This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BHIS/_I60OKMXL8SEMDB1nCe1DNYKrlo.roa File: _I60OKMXL8SEMDB1nCe1DNYKrlo.roa (raw, json) Hash identifier: z7tBxaoRKCTXW+2dWi4zYTzrxf7pFqNKDTql/msIOJQ= Subject key identifier: FC:8E:B4:38:A3:17:2F:C4:84:30:30:75:9C:27:B5:0C:D6:0A:AE:5A Certificate issuer: /CN=D7DABD61413DD84D34305BFA98F398462269FDBB Certificate serial: 09 Authority key identifier: D7:DA:BD:61:41:3D:D8:4D:34:30:5B:FA:98:F3:98:46:22:69:FD:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/19q9YUE92E00MFv6mPOYRiJp_bs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BHIS/_I60OKMXL8SEMDB1nCe1DNYKrlo.roa Signing time: Tue 20 Jan 2026 01:07:50 +0000 ROA not before: Tue 20 Jan 2026 01:07:50 +0000 ROA not after: Tue 12 Jan 2027 15:30:19 +0000 asID: 212969 IP address blocks: 151.158.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BHIS/19q9YUE92E00MFv6mPOYRiJp_bs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BHIS/19q9YUE92E00MFv6mPOYRiJp_bs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/19q9YUE92E00MFv6mPOYRiJp_bs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 Jan 2026 15:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7DABD61413DD84D34305BFA98F398462269FDBB Validity Not Before: Jan 20 01:07:50 2026 GMT Not After : Jan 12 15:30:19 2027 GMT Subject: CN=FC8EB438A3172FC4843030759C27B50CD60AAE5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:79:55:67:ff:50:7d:42:5d:2f:a1:15:d6:22: 4b:9e:5c:95:7b:ab:d5:49:a6:af:2a:6d:cb:1f:bd: 20:64:57:1d:fb:9b:78:24:dd:0f:95:a9:2c:8b:21: 77:e3:27:f3:21:c6:24:5c:b9:35:30:3e:e1:7c:47: fe:91:fe:21:24:13:06:76:e6:18:76:9f:1f:ad:f3: b0:6a:90:f2:61:a5:ee:4d:1c:ea:f6:27:5d:1a:c7: c2:38:ea:70:c1:0a:58:64:8a:ef:95:30:3d:6d:5f: 08:54:47:d7:fb:00:b3:1d:b5:1a:78:bc:2e:74:a9: cf:42:da:d5:95:c2:7a:dd:8f:77:2f:c6:35:4e:3d: c0:34:b7:aa:30:0b:37:e6:71:1c:46:88:20:e9:03: 1a:1e:7f:95:3d:12:7c:3a:80:52:cd:ff:1a:70:a9: b9:15:61:fc:30:99:ca:9b:23:7c:a2:5b:b2:30:63: 84:11:6b:b8:18:e1:f9:06:f8:c6:1e:60:aa:14:1e: 5c:93:4e:36:c5:51:a7:10:e5:25:9b:48:a6:59:03: 18:41:ea:dc:64:ef:29:00:2e:41:99:eb:ef:20:26: 8f:72:08:10:b3:0b:ce:3d:e9:37:63:72:6a:33:a4: b1:d8:39:14:a6:1b:ac:9d:99:e7:a8:56:37:5b:b3: 24:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:8E:B4:38:A3:17:2F:C4:84:30:30:75:9C:27:B5:0C:D6:0A:AE:5A X509v3 Authority Key Identifier: keyid:D7:DA:BD:61:41:3D:D8:4D:34:30:5B:FA:98:F3:98:46:22:69:FD:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BHIS/19q9YUE92E00MFv6mPOYRiJp_bs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/19q9YUE92E00MFv6mPOYRiJp_bs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BHIS/_I60OKMXL8SEMDB1nCe1DNYKrlo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 151.158.6.0/23 Signature Algorithm: sha256WithRSAEncryption 36:62:f0:71:01:0d:b7:45:11:f7:a9:cc:8a:9a:34:06:41:ad: 18:50:48:51:c2:ab:3b:3d:3c:7a:77:cd:b4:88:0f:0c:57:5c: d2:18:82:d2:43:cb:8b:72:5a:53:90:a1:9f:5c:a2:1a:da:d8: 76:38:8c:87:4f:87:76:a3:99:73:08:b5:c0:48:45:48:09:93: de:a3:62:ec:2c:8b:25:d4:60:88:60:fa:92:64:10:0f:10:31: c8:2b:72:80:43:5a:04:20:e7:e3:da:3d:db:4d:2e:78:7e:4c: 51:e8:fd:d1:9d:69:30:b9:e1:64:2a:8c:9b:34:22:14:eb:f3: 42:bb:5d:1f:fe:60:88:42:4f:d4:44:fd:fd:91:15:28:3f:df: b4:3a:67:f8:fe:83:10:b4:70:a8:f3:0a:00:3d:2d:e0:3b:9c: cd:c0:55:31:d1:6c:a1:95:93:cc:10:89:c9:57:03:cc:10:d7: 8f:54:8f:8c:98:63:63:8e:f0:41:a5:85:b5:e3:9b:0e:f2:fa: 71:26:8b:ac:a9:20:59:5c:c5:81:57:3b:5d:3e:9a:26:2e:2d: 99:58:b5:17:34:6a:0d:c3:23:02:56:b0:01:9d:13:be:e8:f3: 81:08:d0:70:d3:2f:1f:80:30:40:5a:e2:d6:38:ad:69:86:98: df:7e:92:82 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIBCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEN0RB QkQ2MTQxM0REODREMzQzMDVCRkE5OEYzOTg0NjIyNjlGREJCMB4XDTI2MDEyMDAx MDc1MFoXDTI3MDExMjE1MzAxOVowMzExMC8GA1UEAxMoRkM4RUI0MzhBMzE3MkZD NDg0MzAzMDc1OUMyN0I1MENENjBBQUU1QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOF5VWf/UH1CXS+hFdYiS55clXur1Ummryptyx+9IGRXHfubeCTd D5WpLIshd+Mn8yHGJFy5NTA+4XxH/pH+ISQTBnbmGHafH63zsGqQ8mGl7k0c6vYn XRrHwjjqcMEKWGSK75UwPW1fCFRH1/sAsx21Gni8LnSpz0La1ZXCet2Pdy/GNU49 wDS3qjALN+ZxHEaIIOkDGh5/lT0SfDqAUs3/GnCpuRVh/DCZypsjfKJbsjBjhBFr uBjh+Qb4xh5gqhQeXJNONsVRpxDlJZtIplkDGEHq3GTvKQAuQZnr7yAmj3IIELML zj3pN2NyajOksdg5FKYbrJ2Z56hWN1uzJO8CAwEAAaOCAeowggHmMB0GA1UdDgQW BBT8jrQ4oxcvxIQwMHWcJ7UM1gquWjAfBgNVHSMEGDAWgBTX2r1hQT3YTTQwW/qY 85hGImn9uzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGA1UdHwRTMFEwT6BN oEuGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9CSElTLzE5 cTlZVUU5MkUwME1GdjZtUE9ZUmlKcF9icy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MTlxOVlVRTkyRTAwTUZ2Nm1QT1lSaUpwX2JzLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZoGCCsGAQUFBwELBIGNMIGKMFUGCCsGAQUFBzALhklyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvQkhJUy9fSTYwT0tNWEw4U0VNREIxbkNlMURO WUtybG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJk cC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBl54GMA0G CSqGSIb3DQEBCwUAA4IBAQA2YvBxAQ23RRH3qcyKmjQGQa0YUEhRwqs7PTx6d820 iA8MV1zSGILSQ8uLclpTkKGfXKIa2th2OIyHT4d2o5lzCLXASEVICZPeo2LsLIsl 1GCIYPqSZBAPEDHIK3KAQ1oEIOfj2j3bTS54fkxR6P3RnWkwueFkKoybNCIU6/NC u10f/mCIQk/URP39kRUoP9+0Omf4/oMQtHCo8woAPS3gO5zNwFUx0WyhlZPMEInJ VwPMENePVI+MmGNjjvBBpYW145sO8vpxJousqSBZXMWBVztdPpomLi2ZWLUXNGoN wyMCVrABnRO+6POBCNBw0y8fgDBAWuLWOK1phpjffpKC -----END CERTIFICATE-----Generated at Wed Jan 21 12:18:03 2026 by rpki-client