This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/iCkkndkB1R7qDlnU5hlkXI5uiCw.roa File: iCkkndkB1R7qDlnU5hlkXI5uiCw.roa (raw, json) Hash identifier: YZBdfebh6s1B6Biq68yu8yDii8XEt7a+stEGQfzarEQ= Subject key identifier: 88:29:24:9D:D9:01:D5:1E:EA:0E:59:D4:E6:19:64:5C:8E:6E:88:2C Certificate issuer: /CN=7ED8309671027B7E6FC9AE27B9C68C9C4E29C575 Certificate serial: 02EF Authority key identifier: 7E:D8:30:96:71:02:7B:7E:6F:C9:AE:27:B9:C6:8C:9C:4E:29:C5:75 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/iCkkndkB1R7qDlnU5hlkXI5uiCw.roa Signing time: Wed 26 Nov 2025 03:21:38 +0000 ROA not before: Wed 26 Nov 2025 03:21:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38854 IP address blocks: 165.101.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 01:06:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 751 (0x2ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ED8309671027B7E6FC9AE27B9C68C9C4E29C575 Validity Not Before: Nov 26 03:21:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8829249DD901D51EEA0E59D4E619645C8E6E882C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3d:f6:cc:39:a4:1a:0c:10:6c:c5:59:74:ae: e2:ac:2b:93:38:a1:f3:07:fc:4d:6c:c7:56:e1:ae: 59:b2:26:e1:ea:cf:fd:1d:d4:cd:2a:86:06:8a:8a: b1:9d:14:7f:aa:e4:39:07:de:87:5c:a8:20:e1:58: 4d:00:a4:a3:e2:3a:3c:28:b1:a1:7c:e7:fd:63:2d: 3f:0a:2b:b8:a2:f0:7d:c3:c6:94:69:8a:f0:fc:40: c7:8e:22:f4:87:c3:ec:06:6e:80:f6:06:60:86:13: 9d:94:d3:73:d3:07:38:38:01:c3:43:32:48:31:2c: cd:7c:1c:80:b2:16:a8:a0:c8:3d:66:2a:94:7a:0b: 8c:94:f8:82:5a:c3:9c:13:c2:43:1a:df:19:91:77: de:61:a0:d1:a1:87:6b:a8:d1:4a:44:c6:16:dd:fd: c1:20:dd:37:be:b2:c0:03:1d:79:99:bc:7e:90:a5: 7c:0a:7a:ac:23:28:ab:a8:c8:9f:26:3c:6a:02:ff: 21:2b:47:b5:4f:e5:d5:27:cb:d4:83:a2:e6:84:c0: a7:fd:6e:27:bc:4d:f8:0e:84:95:b0:62:6a:5c:11: 2b:2f:8c:ba:d4:f2:b8:19:0a:02:54:ee:19:24:1a: d2:08:7a:a6:e5:62:53:e8:b0:a9:3f:18:58:a7:60: 2f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:29:24:9D:D9:01:D5:1E:EA:0E:59:D4:E6:19:64:5C:8E:6E:88:2C X509v3 Authority Key Identifier: keyid:7E:D8:30:96:71:02:7B:7E:6F:C9:AE:27:B9:C6:8C:9C:4E:29:C5:75 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/iCkkndkB1R7qDlnU5hlkXI5uiCw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.101.153.0/24 Signature Algorithm: sha256WithRSAEncryption 42:83:43:ff:b7:1d:1b:8a:b1:c6:22:91:f4:44:74:7c:c3:8d: 85:d8:45:a8:b8:9e:23:0c:70:41:a9:2c:81:41:95:50:bd:d0: d0:7a:b2:84:e8:f1:05:67:d5:81:17:17:4b:ff:d2:b3:88:2a: a9:1a:d0:9e:d8:fd:32:e5:5c:a6:0d:bc:6a:15:46:70:81:39: cc:ab:6b:b1:1b:34:ea:d4:b6:cb:e1:14:26:63:ac:1b:22:e9: 96:1b:78:85:26:2d:f2:33:54:b8:13:65:5c:48:94:a1:30:9c: 88:31:8f:30:ff:b5:75:f5:7e:dc:d7:c3:2b:e4:a0:37:67:d1: 0d:e6:5d:d9:a9:ea:7a:31:d7:72:ac:2c:f7:64:28:01:83:e1: 4c:3a:ea:16:01:16:20:c6:30:2d:0c:f4:35:2a:21:30:f0:0b: e4:8e:69:74:79:45:ef:ce:d8:4a:1b:10:d4:a7:c5:d9:8c:ba: e6:62:92:ae:0a:47:0d:65:b5:15:32:e2:38:37:8f:7e:fa:4c: 67:43:d3:5e:79:9c:d2:8a:91:86:3e:1c:5d:63:1c:f3:94:d8: 8a:67:ef:6d:2c:79:dc:26:1a:45:f3:fe:81:0f:2e:a4:7e:6e: ec:ab:49:82:da:07:a7:8a:80:89:c6:7e:06:8e:3b:cf:31:6c: b7:e1:ce:5f -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAu8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VE ODMwOTY3MTAyN0I3RTZGQzlBRTI3QjlDNjhDOUM0RTI5QzU3NTAeFw0yNTExMjYw MzIxMzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg4MjkyNDlERDkwMUQ1 MUVFQTBFNTlENEU2MTk2NDVDOEU2RTg4MkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1PfbMOaQaDBBsxVl0ruKsK5M4ofMH/E1sx1bhrlmyJuHqz/0d 1M0qhgaKirGdFH+q5DkH3odcqCDhWE0ApKPiOjwosaF85/1jLT8KK7ii8H3DxpRp ivD8QMeOIvSHw+wGboD2BmCGE52U03PTBzg4AcNDMkgxLM18HICyFqigyD1mKpR6 C4yU+IJaw5wTwkMa3xmRd95hoNGhh2uo0UpExhbd/cEg3Te+ssADHXmZvH6QpXwK eqwjKKuoyJ8mPGoC/yErR7VP5dUny9SDouaEwKf9bie8TfgOhJWwYmpcESsvjLrU 8rgZCgJU7hkkGtIIeqblYlPosKk/GFinYC8XAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUiCkkndkB1R7qDlnU5hlkXI5uiCwwHwYDVR0jBBgwFoAUftgwlnECe35vya4n ucaMnE4pxXUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0FNQkVT T04vZnRnd2xuRUNlMzV2eWE0bnVjYU1uRTRweFhVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9mdGd3bG5FQ2UzNXZ5YTRudWNhTW5FNHB4WFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU1CRVNPTi9pQ2trbmRrQjFSN3FE bG5VNWhsa1hJNXVpQ3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQApWWZMA0GCSqGSIb3DQEBCwUAA4IBAQBCg0P/tx0birHGIpH0RHR8w42F2EWo uJ4jDHBBqSyBQZVQvdDQerKE6PEFZ9WBFxdL/9KziCqpGtCe2P0y5VymDbxqFUZw gTnMq2uxGzTq1LbL4RQmY6wbIumWG3iFJi3yM1S4E2VcSJShMJyIMY8w/7V19X7c 18Mr5KA3Z9EN5l3Zqep6MddyrCz3ZCgBg+FMOuoWARYgxjAtDPQ1KiEw8Avkjml0 eUXvzthKGxDUp8XZjLrmYpKuCkcNZbUVMuI4N49++kxnQ9NeeZzSipGGPhxdYxzz lNiKZ+9tLHncJhpF8/6BDy6kfm7sq0mC2genioCJxn4GjjvPMWy34c5f -----END CERTIFICATE-----Generated at Sat Dec 6 22:48:19 2025 by rpki-client