This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/hhdkJLO7067VsUs97A0bf5U8JQc.roa File: hhdkJLO7067VsUs97A0bf5U8JQc.roa (raw, json) Hash identifier: vlO1zpnezKgnyNMX42nXqsn9ph8GR+mcssr1Tn1eBOc= Subject key identifier: 86:17:64:24:B3:BB:D3:AE:D5:B1:4B:3D:EC:0D:1B:7F:95:3C:25:07 Certificate issuer: /CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C Certificate serial: 0D79 Authority key identifier: 8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/hhdkJLO7067VsUs97A0bf5U8JQc.roa Signing time: Thu 06 Nov 2025 16:00:09 +0000 ROA not before: Thu 06 Nov 2025 16:00:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7536 IP address blocks: 211.79.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 01:06:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3449 (0xd79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C Validity Not Before: Nov 6 16:00:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=86176424B3BBD3AED5B14B3DEC0D1B7F953C2507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f7:90:04:e4:b1:4c:ec:c0:38:df:3d:82:ab: 1b:47:7d:07:92:11:91:12:c9:79:c4:54:f9:f3:22: e3:0d:07:74:85:6e:c8:68:85:0e:ac:7c:11:00:f8: 19:5d:3a:ec:47:e1:ee:6d:3e:37:21:db:e3:ba:6d: d3:66:a3:40:36:e9:88:be:5d:a0:ce:0e:a8:6b:4d: e4:5c:2d:f4:1d:44:fd:a3:bd:51:8b:0c:70:b5:32: 59:7d:9a:01:b1:57:06:f4:99:59:51:9a:ac:0e:a2: 9c:68:74:e2:13:43:53:f2:2d:fc:d6:55:1d:7b:a3: e5:81:f6:2d:e9:69:14:7d:2d:46:c8:a8:c0:4f:18: 56:19:9a:39:60:88:d4:af:1b:75:c9:2a:17:f0:0e: f6:18:11:d9:f0:66:d7:0b:6e:51:61:a2:02:9a:04: 68:3f:8c:c5:d8:55:9c:b5:3e:6b:43:de:2d:e1:94: e8:1e:35:0e:46:0e:cb:24:b4:5c:ef:ab:67:67:12: 24:2a:c5:01:1a:52:0b:4f:d0:9f:12:8a:f0:e3:6d: 59:cb:c3:89:12:b0:79:4e:f8:1c:e8:99:c5:ac:18: 66:fe:e9:f8:a2:71:b4:32:ae:a1:37:47:d8:78:58: 24:43:80:74:da:5a:89:ac:ed:e0:da:14:f5:1a:51: 2a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:17:64:24:B3:BB:D3:AE:D5:B1:4B:3D:EC:0D:1B:7F:95:3C:25:07 X509v3 Authority Key Identifier: keyid:8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/hhdkJLO7067VsUs97A0bf5U8JQc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.102.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:8d:b3:d1:04:ff:47:49:f4:9c:c5:bf:2f:34:53:ef:1f:25: 59:7b:44:7e:a9:cd:aa:c0:58:ca:e4:61:bc:56:be:ae:15:d1: ed:09:43:84:80:d7:63:1b:18:2b:cd:c4:58:28:32:57:d0:76: ac:11:98:10:02:82:87:d4:ea:ed:51:91:55:7b:c1:80:b6:ce: 32:4a:bc:e2:d4:a5:e5:8b:64:a2:aa:b8:69:de:9e:88:fb:80: 39:71:96:a1:e2:c9:0e:5d:c2:f5:ec:09:63:bb:2a:15:b6:74: 7c:e9:52:da:cf:6a:01:3a:64:99:d4:51:8f:01:7a:ac:c0:7c: 22:80:f8:7a:99:33:67:f8:61:5f:fd:e8:05:ae:6e:d4:47:3b: 8b:f2:27:f2:5e:37:b3:0d:c5:64:d1:3f:d5:69:b5:d3:c7:3a: f6:09:bc:b5:9f:9f:74:2b:fb:03:e1:de:e1:dc:b6:9d:5e:cf: 69:eb:d9:21:74:9f:39:a3:4f:e5:0c:69:3d:b5:c0:f8:67:98: d3:e2:f7:55:7b:65:78:5f:86:94:93:30:b1:bd:bc:cb:44:7d: 0e:26:b5:66:c0:58:49:66:5b:3f:8c:d1:8b:f2:75:04:43:55: 11:ff:ff:63:9a:39:18:80:0d:27:2a:0e:e9:62:37:35:ae:94: 08:18:ae:3e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDXkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEJE NjQ1Mjc4RkM0QTJBMjAwQkNEODA3MkYzQjNEQzc5MzEyNTM2QzAeFw0yNTExMDYx NjAwMDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg2MTc2NDI0QjNCQkQz QUVENUIxNEIzREVDMEQxQjdGOTUzQzI1MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCr95AE5LFM7MA43z2CqxtHfQeSEZESyXnEVPnzIuMNB3SFbsho hQ6sfBEA+BldOuxH4e5tPjch2+O6bdNmo0A26Yi+XaDODqhrTeRcLfQdRP2jvVGL DHC1Mll9mgGxVwb0mVlRmqwOopxodOITQ1PyLfzWVR17o+WB9i3paRR9LUbIqMBP GFYZmjlgiNSvG3XJKhfwDvYYEdnwZtcLblFhogKaBGg/jMXYVZy1PmtD3i3hlOge NQ5GDssktFzvq2dnEiQqxQEaUgtP0J8SivDjbVnLw4kSsHlO+BzomcWsGGb+6fii cbQyrqE3R9h4WCRDgHTaWoms7eDaFPUaUSrVAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUhhdkJLO7067VsUs97A0bf5U8JQcwHwYDVR0jBBgwFoAUi9ZFJ4/EoqIAvNgH Lzs9x5MSU2wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTC1O RVQvaTlaRko0X0VvcUlBdk5nSEx6czl4NU1TVTJ3LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9pOVpGSjRfRW9xSUF2TmdITHpzOXg1TVNVMncuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DQVJMLU5FVC9oaGRrSkxPNzA2N1Zz VXM5N0EwYmY1VThKUWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQB009mMA0GCSqGSIb3DQEBCwUAA4IBAQBrjbPRBP9HSfScxb8vNFPvHyVZe0R+ qc2qwFjK5GG8Vr6uFdHtCUOEgNdjGxgrzcRYKDJX0HasEZgQAoKH1OrtUZFVe8GA ts4ySrzi1KXli2Siqrhp3p6I+4A5cZah4skOXcL17AljuyoVtnR86VLaz2oBOmSZ 1FGPAXqswHwigPh6mTNn+GFf/egFrm7URzuL8ifyXjezDcVk0T/VabXTxzr2Cby1 n590K/sD4d7h3LadXs9p69khdJ85o0/lDGk9tcD4Z5jT4vdVe2V4X4aUkzCxvbzL RH0OJrVmwFhJZls/jNGL8nUEQ1UR//9jmjkYgA0nKg7pYjc1rpQIGK4+ -----END CERTIFICATE-----Generated at Sun Dec 7 00:26:59 2025 by rpki-client