:54:E0:90:CB:90:98:73:AE:33:F6:49 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QJHbWm6gO3YPVOCQy5CYc64z9kk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/tX0IyNh3VPQkQNruOEv-T_kk5Ik.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 144.79.237.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:7d:eb:1a:f1:a9:6f:50:65:7f:f2:54:83:71:ba:5f:81:8f: 10:43:2e:47:7c:57:1a:4d:62:7a:0c:57:27:95:af:de:eb:42: 2c:a6:d0:34:48:99:86:e5:61:cb:66:ba:69:29:e0:04:fa:06: 45:f8:5f:97:21:b5:60:dc:42:05:2b:07:4e:4c:df:73:2b:9a: e1:5d:d0:0e:1c:ac:b4:ac:42:bc:37:9b:f7:7d:c1:70:1f:04: 9d:6c:4d:f1:99:04:77:98:a8:16:b6:8d:6e:b8:cc:75:bb:80: 8b:57:2e:07:1c:02:b4:79:ee:4f:83:ac:c9:39:c1:70:dd:cc: 94:1a:7a:43:2f:70:a8:cd:81:dd:44:25:32:9b:07:2c:e0:d1: f4:38:94:ef:75:1d:c6:9d:3c:24:e5:a2:52:19:4f:60:81:8c: ac:90:df:0b:55:ca:67:06:b3:20:ef:a1:62:2d:23:4d:43:9a: 10:a9:24:f8:cf:f3:c0:ec:ca:16:90:49:ba:d5:9a:27:15:33: e3:1c:3c:57:15:23:3c:dc:01:60:ac:08:54:ec:8f:88:f5:c3: d5:f8:e8:8c:bd:a0:d4:96:f8:9a:ce:61:c0:b5:2f:35:0a:d1: 71:ff:af:2b:52:62:44:bc:84:9b:16:85:4f:31:10:81:1d:66: 56:14:0f:89 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIBETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MDkx REI1QTZFQTAzQjc2MEY1NEUwOTBDQjkwOTg3M0FFMzNGNjQ5MB4XDTI2MDEwNjA0 MzcyM1oXDTI2MTIzMDE1MzAyMFowMzExMC8GA1UEAxMoQjU3RDA4QzhEODc3NTRG NDI0NDBEQUVFMzg0QkZFNEZGOTI0RTQ4OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALYp7+FnrquL2UFjY/7FEH97GXSJVm/z9U7VfbLqgQ0JQW53aSGh 8Msfp8LArFJ3VW5Xdz6ndNgmGyzHvtOQbQKKJH92ChW541OgWDpAw85TWc3ydC0C i6IVHJk7+M1Rs4jJIfdV4Qm4oWGHwa4zpWTZLr4GHyysoSqtv5VwQT0FzXODo2Bp GWp+X5lnsAawX+Pe7P3mzs2CoURwDp2adahu9i/NhxW4i00NqytZVC+lNwK/C/QN NX4Zr8jsSajl1DyOrpHT2dmiiepqwO/hIIJ2d9ric5CJ/oLwkVpc/G/dggyIoGus dEU9ak9JAt3UsnM9r7duGywu7kTYUB4rHL0CAwEAAaOCAfIwggHuMB0GA1UdDgQW BBS1fQjI2HdU9CRA2u44S/5P+STkiTAfBgNVHSMEGDAWgBRAkdtabqA7dg9U4JDL kJhzrjP2STAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GA1UdHwRXMFUwU6BR oE+GTXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BT1RFUk5F VC9RSkhiV202Z08zWVBWT0NReTVDWWM2NHo5a2suY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1FKSGJXbTZnTzNZUFZPQ1F5NUNZYzY0ejlray5jZXIwDgYDVR0PAQH/BAQD AgeAMIGeBggrBgEFBQcBCwSBkTCBjjBZBggrBgEFBQcwC4ZNcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FPVEVSTkVUL3RYMEl5TmgzVlBRa1FO cnVPRXYtVF9razVJay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25p Yy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACQT+0wDQYJKoZIhvcNAQELBQADggEBAHt96xrxqW9QZX/yVINxul+BjxBDLkd8 VxpNYnoMVyeVr97rQiym0DRImYblYctmumkp4AT6BkX4X5chtWDcQgUrB05M33Mr muFd0A4crLSsQrw3m/d9wXAfBJ1sTfGZBHeYqBa2jW64zHW7gItXLgccArR57k+D rMk5wXDdzJQaekMvcKjNgd1EJTKbByzg0fQ4lO91HcadPCTlolIZT2CBjKyQ3wtV ymcGsyDvoWItI01DmhCpJPjP88DsyhaQSbrVmicVM+McPFcVIzzcAWCsCFTsj4j1 w9X46Iy9oNSW+JrOYcC1LzUK0XH/rytSYkS8hJsWhU8xEIEdZlYUD4k= -----END CERTIFICATE-----Generated at Wed Jan 21 21:05:37 2026 by rpki-client