$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/8k4zt9X75sdh9In_XuIC82OWo60.roa File: 8k4zt9X75sdh9In_XuIC82OWo60.roa (raw, json) Hash identifier: KtYJIyyKIP2ktitfxIibaxrlLK7W6Tk8qDZtemfO1cQ= Subject key identifier: F2:4E:33:B7:D5:FB:E6:C7:61:F4:89:FF:5E:E2:02:F3:63:96:A3:AD Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 1086 Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/8k4zt9X75sdh9In_XuIC82OWo60.roa Signing time: Fri 22 Aug 2025 08:57:51 +0000 ROA not before: Fri 22 Aug 2025 08:57:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131641 IP address blocks: 103.136.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4230 (0x1086) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Aug 22 08:57:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F24E33B7D5FBE6C761F489FF5EE202F36396A3AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:93:32:8f:08:97:89:37:b2:95:0c:94:02:97: e1:37:16:9c:aa:f5:43:76:16:64:4b:01:ac:ed:56: 4f:fd:d4:64:75:21:9f:2f:9f:06:45:a8:65:ef:8f: 63:db:48:72:e8:1f:1b:2b:8b:e9:ae:c4:98:3a:b2: 72:6a:81:5d:ca:62:ee:c8:29:d1:19:65:2e:e5:6d: e8:12:81:ed:c0:5c:d2:37:91:72:41:0c:27:23:60: 30:c0:02:b7:4f:f7:08:19:f3:64:30:71:cd:b8:94: e2:38:2a:e9:a6:ff:e1:37:5a:8f:d0:9c:c2:c4:f3: 44:95:ca:e4:c2:b8:c4:83:f8:62:36:3a:4b:70:ed: e4:cf:8b:e4:c0:53:3f:e7:ab:af:9e:df:55:85:63: bb:a2:db:8e:98:3f:a1:16:d6:57:18:84:13:07:ab: 02:5b:8c:73:70:a6:fd:39:e9:4c:aa:7c:23:ae:fa: 14:51:24:13:4b:8f:fd:a3:75:df:48:a3:e5:d7:1b: 07:3d:96:be:98:31:0d:bd:d4:d2:50:6a:b9:dc:2f: 6a:55:71:7a:00:88:46:8d:49:d9:6e:85:3c:13:49: b2:ce:6f:f4:64:7a:82:ec:d1:2f:89:e1:9a:40:56: 94:14:0e:e0:00:2b:e3:21:93:f9:46:ac:c1:50:d4: 22:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:4E:33:B7:D5:FB:E6:C7:61:F4:89:FF:5E:E2:02:F3:63:96:A3:AD X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/8k4zt9X75sdh9In_XuIC82OWo60.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/23 Signature Algorithm: sha256WithRSAEncryption 82:f7:b6:15:c4:07:a2:61:b4:86:76:18:2e:4e:79:ff:f5:1a: 12:b3:fe:31:49:e6:08:90:f9:76:fb:bf:7a:5c:b6:da:41:ca: 55:71:83:bf:8f:31:30:c0:1b:f7:88:cc:76:7a:ad:9c:e9:a8: 75:48:bf:ee:8f:da:f6:8a:24:9c:33:40:46:65:1d:d5:76:ea: 3f:a8:c6:65:23:ca:6a:a8:f7:46:ba:1f:90:81:56:7d:1b:50: 9e:70:32:bd:cb:29:b9:a7:95:9a:a2:94:ae:c9:6d:05:b9:86: 8c:c1:4f:f5:0b:f2:31:b3:f0:c2:19:e9:6e:6e:a0:ff:c5:5e: 86:96:39:7d:8a:b6:79:ca:c6:e3:9c:54:4b:1d:62:1a:40:06: f4:ca:ad:4e:1a:8a:68:f9:a2:4e:51:c0:05:57:2e:9c:fb:25: 58:fe:6d:36:2a:ac:64:b0:49:0b:35:e9:84:0a:5d:13:56:5c: 44:38:a8:85:76:a2:e4:39:40:ce:73:41:51:6a:14:25:5e:17: 8b:0b:8e:7f:99:70:6b:fd:6a:82:2e:89:f6:80:b8:07:7a:ea: 91:e9:81:4d:b0:6a:fc:92:c7:cb:4a:71:46:f4:e9:86:b7:b5: 5d:e4:13:bc:72:29:d2:8e:c6:36:c4:d6:dc:00:e0:f6:b8:34: b6:15:18:f1 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEIYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNTA4MjIw ODU3NTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYyNEUzM0I3RDVGQkU2 Qzc2MUY0ODlGRjVFRTIwMkYzNjM5NkEzQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClkzKPCJeJN7KVDJQCl+E3Fpyq9UN2FmRLAaztVk/91GR1IZ8v nwZFqGXvj2PbSHLoHxsri+muxJg6snJqgV3KYu7IKdEZZS7lbegSge3AXNI3kXJB DCcjYDDAArdP9wgZ82Qwcc24lOI4Kumm/+E3Wo/QnMLE80SVyuTCuMSD+GI2Oktw 7eTPi+TAUz/nq6+e31WFY7ui246YP6EW1lcYhBMHqwJbjHNwpv056UyqfCOu+hRR JBNLj/2jdd9Io+XXGwc9lr6YMQ291NJQarncL2pVcXoAiEaNSdluhTwTSbLOb/Rk eoLs0S+J4ZpAVpQUDuAAK+Mhk/lGrMFQ1CJDAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU8k4zt9X75sdh9In/XuIC82OWo60wHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzhrNHp0OVg3NXNkaDlJbl9YdUlDODJP V282MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniDwwDQYJ KoZIhvcNAQELBQADggEBAIL3thXEB6JhtIZ2GC5Oef/1GhKz/jFJ5giQ+Xb7v3pc ttpBylVxg7+PMTDAG/eIzHZ6rZzpqHVIv+6P2vaKJJwzQEZlHdV26j+oxmUjymqo 90a6H5CBVn0bUJ5wMr3LKbmnlZqilK7JbQW5hozBT/UL8jGz8MIZ6W5uoP/FXoaW OX2KtnnKxuOcVEsdYhpABvTKrU4aimj5ok5RwAVXLpz7JVj+bTYqrGSwSQs16YQK XRNWXEQ4qIV2ouQ5QM5zQVFqFCVeF4sLjn+ZcGv9aoIuifaAuAd66pHpgU2wavyS x8tKcUb06Ya3tV3kE7xyKdKOxjbE1twA4Pa4NLYVGPE= -----END CERTIFICATE-----Generated at Sun Aug 24 11:43:46 2025 by rpki-client