$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/J8jYdpuZmu7g-aExTjRS-H9_27o.roa File: J8jYdpuZmu7g-aExTjRS-H9_27o.roa (raw, json) Hash identifier: 3Y1myIgZSkwi3mgspkEgZC3IS/wYma4N5MlzmKkGoGY= Subject key identifier: 27:C8:D8:76:9B:99:9A:EE:E0:F9:A1:31:4E:34:52:F8:7F:7F:DB:BA Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 108E Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/J8jYdpuZmu7g-aExTjRS-H9_27o.roa Signing time: Fri 22 Aug 2025 08:57:53 +0000 ROA not before: Fri 22 Aug 2025 08:57:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131641 IP address blocks: 103.136.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4238 (0x108e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Aug 22 08:57:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=27C8D8769B999AEEE0F9A1314E3452F87F7FDBBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5f:a5:0e:ad:5d:d4:c1:a8:41:9e:7d:25:47: 39:55:f4:0e:01:2b:25:51:5b:30:bc:fd:ed:5e:66: 11:7a:c9:60:c5:19:dd:28:56:a1:ca:11:40:d9:f6: b9:0d:ad:b4:7e:38:da:11:26:63:45:80:b6:a6:3d: a4:b7:c3:d4:fd:9b:49:1a:66:ac:ef:02:d3:66:f6: 28:ac:39:e4:3a:1f:2c:5a:86:0a:0a:ea:b4:e6:a9: 5c:6c:9b:9b:b7:59:ae:45:81:ae:bc:c3:d0:f4:41: c0:04:79:f2:d2:0d:f1:b2:50:67:8d:54:d3:dc:a4: ce:63:ab:43:cf:e1:f2:9e:d5:20:88:a1:bc:64:75: e4:f6:d0:58:1d:20:be:f8:5b:80:ba:c3:19:6f:88: 81:bb:43:e4:09:13:84:b9:af:60:51:67:d7:a5:82: 63:b6:a9:e8:fc:e1:6f:70:c3:4f:fd:07:73:9a:e6: 50:c2:f0:80:be:98:9b:81:3d:e4:fd:e1:de:c7:d8: a7:c4:e4:3d:52:08:4f:fa:15:e6:9e:e4:0d:b7:1e: 20:0c:a3:b0:19:b0:c0:57:f8:69:f6:cd:b9:d5:75: 6a:5f:37:44:b0:ec:70:ca:b2:4c:6f:9c:f0:45:65: af:2d:91:0d:27:02:68:41:27:d7:13:45:7e:24:0e: be:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C8:D8:76:9B:99:9A:EE:E0:F9:A1:31:4E:34:52:F8:7F:7F:DB:BA X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/J8jYdpuZmu7g-aExTjRS-H9_27o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.61.0/24 Signature Algorithm: sha256WithRSAEncryption af:25:c0:1d:0c:f3:80:79:98:18:d2:b4:d6:fc:b8:47:a6:7b: f7:e6:e2:6a:bc:7f:50:61:26:23:25:9f:cc:e3:fa:70:c4:65: 1c:03:bf:0b:48:26:fe:8e:74:9d:4d:0c:7a:5d:0a:5c:53:83: bd:61:2c:dc:70:da:af:73:9f:50:36:63:cb:24:eb:85:d3:01: 11:ef:7a:60:47:5a:e9:c1:18:4e:77:b9:ca:2f:68:95:a4:72: ee:62:39:40:72:06:bf:34:d4:9c:bf:be:c8:6f:da:dc:a7:35: 3a:30:e2:11:21:8a:0b:1c:d8:d1:19:56:71:a4:cd:03:17:5d: dd:95:63:af:46:6d:d5:a7:68:0c:9a:96:22:11:d8:dc:e3:96: fb:f6:32:78:0b:56:61:3a:8d:81:0b:dd:f9:00:ce:bb:b5:09: 04:67:44:7a:8f:fd:69:7e:71:c1:76:94:63:44:e3:e7:2b:56: e6:85:47:b4:2b:ee:e0:32:02:52:d1:f9:73:a6:ab:46:76:8d: 60:f7:8e:34:41:91:2d:dd:87:ce:8e:58:77:5a:53:30:6c:64: 05:de:64:b0:aa:06:56:ce:99:5f:06:61:84:7e:ff:55:46:a6: 91:cc:a9:b5:52:c7:f5:69:9b:de:2c:22:15:5d:dc:87:d2:15: c7:d3:16:52 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEI4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNTA4MjIw ODU3NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI3QzhEODc2OUI5OTlB RUVFMEY5QTEzMTRFMzQ1MkY4N0Y3RkRCQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVX6UOrV3UwahBnn0lRzlV9A4BKyVRWzC8/e1eZhF6yWDFGd0o VqHKEUDZ9rkNrbR+ONoRJmNFgLamPaS3w9T9m0kaZqzvAtNm9iisOeQ6HyxahgoK 6rTmqVxsm5u3Wa5Fga68w9D0QcAEefLSDfGyUGeNVNPcpM5jq0PP4fKe1SCIobxk deT20FgdIL74W4C6wxlviIG7Q+QJE4S5r2BRZ9elgmO2qej84W9ww0/9B3Oa5lDC 8IC+mJuBPeT94d7H2KfE5D1SCE/6Feae5A23HiAMo7AZsMBX+Gn2zbnVdWpfN0Sw 7HDKskxvnPBFZa8tkQ0nAmhBJ9cTRX4kDr4FAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUJ8jYdpuZmu7g+aExTjRS+H9/27owHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL0o4allkcHVabXU3Zy1hRXhUalJTLUg5 XzI3by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniD0wDQYJ KoZIhvcNAQELBQADggEBAK8lwB0M84B5mBjStNb8uEeme/fm4mq8f1BhJiMln8zj +nDEZRwDvwtIJv6OdJ1NDHpdClxTg71hLNxw2q9zn1A2Y8sk64XTARHvemBHWunB GE53ucovaJWkcu5iOUByBr801Jy/vshv2tynNTow4hEhigsc2NEZVnGkzQMXXd2V Y69GbdWnaAyaliIR2Nzjlvv2MngLVmE6jYEL3fkAzru1CQRnRHqP/Wl+ccF2lGNE 4+crVuaFR7Qr7uAyAlLR+XOmq0Z2jWD3jjRBkS3dh86OWHdaUzBsZAXeZLCqBlbO mV8GYYR+/1VGppHMqbVSx/Vpm94sIhVd3IfSFcfTFlI= -----END CERTIFICATE-----Generated at Wed Nov 5 17:14:34 2025 by rpki-client