$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/DzkoBlao-oVj2bWXVEkN_8OapUI.roa File: DzkoBlao-oVj2bWXVEkN_8OapUI.roa (raw, json) Hash identifier: bhN7kmPGBcdSR0I5FOSNDkTsOluKIN26NLrZzakfKC0= Subject key identifier: 0F:39:28:06:56:A8:FA:85:63:D9:B5:97:54:49:0D:FF:C3:9A:A5:42 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 108A Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/DzkoBlao-oVj2bWXVEkN_8OapUI.roa Signing time: Fri 22 Aug 2025 08:57:52 +0000 ROA not before: Fri 22 Aug 2025 08:57:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24168 IP address blocks: 103.136.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4234 (0x108a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Aug 22 08:57:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0F39280656A8FA8563D9B59754490DFFC39AA542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:14:b3:8f:da:0c:9b:48:9f:42:33:03:57:3a: f4:d2:a0:1c:a7:99:3b:18:c5:6e:a0:cf:eb:e0:88: b7:ca:74:de:ae:97:18:c9:94:61:71:5e:4b:df:c0: fe:b2:4c:fe:4e:f2:5d:c8:79:40:e0:2b:a1:3e:e0: 03:ba:c1:ae:67:2b:59:fc:ef:31:0b:88:a8:91:26: db:a2:be:55:5c:24:ae:92:4a:3b:18:68:8a:9f:e0: e0:7a:5e:fb:66:d3:c6:92:20:b5:32:ef:0b:dc:75: d4:1b:d6:44:ba:f2:1f:2f:da:ae:aa:cd:92:5a:80: e5:e6:1d:f9:95:cb:1e:63:b3:88:81:2e:a9:c7:7a: 48:e2:42:d4:7f:09:f0:99:01:8b:12:e1:ba:5d:19: 93:30:07:ff:c9:ea:a9:3e:17:bd:1e:2d:1f:df:13: 19:72:fc:d3:1b:b7:28:38:3b:28:28:05:61:99:e5: 38:99:20:e5:bb:60:96:b4:80:eb:0a:5e:fe:24:ea: ec:78:95:6b:61:0b:13:98:f3:c2:98:e4:e7:0e:22: f6:04:d2:56:ce:18:cd:d6:2c:b5:47:0f:9c:ab:86: e9:74:88:96:b9:be:cb:ad:09:4c:c1:ee:fc:4e:70: fc:44:cd:00:13:0f:76:b9:e4:19:6a:62:54:d0:f5: 8d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:39:28:06:56:A8:FA:85:63:D9:B5:97:54:49:0D:FF:C3:9A:A5:42 X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/DzkoBlao-oVj2bWXVEkN_8OapUI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:ac:e7:fe:61:b2:15:29:af:f5:74:be:1b:85:92:b3:2d:ca: fe:c3:f7:da:66:21:1f:79:63:ca:b6:75:a6:c2:3e:a6:80:43: 4c:f2:0b:02:0b:fd:28:6f:52:0f:b3:10:84:41:02:f1:df:5e: fa:a1:11:93:2d:0b:15:32:6e:8a:65:0e:2c:c9:8a:46:11:06: de:4f:a4:0d:61:4a:99:33:d6:62:83:ce:34:4e:24:ea:ad:ab: d5:b2:b7:68:83:4a:0c:c9:32:6b:ea:d1:b3:dd:72:0a:1c:cd: 32:fb:dc:6c:41:5c:1c:df:93:86:65:52:ea:4c:1f:9f:2d:ae: 01:0a:37:3d:92:b6:0b:fc:ae:20:9a:a2:9f:99:d8:0e:f3:78: c0:30:f5:f6:a5:6e:45:5a:c7:85:61:bf:57:f1:77:9b:bc:4f: 20:68:75:2f:d2:28:71:a8:95:51:15:7f:7f:c7:b8:33:bb:40: 84:c3:43:ad:3c:25:9b:02:0e:2e:0c:01:64:ec:4c:73:76:c2: 16:c5:95:1b:3d:60:4b:e6:45:31:9d:34:e8:ea:5a:ea:ca:96: 03:40:c5:49:8a:04:01:35:82:18:8d:89:30:db:66:f5:85:71: 0c:da:05:57:18:e0:d3:83:59:35:84:de:0e:6c:74:10:55:c9: cf:34:fd:e7 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEIowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNTA4MjIw ODU3NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBGMzkyODA2NTZBOEZB ODU2M0Q5QjU5NzU0NDkwREZGQzM5QUE1NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaFLOP2gybSJ9CMwNXOvTSoBynmTsYxW6gz+vgiLfKdN6ulxjJ lGFxXkvfwP6yTP5O8l3IeUDgK6E+4AO6wa5nK1n87zELiKiRJtuivlVcJK6SSjsY aIqf4OB6Xvtm08aSILUy7wvcddQb1kS68h8v2q6qzZJagOXmHfmVyx5js4iBLqnH ekjiQtR/CfCZAYsS4bpdGZMwB//J6qk+F70eLR/fExly/NMbtyg4OygoBWGZ5TiZ IOW7YJa0gOsKXv4k6ux4lWthCxOY88KY5OcOIvYE0lbOGM3WLLVHD5yrhul0iJa5 vsutCUzB7vxOcPxEzQATD3a55BlqYlTQ9Y1VAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUDzkoBlao+oVj2bWXVEkN/8OapUIwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL0R6a29CbGFvLW9WajJiV1hWRWtOXzhP YXBVSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniDwwDQYJ KoZIhvcNAQELBQADggEBAA+s5/5hshUpr/V0vhuFkrMtyv7D99pmIR95Y8q2dabC PqaAQ0zyCwIL/ShvUg+zEIRBAvHfXvqhEZMtCxUyboplDizJikYRBt5PpA1hSpkz 1mKDzjROJOqtq9Wyt2iDSgzJMmvq0bPdcgoczTL73GxBXBzfk4ZlUupMH58trgEK Nz2Stgv8riCaop+Z2A7zeMAw9falbkVax4Vhv1fxd5u8TyBodS/SKHGolVEVf3/H uDO7QITDQ608JZsCDi4MAWTsTHN2whbFlRs9YEvmRTGdNOjqWurKlgNAxUmKBAE1 ghiNiTDbZvWFcQzaBVcY4NODWTWE3g5sdBBVyc80/ec= -----END CERTIFICATE-----Generated at Sun Aug 24 09:37:59 2025 by rpki-client