$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/c-WVnzSNHRj7O2DokQzSHTXPBMk.roa File: c-WVnzSNHRj7O2DokQzSHTXPBMk.roa (raw, json) Hash identifier: qs7gh9apouKxAJyoPJm4VQj0t+nPi6od+GeN+M/Vyus= Subject key identifier: 73:E5:95:9F:34:8D:1D:18:FB:3B:60:E8:91:0C:D2:1D:35:CF:04:C9 Certificate issuer: /CN=4091DB5A6EA03B760F54E090CB909873AE33F649 Certificate serial: 01F5 Authority key identifier: 40:91:DB:5A:6E:A0:3B:76:0F:54:E0:90:CB:90:98:73:AE:33:F6:49 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QJHbWm6gO3YPVOCQy5CYc64z9kk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/c-WVnzSNHRj7O2DokQzSHTXPBMk.roa Signing time: Wed 25 Mar 2026 08:34:24 +0000 ROA not before: Wed 25 Mar 2026 08:34:24 +0000 ROA not after: Wed 30 Dec 2026 15:30:20 +0000 asID: 18040 IP address blocks: 144.79.236.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/QJHbWm6gO3YPVOCQy5CYc64z9kk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 09:59:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4091DB5A6EA03B760F54E090CB909873AE33F649 Validity Not Before: Mar 25 08:34:24 2026 GMT Not After : Dec 30 15:30:20 2026 GMT Subject: CN=73E5959F348D1D18FB3B60E8910CD21D35CF04C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5c:c4:de:f3:1d:e3:89:7a:62:4c:73:ad:0e: 6d:38:56:fc:cc:a1:72:81:3c:10:6e:61:eb:65:75: 8f:16:e8:68:d6:5c:1e:6f:e7:2b:8e:87:ef:3a:96: e5:36:23:5c:da:54:e8:05:16:bc:d7:fd:e4:fc:90: d0:79:83:56:f9:88:53:26:86:2c:83:26:8f:92:8c: 0d:31:a1:d2:d9:f8:a3:7c:bc:38:93:30:53:78:c9: b8:97:a5:d9:fc:75:8f:c2:37:b7:4b:36:44:0e:7b: 1b:25:cb:93:67:44:75:84:51:79:e7:f6:a7:65:48: 50:7f:6b:88:60:5c:61:88:fd:66:6e:b8:bc:17:f4: 31:32:41:8e:b2:77:ef:12:af:96:a1:35:a6:61:ca: ca:a4:d3:c4:a5:3f:72:46:a5:ed:f4:95:fa:cd:df: e4:a5:8e:04:3e:82:47:8c:96:20:1a:09:c6:ee:b6: 8c:e7:ad:12:78:54:b3:20:7f:24:b5:46:65:54:41: cb:d6:48:b2:db:2e:52:a7:a6:dc:ee:40:e5:e5:9a: 82:7a:95:4b:f0:10:f3:ca:7c:35:37:f6:0b:65:02: 63:dd:3b:37:51:36:9a:41:b0:d5:57:d9:31:a6:60: c4:a2:d8:0f:54:37:07:24:f7:a8:d9:e3:f7:3b:a5: bd:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E5:95:9F:34:8D:1D:18:FB:3B:60:E8:91:0C:D2:1D:35:CF:04:C9 X509v3 Authority Key Identifier: keyid:40:91:DB:5A:6E:A0:3B:76:0F:54:E0:90:CB:90:98:73:AE:33:F6:49 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QJHbWm6gO3YPVOCQy5CYc64z9kk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/c-WVnzSNHRj7O2DokQzSHTXPBMk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 144.79.236.0/24 Signature Algorithm: sha256WithRSAEncryption 72:da:6f:7d:46:1a:7f:0f:60:1a:0c:91:dd:3c:90:d2:9d:d1: 7e:78:75:30:0e:e7:4e:86:61:c8:ca:7e:78:fa:e3:54:2f:93: 0b:28:82:8a:eb:78:27:db:fb:86:db:65:40:a2:10:50:95:6a: 45:8d:59:15:3d:38:54:f5:38:d2:d5:22:39:f0:54:f0:e7:88: 1a:a4:b4:ed:6b:8b:60:99:00:6a:d1:0f:7c:57:be:9d:68:e6: 3c:31:bd:76:c8:87:1a:17:9a:fd:90:be:a7:d3:f1:f2:59:2a: b4:15:de:7f:6e:a0:db:52:fe:2d:e5:6d:e6:b8:2d:7b:ba:c1: 44:14:88:71:26:4c:50:12:59:92:25:be:a6:37:5a:b5:c4:94: 67:49:34:54:c7:af:17:33:31:61:4c:51:a5:a0:55:3b:29:f1: b3:59:7a:fe:a0:7a:c5:1e:c9:26:8e:a1:8d:69:36:25:ae:80: 37:31:50:ef:d0:77:11:52:0c:96:45:e4:2a:98:3f:17:49:75: 58:20:2b:4e:37:03:e5:a5:9f:cb:01:1f:d8:7e:03:fc:2f:d4: fb:d3:16:07:66:f6:b5:49:58:2b:1f:30:27:1c:31:46:54:e4: 2e:ae:6f:27:b7:62:17:2b:f0:12:9a:c8:9b:51:93:6e:1b:fb: ca:11:5a:73 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA5 MURCNUE2RUEwM0I3NjBGNTRFMDkwQ0I5MDk4NzNBRTMzRjY0OTAeFw0yNjAzMjUw ODM0MjRaFw0yNjEyMzAxNTMwMjBaMDMxMTAvBgNVBAMTKDczRTU5NTlGMzQ4RDFE MThGQjNCNjBFODkxMENEMjFEMzVDRjA0QzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcXMTe8x3jiXpiTHOtDm04VvzMoXKBPBBuYetldY8W6GjWXB5v 5yuOh+86luU2I1zaVOgFFrzX/eT8kNB5g1b5iFMmhiyDJo+SjA0xodLZ+KN8vDiT MFN4ybiXpdn8dY/CN7dLNkQOexsly5NnRHWEUXnn9qdlSFB/a4hgXGGI/WZuuLwX 9DEyQY6yd+8Sr5ahNaZhysqk08SlP3JGpe30lfrN3+SljgQ+gkeMliAaCcbutozn rRJ4VLMgfyS1RmVUQcvWSLLbLlKnptzuQOXlmoJ6lUvwEPPKfDU39gtlAmPdOzdR NppBsNVX2TGmYMSi2A9UNwck96jZ4/c7pb2BAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUc+WVnzSNHRj7O2DokQzSHTXPBMkwHwYDVR0jBBgwFoAUQJHbWm6gO3YPVOCQ y5CYc64z9kkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU9URVJO RVQvUUpIYldtNmdPM1lQVk9DUXk1Q1ljNjR6OWtrLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9RSkhiV202Z08zWVBWT0NReTVDWWM2NHo5a2suY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BT1RFUk5FVC9jLVdWbnpTTkhSajdP MkRva1F6U0hUWFBCTWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAkE/sMA0GCSqGSIb3DQEBCwUAA4IBAQBy2m99Rhp/D2AaDJHdPJDSndF+eHUw DudOhmHIyn54+uNUL5MLKIKK63gn2/uG22VAohBQlWpFjVkVPThU9TjS1SI58FTw 54gapLTta4tgmQBq0Q98V76daOY8Mb12yIcaF5r9kL6n0/HyWSq0Fd5/bqDbUv4t 5W3muC17usFEFIhxJkxQElmSJb6mN1q1xJRnSTRUx68XMzFhTFGloFU7KfGzWXr+ oHrFHskmjqGNaTYlroA3MVDv0HcRUgyWReQqmD8XSXVYICtONwPlpZ/LAR/YfgP8 L9T70xYHZva1SVgrHzAnHDFGVOQurm8nt2IXK/ASmsibUZNuG/vKEVpz -----END CERTIFICATE-----Generated at Fri Mar 27 08:07:53 2026 by rpki-client