This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/Z6ycjfuTcBGPJZzYsGzXqbfpoRo.roa File: Z6ycjfuTcBGPJZzYsGzXqbfpoRo.roa (raw, json) Hash identifier: KzPOBIDBX88MEw59F18toZ52VsgESFMtcMEmagXtMcA= Subject key identifier: 67:AC:9C:8D:FB:93:70:11:8F:25:9C:D8:B0:6C:D7:A9:B7:E9:A1:1A Certificate issuer: /CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Certificate serial: 0349 Authority key identifier: A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/Z6ycjfuTcBGPJZzYsGzXqbfpoRo.roa Signing time: Thu 30 Oct 2025 07:49:40 +0000 ROA not before: Thu 30 Oct 2025 07:49:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131657 IP address blocks: 202.5.10.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 01:06:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 841 (0x349) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Validity Not Before: Oct 30 07:49:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=67AC9C8DFB9370118F259CD8B06CD7A9B7E9A11A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:14:63:c0:35:0f:97:da:fe:5a:29:e3:93:84: 18:b6:6f:f2:d3:ce:f1:17:c4:d1:69:30:ca:d2:b0: 66:49:3d:e1:85:b7:92:93:1b:fd:9d:82:80:59:17: 76:c6:65:2e:ed:90:72:7e:11:20:55:95:00:db:b5: a4:17:eb:b9:35:94:40:15:8d:f9:e8:9f:73:eb:bb: f5:20:0b:7d:89:5e:d8:bb:c5:c6:5e:d5:c9:cb:4e: d8:f3:8b:b3:c3:be:86:21:7e:3e:16:4b:9a:8a:f6: 96:18:7c:ce:2c:99:ed:a5:f9:ec:64:fd:7d:b9:2f: e9:67:ba:ed:78:f2:76:5e:b7:d5:21:8d:8e:d9:20: 2c:b4:bc:7a:b3:6a:aa:51:b0:d4:69:1c:4f:32:f0: 2b:c5:3d:15:49:96:01:48:57:c4:43:03:15:d8:0e: ad:02:46:ce:1a:cd:ae:82:f2:b3:21:6d:f7:a8:16: 90:de:46:f1:8e:02:69:6e:89:a1:6f:d8:c5:78:20: c1:e0:d0:b8:e5:c4:75:05:d8:e1:45:03:6e:8e:5d: 3c:39:87:7f:0b:0a:ba:1d:0f:74:09:88:af:2c:a7: 93:7c:af:2c:62:07:7d:c8:5f:9f:c3:e8:ff:1f:76: 16:56:8a:b7:3c:8f:95:c6:76:39:d9:df:b6:2f:7a: 73:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AC:9C:8D:FB:93:70:11:8F:25:9C:D8:B0:6C:D7:A9:B7:E9:A1:1A X509v3 Authority Key Identifier: keyid:A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/Z6ycjfuTcBGPJZzYsGzXqbfpoRo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.5.10.0/23 Signature Algorithm: sha256WithRSAEncryption 18:b3:8d:69:d8:83:b2:8b:88:5f:f5:32:76:af:e8:b9:da:c4: 33:b4:ee:e8:40:75:22:15:43:8a:b5:9e:02:43:d1:5c:3e:7f: cb:62:99:a6:56:10:b3:da:aa:bf:12:0c:d0:ba:9c:cf:f2:5e: b0:dc:2e:07:95:c0:56:95:83:3e:0a:10:9c:ac:81:79:b9:dd: 9e:bc:98:4d:70:71:a7:8f:b6:1d:68:61:2c:e3:9a:b9:02:b4: 3b:82:8e:09:52:e3:bd:a2:ec:5f:f6:92:cc:e3:0d:79:87:7f: 1e:63:19:84:22:8c:9c:25:af:c0:2f:cb:13:cf:42:1b:b1:0a: 46:4c:a4:d8:bc:a6:a5:5f:c7:f6:25:1e:47:2f:69:98:7f:10: 35:d8:b3:9b:ea:b5:48:46:2a:49:4e:2b:bd:42:ae:2c:1d:31: 9b:88:55:17:91:d7:5d:28:1b:0e:27:aa:86:0f:09:8c:b3:0d: fd:16:95:dc:30:44:5b:80:a1:74:52:89:ec:c9:b9:03:5b:37: 4b:c5:3e:06:2e:7c:1f:20:a3:db:7a:97:e7:b5:64:6f:0e:e8: 70:92:b6:5a:69:76:53:ac:0a:e4:0b:38:86:bb:01:0d:46:4a: ef:23:dd:7f:19:9c:63:e1:14:f0:68:fe:b1:c3:6f:5b:e3:ed: 91:03:b0:0d -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICA0kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTVB NkFDMzhFRTY4QzM2NENGNzkxODhGMDY0MjdFOUM3NjZENEMxQTAeFw0yNTEwMzAw NzQ5NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY3QUM5QzhERkI5Mzcw MTE4RjI1OUNEOEIwNkNEN0E5QjdFOUExMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXFGPANQ+X2v5aKeOThBi2b/LTzvEXxNFpMMrSsGZJPeGFt5KT G/2dgoBZF3bGZS7tkHJ+ESBVlQDbtaQX67k1lEAVjfnon3Pru/UgC32JXti7xcZe 1cnLTtjzi7PDvoYhfj4WS5qK9pYYfM4sme2l+exk/X25L+lnuu148nZet9UhjY7Z ICy0vHqzaqpRsNRpHE8y8CvFPRVJlgFIV8RDAxXYDq0CRs4aza6C8rMhbfeoFpDe RvGOAmluiaFv2MV4IMHg0LjlxHUF2OFFA26OXTw5h38LCrodD3QJiK8sp5N8ryxi B33IX5/D6P8fdhZWirc8j5XGdjnZ37YvenO7AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUZ6ycjfuTcBGPJZzYsGzXqbfpoRowHwYDVR0jBBgwFoAUpaasOO5ow2TPeRiP BkJ+nHZtTBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tT SU5DL3BhYXNPTzVvdzJUUGVSaVBCa0otbkhadFRCby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcGFhc09PNW93MlRQZVJpUEJrSi1uSFp0VEJvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tTSU5DL1o2eWNqZnVUY0JH UEpaellzR3pYcWJmcG9Sby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHKBQowDQYJKoZIhvcNAQELBQADggEBABizjWnYg7KLiF/1Mnav6LnaxDO0 7uhAdSIVQ4q1ngJD0Vw+f8timaZWELPaqr8SDNC6nM/yXrDcLgeVwFaVgz4KEJys gXm53Z68mE1wcaePth1oYSzjmrkCtDuCjglS472i7F/2kszjDXmHfx5jGYQijJwl r8AvyxPPQhuxCkZMpNi8pqVfx/YlHkcvaZh/EDXYs5vqtUhGKklOK71CriwdMZuI VReR110oGw4nqoYPCYyzDf0WldwwRFuAoXRSiezJuQNbN0vFPgYufB8go9t6l+e1 ZG8O6HCStlppdlOsCuQLOIa7AQ1GSu8j3X8ZnGPhFPBo/rHDb1vj7ZEDsA0= -----END CERTIFICATE-----Generated at Sat Dec 6 23:22:19 2025 by rpki-client