This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/Qt7hv1NDZ7Gd2WjM9G6YzzXrHwg.roa File: Qt7hv1NDZ7Gd2WjM9G6YzzXrHwg.roa (raw, json) Hash identifier: nb/dxdNTZanfGhB+PaoPWWRNDU9iTCTUbpnKTXzELgY= Subject key identifier: 42:DE:E1:BF:53:43:67:B1:9D:D9:68:CC:F4:6E:98:CF:35:EB:1F:08 Certificate issuer: /CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Certificate serial: 03B1 Authority key identifier: 20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/Qt7hv1NDZ7Gd2WjM9G6YzzXrHwg.roa Signing time: Fri 05 Dec 2025 08:29:25 +0000 ROA not before: Fri 05 Dec 2025 08:29:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 142046 IP address blocks: 160.191.9.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 06:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 945 (0x3b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Validity Not Before: Dec 5 08:29:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=42DEE1BF534367B19DD968CCF46E98CF35EB1F08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5b:95:61:00:e5:78:74:ab:96:19:3b:47:0b: fc:94:83:b8:10:e2:1d:9c:49:a0:b4:a1:e5:35:37: 6a:ca:64:15:81:0a:1c:80:57:4b:e6:bb:c5:35:2c: 13:f6:9e:ec:07:3b:db:fc:4a:22:af:35:ef:f2:94: b5:55:ef:68:39:c2:29:98:e9:df:80:3a:de:bc:4f: f4:c0:78:f4:6b:85:06:a1:4d:d0:ac:a6:11:f6:55: 5e:89:64:dc:71:29:6e:b1:96:b3:33:2e:0c:a9:de: 11:07:59:f3:39:7a:33:46:d0:b8:76:f9:61:15:b0: 46:54:57:03:d5:a1:21:28:2e:f5:80:7f:d0:ce:e6: e9:9e:0f:ff:ef:6c:c2:c7:a7:62:ad:90:7c:1b:6c: 91:0c:1b:18:27:85:8e:50:e7:69:11:50:55:80:8c: 7e:2f:6e:52:63:b1:30:88:81:93:88:4b:4c:76:8a: 34:a4:52:1e:57:98:37:c1:79:13:6f:5f:e9:ec:98: d9:c7:ca:49:bb:e3:a9:0d:ae:64:ed:bf:ee:60:b7: 1f:a4:98:ee:e3:f1:7f:6a:b9:32:c3:df:53:b9:4b: ec:64:ff:bb:57:c0:17:f7:e0:66:50:19:97:c4:cb: f7:43:10:fc:cb:a4:b3:90:fd:da:a6:c7:ce:ce:0a: 3e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DE:E1:BF:53:43:67:B1:9D:D9:68:CC:F4:6E:98:CF:35:EB:1F:08 X509v3 Authority Key Identifier: keyid:20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/Qt7hv1NDZ7Gd2WjM9G6YzzXrHwg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.9.0/24 Signature Algorithm: sha256WithRSAEncryption 39:ec:b4:79:41:c2:26:b6:92:b7:23:51:1c:d5:c3:35:c2:ab: be:47:49:b8:b0:90:55:d6:d7:84:4e:66:78:a3:cd:24:bc:88: dc:db:0d:eb:a6:fe:b7:1f:7c:91:26:df:70:76:11:61:94:91: 98:25:b4:9a:ea:77:88:1a:56:3f:b3:c9:66:72:04:26:4b:50: e0:1a:63:d5:96:3b:00:49:b5:53:6f:5b:02:86:00:11:48:bb: ad:51:b0:60:f9:9e:75:be:3f:3d:ac:88:bd:91:50:0b:60:c7: ef:6f:bc:0b:7a:84:13:87:bc:99:d6:b9:b9:5f:c0:ff:e4:07: 5c:ac:e1:c6:0b:fd:e4:eb:06:bb:7f:e4:ce:57:95:85:ab:05: 7e:c1:da:58:c9:0b:d0:01:fa:07:2f:fd:2e:78:a9:d1:8c:d1: 38:52:56:36:1e:6c:c2:69:3f:4b:07:af:3e:28:b7:02:2c:d6: f9:56:62:13:df:34:c8:fb:63:10:55:01:7a:0a:aa:05:65:61: 73:99:85:92:f1:b0:74:45:25:27:ed:74:69:67:11:e2:43:e8: 4d:e5:29:da:92:d3:6a:39:40:3a:51:33:aa:a2:a1:2e:f5:fa: 05:b9:5d:56:9c:bc:1e:ad:3a:c5:84:bd:e3:be:95:d0:bb:0c: 5a:b1:77:13 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICA7EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjBB Q0NBODcxODUwMDM3M0FGRjc3QjQxNEIyM0RDNkE1RjE0NzRFRTAeFw0yNTEyMDUw ODI5MjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQyREVFMUJGNTM0MzY3 QjE5REQ5NjhDQ0Y0NkU5OENGMzVFQjFGMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKW5VhAOV4dKuWGTtHC/yUg7gQ4h2cSaC0oeU1N2rKZBWBChyA V0vmu8U1LBP2nuwHO9v8SiKvNe/ylLVV72g5wimY6d+AOt68T/TAePRrhQahTdCs phH2VV6JZNxxKW6xlrMzLgyp3hEHWfM5ejNG0Lh2+WEVsEZUVwPVoSEoLvWAf9DO 5umeD//vbMLHp2KtkHwbbJEMGxgnhY5Q52kRUFWAjH4vblJjsTCIgZOIS0x2ijSk Uh5XmDfBeRNvX+nsmNnHykm746kNrmTtv+5gtx+kmO7j8X9quTLD31O5S+xk/7tX wBf34GZQGZfEy/dDEPzLpLOQ/dqmx87OCj4ZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUQt7hv1NDZ7Gd2WjM9G6YzzXrHwgwHwYDVR0jBBgwFoAUIKzKhxhQA3Ov93tB SyPcal8UdO4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSERE L0lLektoeGhRQTNPdjkzdEJTeVBjYWw4VWRPNC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSUt6S2h4aFFBM092OTN0QlN5UGNhbDhVZE80LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSEREL1F0N2h2MU5EWjdHZDJXak05 RzZZenpYckh3Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACg vwkwDQYJKoZIhvcNAQELBQADggEBADnstHlBwia2krcjURzVwzXCq75HSbiwkFXW 14ROZnijzSS8iNzbDeum/rcffJEm33B2EWGUkZgltJrqd4gaVj+zyWZyBCZLUOAa Y9WWOwBJtVNvWwKGABFIu61RsGD5nnW+Pz2siL2RUAtgx+9vvAt6hBOHvJnWublf wP/kB1ys4cYL/eTrBrt/5M5XlYWrBX7B2ljJC9AB+gcv/S54qdGM0ThSVjYebMJp P0sHrz4otwIs1vlWYhPfNMj7YxBVAXoKqgVlYXOZhZLxsHRFJSftdGlnEeJD6E3l KdqS02o5QDpRM6qioS71+gW5XVacvB6tOsWEveO+ldC7DFqxdxM= -----END CERTIFICATE-----Generated at Sun Dec 7 02:28:32 2025 by rpki-client