This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/V2fVwgLecyKu7SMicrJV4I0B42k.roa File: V2fVwgLecyKu7SMicrJV4I0B42k.roa (raw, json) Hash identifier: UyFSVPkkfoqOuEbmNVhceP+dKKpgZM5IQ7bPaFwveVg= Subject key identifier: 57:67:D5:C2:02:DE:73:22:AE:ED:23:22:72:B2:55:E0:8D:01:E3:69 Certificate issuer: /CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C Certificate serial: 0D7C Authority key identifier: 8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/V2fVwgLecyKu7SMicrJV4I0B42k.roa Signing time: Sat 08 Nov 2025 07:07:15 +0000 ROA not before: Sat 08 Nov 2025 07:07:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 21859 IP address blocks: 211.79.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 15:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3452 (0xd7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C Validity Not Before: Nov 8 07:07:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5767D5C202DE7322AEED232272B255E08D01E369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b7:49:63:8b:9d:8b:82:ae:09:3c:57:00:9d: 38:47:3a:0a:a1:81:68:b1:fc:0f:2f:87:81:90:68: 93:db:e5:9a:6f:ef:f2:3a:5b:06:30:c6:8d:13:09: c9:39:88:30:84:74:96:a5:cf:c8:2a:7f:6d:85:00: 04:8c:54:86:48:a8:7f:a4:e1:7b:9f:c3:13:d0:1d: ef:e4:20:c2:f7:df:a6:7b:4d:22:9b:54:04:1d:eb: 98:4b:ca:76:36:f6:a8:96:e2:52:b1:6d:4f:f9:2a: 15:87:52:5d:ed:33:65:10:05:dc:e6:04:2a:1f:71: 55:4a:b5:53:02:76:89:8c:38:34:fc:a9:53:1b:75: 76:e7:a2:8e:08:41:e9:d7:41:71:77:51:5a:0a:40: 7a:3d:24:da:cf:36:3d:59:60:38:55:9d:d1:53:cb: 68:96:de:b3:24:38:a4:51:6e:d5:26:40:e4:d7:19: 04:32:24:a1:c0:a7:d1:e5:f3:52:77:14:c1:58:7c: 43:ca:51:1c:61:c1:e9:ef:66:1e:c6:a2:08:a9:e7: fb:e0:fa:26:c3:43:d4:a3:7f:5c:b0:81:b8:ce:46: 40:95:e2:2b:de:7c:26:f0:b1:d1:d4:6b:9c:b2:5e: 49:a9:e5:63:77:99:9d:0b:c1:4d:b2:07:0e:f5:29: 84:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:67:D5:C2:02:DE:73:22:AE:ED:23:22:72:B2:55:E0:8D:01:E3:69 X509v3 Authority Key Identifier: keyid:8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/V2fVwgLecyKu7SMicrJV4I0B42k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.102.0/23 Signature Algorithm: sha256WithRSAEncryption 35:4f:e2:ee:a2:92:86:dd:37:63:1f:3c:67:41:27:4b:14:05: 3f:ed:90:0a:07:7e:19:03:52:9a:ef:3b:36:f2:06:54:11:87: e5:30:b9:3f:a6:d6:76:4e:93:b9:ce:fd:a1:d3:22:fa:0d:60: 0d:d9:3a:59:9a:9f:e5:53:e8:19:9d:33:95:44:d9:f0:54:b6: 00:76:40:d9:12:72:a4:c7:15:ae:df:10:c9:c8:ed:c8:26:40: 9a:d4:d3:ea:eb:76:fe:cc:1c:36:de:09:fe:b0:8a:14:3d:b6: 95:f4:30:f6:ba:67:49:c8:c7:4e:dd:78:a4:64:f0:49:df:68: 04:94:7b:54:96:25:c2:84:64:e7:50:61:2b:47:cb:43:7f:1c: 5c:ac:ab:7a:e9:5e:0d:f5:db:f8:65:5c:ea:47:96:97:ab:b3: b0:76:06:3b:4f:26:60:d9:3d:e4:40:dc:6a:1a:32:b2:62:46: c4:9b:85:76:7c:ef:1b:6b:3e:1c:e8:6a:ef:dc:66:11:ef:7d: e4:a7:e8:11:bf:0e:27:b7:a8:be:e9:bd:58:35:28:53:8f:eb: 33:4d:28:7e:39:71:be:fa:95:48:36:dc:67:6d:48:ab:35:1f: 89:14:35:ff:20:25:8e:a2:50:38:fd:5b:8b:dd:77:d4:8d:9a: 6d:61:27:85 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDXwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEJE NjQ1Mjc4RkM0QTJBMjAwQkNEODA3MkYzQjNEQzc5MzEyNTM2QzAeFw0yNTExMDgw NzA3MTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU3NjdENUMyMDJERTcz MjJBRUVEMjMyMjcyQjI1NUUwOEQwMUUzNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCht0lji52Lgq4JPFcAnThHOgqhgWix/A8vh4GQaJPb5Zpv7/I6 WwYwxo0TCck5iDCEdJalz8gqf22FAASMVIZIqH+k4XufwxPQHe/kIML336Z7TSKb VAQd65hLynY29qiW4lKxbU/5KhWHUl3tM2UQBdzmBCofcVVKtVMCdomMODT8qVMb dXbnoo4IQenXQXF3UVoKQHo9JNrPNj1ZYDhVndFTy2iW3rMkOKRRbtUmQOTXGQQy JKHAp9Hl81J3FMFYfEPKURxhwenvZh7Gogip5/vg+ibDQ9Sjf1ywgbjORkCV4ive fCbwsdHUa5yyXkmp5WN3mZ0LwU2yBw71KYRhAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUV2fVwgLecyKu7SMicrJV4I0B42kwHwYDVR0jBBgwFoAUi9ZFJ4/EoqIAvNgH Lzs9x5MSU2wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTC1O RVQvaTlaRko0X0VvcUlBdk5nSEx6czl4NU1TVTJ3LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9pOVpGSjRfRW9xSUF2TmdITHpzOXg1TVNVMncuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DQVJMLU5FVC9WMmZWd2dMZWN5S3U3 U01pY3JKVjRJMEI0Mmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQB009mMA0GCSqGSIb3DQEBCwUAA4IBAQA1T+LuopKG3TdjHzxnQSdLFAU/7ZAK B34ZA1Ka7zs28gZUEYflMLk/ptZ2TpO5zv2h0yL6DWAN2TpZmp/lU+gZnTOVRNnw VLYAdkDZEnKkxxWu3xDJyO3IJkCa1NPq63b+zBw23gn+sIoUPbaV9DD2umdJyMdO 3XikZPBJ32gElHtUliXChGTnUGErR8tDfxxcrKt66V4N9dv4ZVzqR5aXq7OwdgY7 TyZg2T3kQNxqGjKyYkbEm4V2fO8baz4c6Grv3GYR733kp+gRvw4nt6i+6b1YNShT j+szTSh+OXG++pVINtxnbUirNR+JFDX/ICWOolA4/VuL3XfUjZptYSeF -----END CERTIFICATE-----Generated at Sat Dec 6 15:04:32 2025 by rpki-client