This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/pav4izglQsCj6rdGqOT9LBlr1t4.roa File: pav4izglQsCj6rdGqOT9LBlr1t4.roa (raw, json) Hash identifier: YnSadJQeY0k7uPtTAPYtokP9YXFLCWmwBpsvESH4w7U= Subject key identifier: A5:AB:F8:8B:38:25:42:C0:A3:EA:B7:46:A8:E4:FD:2C:19:6B:D6:DE Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF Certificate serial: 0A38 Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/pav4izglQsCj6rdGqOT9LBlr1t4.roa Signing time: Fri 19 Dec 2025 09:41:10 +0000 ROA not before: Fri 19 Dec 2025 09:41:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134963 IP address blocks: 103.157.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 12:09:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2616 (0xa38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF Validity Not Before: Dec 19 09:41:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A5ABF88B382542C0A3EAB746A8E4FD2C196BD6DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ea:87:c8:a8:02:43:6a:50:39:a7:a7:8b:28: 25:3c:f8:00:3d:2c:be:ce:58:96:61:52:18:fb:02: 80:81:2d:92:b9:3b:e9:62:35:a9:6f:f1:20:94:3e: d5:56:10:b7:d5:58:08:fa:00:61:74:39:57:41:2f: 70:72:6a:be:f3:9a:aa:15:5a:92:63:10:c7:a6:47: e8:27:12:81:a5:a6:2e:12:b6:25:4f:07:5b:b3:36: 16:db:98:c7:c9:74:8c:e0:23:c4:c1:d2:0f:23:e6: f5:bf:44:7e:eb:3a:59:fa:45:e0:4f:ca:a1:a7:13: 23:e3:d4:85:d6:d4:7d:9a:22:f4:d8:6f:7d:0f:93: ef:84:13:33:8b:54:ea:6e:da:25:6a:50:e9:66:a5: 04:f2:7b:b4:d6:0e:85:e8:9d:af:0e:25:d8:c3:e5: 00:4d:7e:24:4b:e0:8f:4c:32:a7:15:6e:7f:81:33: 62:b9:26:35:9f:97:96:e3:c8:99:aa:e9:c0:25:d1: 8f:03:48:80:38:72:15:7b:08:c4:7a:09:77:e7:63: 51:96:a7:4b:5c:bd:3f:23:7d:1d:9f:f3:5c:ed:5b: b6:e3:87:fc:57:f0:56:3e:08:fc:f0:ff:5c:9b:e9: 49:da:97:84:b7:8b:bd:cb:ca:a5:a4:48:81:1c:c0: ba:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:AB:F8:8B:38:25:42:C0:A3:EA:B7:46:A8:E4:FD:2C:19:6B:D6:DE X509v3 Authority Key Identifier: keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/pav4izglQsCj6rdGqOT9LBlr1t4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.157.42.0/24 Signature Algorithm: sha256WithRSAEncryption 07:0a:b2:79:4b:1f:0a:3e:e1:a0:28:73:8b:78:7e:2b:fe:f4: 52:5e:bf:07:b0:74:95:db:64:86:e8:eb:29:88:4e:e6:ee:f6: fd:fe:ab:50:2f:39:80:49:c0:03:66:eb:01:d3:32:31:71:17: 2e:b7:73:18:aa:7a:b8:dd:b0:9d:ce:51:73:46:6c:09:65:ca: ab:46:7d:c4:d5:a9:b0:db:69:80:f2:c5:a1:f4:5f:e5:b5:84: e1:02:08:dd:f9:a7:32:d0:8c:1a:d1:33:4e:d6:1e:41:b9:65: ad:95:76:17:33:4d:1f:3c:c1:b4:f2:7c:1f:94:54:76:22:55: 78:ea:98:c5:e3:ce:8c:37:1b:c7:26:a6:9a:bc:6a:e6:28:40: 3b:09:7d:33:37:d7:e2:a1:64:ce:6b:d7:76:f0:fc:c9:a7:55: 2b:dc:51:ab:8f:a1:9f:0c:c2:22:94:35:23:b8:ad:95:71:ec: 66:fe:7d:d4:8b:79:43:50:00:7e:23:34:9b:fd:e2:77:d8:65: 5b:63:0b:57:d8:ea:08:36:ee:03:3b:23:71:09:ce:67:5c:da: e0:af:6c:2a:60:d4:2b:2c:8f:7e:9b:d3:b9:ad:f7:dc:a9:1d: b8:1e:16:78:80:1d:f6:59:cd:1a:a0:34:ca:a3:0d:8e:a5:2d: c8:32:2a:85 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICCjgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEx OEMzMzREQTU4RDdDMDAyMURDQUFDQTg4MURGQjlEQzgzNjVGRjAeFw0yNTEyMTkw OTQxMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE1QUJGODhCMzgyNTQy QzBBM0VBQjc0NkE4RTRGRDJDMTk2QkQ2REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCg6ofIqAJDalA5p6eLKCU8+AA9LL7OWJZhUhj7AoCBLZK5O+li Nalv8SCUPtVWELfVWAj6AGF0OVdBL3Byar7zmqoVWpJjEMemR+gnEoGlpi4StiVP B1uzNhbbmMfJdIzgI8TB0g8j5vW/RH7rOln6ReBPyqGnEyPj1IXW1H2aIvTYb30P k++EEzOLVOpu2iVqUOlmpQTye7TWDoXona8OJdjD5QBNfiRL4I9MMqcVbn+BM2K5 JjWfl5bjyJmq6cAl0Y8DSIA4chV7CMR6CXfnY1GWp0tcvT8jfR2f81ztW7bjh/xX 8FY+CPzw/1yb6Unal4S3i73LyqWkSIEcwLq/AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUpav4izglQsCj6rdGqOT9LBlr1t4wHwYDVR0jBBgwFoAUMRjDNNpY18ACHcqs qIHfudyDZf8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL01S akROTnBZMThBQ0hjcXNxSUhmdWR5RFpmOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TVJqRE5OcFkxOEFDSGNxc3FJSGZ1ZHlEWmY4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL3BhdjRpemdsUXNDajZyZEdxT1Q5TEJs cjF0NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnSowDQYJ KoZIhvcNAQELBQADggEBAAcKsnlLHwo+4aAoc4t4fiv+9FJevwewdJXbZIbo6ymI Tubu9v3+q1AvOYBJwANm6wHTMjFxFy63cxiqerjdsJ3OUXNGbAllyqtGfcTVqbDb aYDyxaH0X+W1hOECCN35pzLQjBrRM07WHkG5Za2VdhczTR88wbTyfB+UVHYiVXjq mMXjzow3G8cmppq8auYoQDsJfTM31+KhZM5r13bw/MmnVSvcUauPoZ8MwiKUNSO4 rZVx7Gb+fdSLeUNQAH4jNJv94nfYZVtjC1fY6gg27gM7I3EJzmdc2uCvbCpg1Css j36b07mt99ypHbgeFniAHfZZzRqgNMqjDY6lLcgyKoU= -----END CERTIFICATE-----Generated at Sat Dec 20 11:39:00 2025 by rpki-client