This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/Sdrc4UWzW9N_nhyzxMmvBUbk5Yo.roa File: Sdrc4UWzW9N_nhyzxMmvBUbk5Yo.roa (raw, json) Hash identifier: SJXYOLEPIAguqEy5CrxJQXtR1+W9kiwGZkPN2TaNzPo= Subject key identifier: 49:DA:DC:E1:45:B3:5B:D3:7F:9E:1C:B3:C4:C9:AF:05:46:E4:E5:8A Certificate issuer: /CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F Certificate serial: 03E2 Authority key identifier: 52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/Sdrc4UWzW9N_nhyzxMmvBUbk5Yo.roa Signing time: Fri 19 Dec 2025 11:04:32 +0000 ROA not before: Fri 19 Dec 2025 11:04:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24162 IP address blocks: 103.188.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/UvmnJzF6do3YlAOw2Zyq-gv3KR8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/UvmnJzF6do3YlAOw2Zyq-gv3KR8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 03:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 994 (0x3e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F Validity Not Before: Dec 19 11:04:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=49DADCE145B35BD37F9E1CB3C4C9AF0546E4E58A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2b:10:8f:0d:91:d1:85:46:df:da:de:ed:50: f1:07:ca:b8:46:0b:6f:f2:9a:4d:fe:42:25:53:ab: bf:63:bc:96:36:4a:ac:12:b8:41:ef:4e:28:e8:3a: f8:f5:c9:0f:58:8a:12:46:63:28:36:4f:e3:2c:f3: c3:66:0c:89:be:a5:9f:35:d2:71:89:08:a0:12:4e: 0f:f3:e0:51:9a:3f:73:9f:71:10:3f:2c:13:9e:ac: 61:6d:e3:f4:8e:c7:49:e8:ce:e3:18:6e:3d:9c:1b: 21:dc:f6:6e:2a:b9:52:bf:1c:ce:ba:ce:be:39:d5: 5d:33:91:cc:1e:03:bc:c2:41:ac:f4:52:77:84:ed: 1d:2c:4c:2c:8d:3a:99:8a:6f:d3:a4:65:02:7c:e2: 00:55:1e:3a:b6:f6:9e:bb:4d:5f:fb:d9:f7:05:05: 06:99:ed:0c:d8:e1:76:06:9c:ad:75:68:be:0a:ae: cd:72:38:80:81:33:f0:12:3e:61:68:73:6b:59:6b: bc:fa:d7:40:75:92:4e:b9:f0:7b:82:07:21:2f:95: 62:25:3e:9d:99:75:10:a8:32:cc:4b:ba:18:18:37: 17:4f:6c:7d:af:7c:ee:01:d4:0f:cd:51:3f:16:92: a0:9d:b9:37:0b:b7:f0:2a:59:0c:1a:31:c7:64:0a: ba:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:DA:DC:E1:45:B3:5B:D3:7F:9E:1C:B3:C4:C9:AF:05:46:E4:E5:8A X509v3 Authority Key Identifier: keyid:52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/UvmnJzF6do3YlAOw2Zyq-gv3KR8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/Sdrc4UWzW9N_nhyzxMmvBUbk5Yo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.188.120.0/23 Signature Algorithm: sha256WithRSAEncryption 72:f3:fb:47:6b:52:84:a4:2c:7a:ed:12:07:3a:d0:1c:9c:7f: 5d:d3:26:28:99:d2:3c:94:d0:3f:ad:81:80:bd:ad:47:47:31: d4:3f:e2:4e:27:e7:7f:16:79:23:3a:52:99:d8:1b:e9:d1:03: 9c:89:c7:b4:a2:83:a2:4d:5d:4b:d7:3e:8c:e6:85:9f:dc:a6: a8:ca:09:c3:85:89:84:ec:b3:2d:4f:09:c6:70:12:06:fe:d6: 96:a1:1e:39:a9:4a:0d:01:33:7b:3a:0d:05:d5:72:db:ec:14: 29:a2:6b:8a:2f:ac:fd:b0:7c:bc:3b:75:9e:72:6b:bc:38:e7: 7c:43:1a:9d:98:b7:21:70:2e:60:34:8d:d9:10:d9:88:91:1f: a9:da:c6:51:46:1e:16:62:d7:7e:99:bb:55:6d:0a:78:c9:30: 5c:19:21:25:5a:5a:73:92:21:3f:9d:66:7b:c1:e0:8f:c2:77: e3:05:fc:29:8f:65:e7:42:bd:9e:86:0f:b3:00:b1:65:fd:ab: f9:0f:2e:21:34:80:23:a3:80:4d:90:60:66:ee:70:0c:56:42: b8:e3:b7:45:49:a0:49:e6:5f:ab:9d:73:72:87:23:e5:d0:0b: 50:d1:0b:42:a8:92:e7:43:9f:71:18:e3:53:05:f2:d6:38:50: 56:32:bf:fb -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICA+IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTJG OUE3MjczMTdBNzY4REQ4OTQwM0IwRDk5Q0FBRkEwQkY3MjkxRjAeFw0yNTEyMTkx MTA0MzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ5REFEQ0UxNDVCMzVC RDM3RjlFMUNCM0M0QzlBRjA1NDZFNEU1OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlKxCPDZHRhUbf2t7tUPEHyrhGC2/ymk3+QiVTq79jvJY2SqwS uEHvTijoOvj1yQ9YihJGYyg2T+Ms88NmDIm+pZ810nGJCKASTg/z4FGaP3OfcRA/ LBOerGFt4/SOx0nozuMYbj2cGyHc9m4quVK/HM66zr451V0zkcweA7zCQaz0UneE 7R0sTCyNOpmKb9OkZQJ84gBVHjq29p67TV/72fcFBQaZ7QzY4XYGnK11aL4Krs1y OICBM/ASPmFoc2tZa7z610B1kk658HuCByEvlWIlPp2ZdRCoMsxLuhgYNxdPbH2v fO4B1A/NUT8WkqCduTcLt/AqWQwaMcdkCrpVAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUSdrc4UWzW9N/nhyzxMmvBUbk5YowHwYDVR0jBBgwFoAUUvmnJzF6do3YlAOw 2Zyq+gv3KR8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFJRkVO Ry9Vdm1uSnpGNmRvM1lsQU93Mlp5cS1ndjNLUjguY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1V2bW5KekY2ZG8zWWxBT3cyWnlxLWd2M0tSOC5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL01BSUZFTkcvU2RyYzRVV3pXOU5fbmh5 enhNbXZCVWJrNVlvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWe8eDANBgkqhkiG9w0BAQsFAAOCAQEAcvP7R2tShKQseu0SBzrQHJx/XdMmKJnS PJTQP62BgL2tR0cx1D/iTifnfxZ5IzpSmdgb6dEDnInHtKKDok1dS9c+jOaFn9ym qMoJw4WJhOyzLU8JxnASBv7WlqEeOalKDQEzezoNBdVy2+wUKaJrii+s/bB8vDt1 nnJrvDjnfEManZi3IXAuYDSN2RDZiJEfqdrGUUYeFmLXfpm7VW0KeMkwXBkhJVpa c5IhP51me8Hgj8J34wX8KY9l50K9noYPswCxZf2r+Q8uITSAI6OATZBgZu5wDFZC uOO3RUmgSeZfq51zcocj5dALUNELQqiS50OfcRjjUwXy1jhQVjK/+w== -----END CERTIFICATE-----Generated at Fri Dec 19 23:21:57 2025 by rpki-client