$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/xEpvWHbEEoYF00Ai_uyyVjLzpxM.roa File: xEpvWHbEEoYF00Ai_uyyVjLzpxM.roa (raw, json) Hash identifier: ZyrffRfYv/rm9oAx8HJmvCSbrYvNsJH9Rf4u0c7WzxA= Subject key identifier: C4:4A:6F:58:76:C4:12:86:05:D3:40:22:FE:EC:B2:56:32:F3:A7:13 Certificate issuer: /CN=4091DB5A6EA03B760F54E090CB909873AE33F649 Certificate serial: 01F7 Authority key identifier: 40:91:DB:5A:6E:A0:3B:76:0F:54:E0:90:CB:90:98:73:AE:33:F6:49 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QJHbWm6gO3YPVOCQy5CYc64z9kk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/xEpvWHbEEoYF00Ai_uyyVjLzpxM.roa Signing time: Wed 25 Mar 2026 08:34:49 +0000 ROA not before: Wed 25 Mar 2026 08:34:49 +0000 ROA not after: Wed 30 Dec 2026 15:30:20 +0000 asID: 18040 IP address blocks: 144.79.237.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/QJHbWm6gO3YPVOCQy5CYc64z9kk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 09:59:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4091DB5A6EA03B760F54E090CB909873AE33F649 Validity Not Before: Mar 25 08:34:49 2026 GMT Not After : Dec 30 15:30:20 2026 GMT Subject: CN=C44A6F5876C4128605D34022FEECB25632F3A713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:80:4f:32:9a:26:1c:11:71:1d:ea:f4:f4:2a: 06:da:83:25:ce:66:2a:d1:bd:8e:de:bf:f5:e1:47: 51:9e:e4:51:ee:ff:12:3b:37:70:f5:dc:58:f7:d3: c3:de:a8:67:05:e9:27:23:6e:13:bf:d6:71:eb:ad: 56:2b:87:86:77:8e:ee:4e:65:e7:7a:13:8e:9e:0c: 0a:f9:dd:34:b9:8c:04:23:a5:af:9f:94:f9:3b:70: 5d:ef:f9:cf:92:f0:57:e3:22:8a:50:33:fc:85:a5: 3b:3f:51:89:db:a4:3d:ff:cc:28:55:f0:f1:11:a8: 39:30:ac:17:99:cd:45:56:0c:d5:42:ce:92:92:15: 62:6e:29:cb:0e:fb:5d:5d:cd:f7:9a:cd:d8:76:bb: 45:dc:71:f4:bc:28:a0:eb:ab:6c:69:ae:75:a5:c5: 28:2e:f6:2b:15:af:8c:31:5d:4f:c3:0f:56:39:18: e2:29:ca:f1:fa:78:df:f2:3b:ec:a2:80:a7:d2:1f: bc:4d:86:b6:6b:d8:56:19:a5:d7:55:7a:30:f1:25: d6:9c:d8:a2:bc:9e:08:d0:ea:69:45:df:0f:6a:ed: 05:28:34:a6:1e:e5:09:7e:85:d5:39:e2:55:01:54: 21:1c:6a:98:c7:4d:b7:8b:c1:46:ef:6f:30:25:46: 33:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:4A:6F:58:76:C4:12:86:05:D3:40:22:FE:EC:B2:56:32:F3:A7:13 X509v3 Authority Key Identifier: keyid:40:91:DB:5A:6E:A0:3B:76:0F:54:E0:90:CB:90:98:73:AE:33:F6:49 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QJHbWm6gO3YPVOCQy5CYc64z9kk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/xEpvWHbEEoYF00Ai_uyyVjLzpxM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 144.79.237.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:cb:9f:fc:37:58:4b:ed:2a:97:6b:a0:d9:44:33:04:3e:47: db:6f:da:e9:b1:eb:68:bc:fc:82:01:60:38:01:86:a6:e6:e5: a2:52:ae:d0:ce:0b:84:dd:4e:6d:d3:17:3b:32:07:2b:a2:66: 6b:58:32:64:78:14:9b:29:82:46:3d:7f:b1:8d:e2:e9:70:e8: c1:0e:ed:b3:e4:1e:02:67:85:17:0c:44:b2:2a:d7:e2:6b:e2: 48:13:13:90:f3:b5:f2:d9:76:f4:d5:3d:7d:2a:ae:7c:46:96: fe:eb:22:99:0c:3a:95:64:b0:a3:f0:75:92:10:4c:9d:64:e2: 61:b5:88:43:26:19:88:60:51:78:10:b8:78:fe:f9:30:ab:3b: e0:e4:e6:5f:0b:64:f5:58:15:3c:75:0e:a1:c7:a5:b5:a9:e2: 86:7a:d8:6a:59:d8:66:cc:db:8c:87:0b:25:49:70:6f:2d:c7: d7:7a:1c:d1:c7:9c:cd:3e:ef:69:36:5b:17:ee:69:5d:ce:e8: 9f:9f:cf:6a:55:66:95:6d:dd:d2:ff:77:d5:7a:6a:59:ff:7b: ed:57:f1:29:71:39:8f:a4:22:4e:8a:00:b8:16:fc:0c:38:ff: d0:63:1e:29:1e:06:c7:c3:2f:dc:10:32:3c:fa:49:e0:1f:8e: 6a:89:d5:4e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA5 MURCNUE2RUEwM0I3NjBGNTRFMDkwQ0I5MDk4NzNBRTMzRjY0OTAeFw0yNjAzMjUw ODM0NDlaFw0yNjEyMzAxNTMwMjBaMDMxMTAvBgNVBAMTKEM0NEE2RjU4NzZDNDEy ODYwNUQzNDAyMkZFRUNCMjU2MzJGM0E3MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFgE8ymiYcEXEd6vT0KgbagyXOZirRvY7ev/XhR1Ge5FHu/xI7 N3D13Fj308PeqGcF6ScjbhO/1nHrrVYrh4Z3ju5OZed6E46eDAr53TS5jAQjpa+f lPk7cF3v+c+S8FfjIopQM/yFpTs/UYnbpD3/zChV8PERqDkwrBeZzUVWDNVCzpKS FWJuKcsO+11dzfeazdh2u0XccfS8KKDrq2xprnWlxSgu9isVr4wxXU/DD1Y5GOIp yvH6eN/yO+yigKfSH7xNhrZr2FYZpddVejDxJdac2KK8ngjQ6mlF3w9q7QUoNKYe 5Ql+hdU54lUBVCEcapjHTbeLwUbvbzAlRjMVAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUxEpvWHbEEoYF00Ai/uyyVjLzpxMwHwYDVR0jBBgwFoAUQJHbWm6gO3YPVOCQ y5CYc64z9kkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU9URVJO RVQvUUpIYldtNmdPM1lQVk9DUXk1Q1ljNjR6OWtrLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9RSkhiV202Z08zWVBWT0NReTVDWWM2NHo5a2suY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BT1RFUk5FVC94RXB2V0hiRUVvWUYw MEFpX3V5eVZqTHpweE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAkE/tMA0GCSqGSIb3DQEBCwUAA4IBAQBry5/8N1hL7SqXa6DZRDMEPkfbb9rp setovPyCAWA4AYam5uWiUq7QzguE3U5t0xc7MgcromZrWDJkeBSbKYJGPX+xjeLp cOjBDu2z5B4CZ4UXDESyKtfia+JIExOQ87Xy2Xb01T19Kq58Rpb+6yKZDDqVZLCj 8HWSEEydZOJhtYhDJhmIYFF4ELh4/vkwqzvg5OZfC2T1WBU8dQ6hx6W1qeKGethq WdhmzNuMhwslSXBvLcfXehzRx5zNPu9pNlsX7mldzuifn89qVWaVbd3S/3fVempZ /3vtV/EpcTmPpCJOigC4FvwMOP/QYx4pHgbHwy/cEDI8+kngH45qidVO -----END CERTIFICATE-----Generated at Fri Mar 27 08:07:53 2026 by rpki-client