$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/3drgUWVl3vw5qZilWYiqDhNVfAo.roa File: 3drgUWVl3vw5qZilWYiqDhNVfAo.roa (raw, json) Hash identifier: 4M1UKUAkxLcjFXzI73ZgHDlVzB29SRsTo0hDFUNfzaI= Subject key identifier: DD:DA:E0:51:65:65:DE:FC:39:A9:98:A5:59:88:AA:0E:13:55:7C:0A Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Certificate serial: 049F Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/3drgUWVl3vw5qZilWYiqDhNVfAo.roa Signing time: Tue 03 Mar 2026 15:39:24 +0000 ROA not before: Tue 03 Mar 2026 15:39:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152614 IP address blocks: 103.173.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 08:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1183 (0x49f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Validity Not Before: Mar 3 15:39:24 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DDDAE0516565DEFC39A998A55988AA0E13557C0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6f:c7:f2:72:19:af:9e:00:72:c8:30:39:5e: 0b:5b:0c:21:46:f1:5a:56:07:f9:c0:5b:dc:70:7f: af:c9:8d:45:a9:e3:61:98:6d:23:c4:10:9a:50:5e: 02:62:be:c5:df:eb:6c:72:c4:b2:b6:6e:58:54:c5: 69:9c:73:de:fc:4a:8b:be:a3:1e:6c:df:65:b0:14: d0:87:6a:16:0f:f3:46:7a:db:d4:93:06:b5:8d:34: e7:c7:97:17:1e:bd:36:44:bf:54:85:29:16:f1:b6: 41:e7:c9:ac:6c:c0:68:05:0a:0c:d9:b6:43:a3:de: 42:4e:1e:52:b5:1d:ff:87:f7:90:1c:2d:16:b7:7c: 59:a2:08:8b:3c:ad:a1:30:4a:3d:53:f6:38:b7:04: d0:15:44:9c:fa:86:a5:d4:ad:d0:5d:b7:17:5f:ec: 24:41:d9:f5:1d:5b:75:2e:2a:d5:14:09:d0:6b:b2: 95:ba:8e:2b:ff:b5:fc:bf:ad:30:22:a8:85:33:ab: fa:2a:84:ce:bd:12:e8:6a:81:ec:92:6a:ea:3a:1c: c0:9b:53:16:63:ee:c1:8f:eb:70:3c:40:c5:53:69: 76:a4:28:c7:73:95:93:4a:77:53:91:ca:4a:d2:7c: 0e:64:be:13:97:1a:84:31:b2:86:01:0c:97:66:32: 60:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:DA:E0:51:65:65:DE:FC:39:A9:98:A5:59:88:AA:0E:13:55:7C:0A X509v3 Authority Key Identifier: keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/3drgUWVl3vw5qZilWYiqDhNVfAo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.173.94.0/23 Signature Algorithm: sha256WithRSAEncryption 85:ea:03:fc:6c:48:3f:ed:a3:be:e0:b1:5f:20:e9:17:16:25: 73:c1:6a:ba:7f:f0:c0:4d:04:9f:2b:d6:4a:27:bd:c9:07:4f: 9c:e9:9e:b8:5f:73:58:5b:b5:0d:42:2c:3e:29:b3:fa:eb:1e: df:7c:f5:dc:b2:15:a2:25:a0:37:0a:d6:1e:04:a7:d5:e6:f2: 58:08:23:38:37:9e:be:7d:a8:54:f2:dc:95:d9:06:a7:39:0b: 86:68:1c:af:32:1e:8d:23:7b:e3:07:92:e9:f5:09:53:91:68: 4c:fa:28:3f:ea:4b:20:5f:b4:e8:9f:12:d7:fe:ea:51:0a:5e: 94:8a:ab:6e:67:19:75:3a:3c:f2:05:df:a6:ae:80:07:1b:78: bc:9f:03:22:77:e0:19:7f:44:53:76:cc:8d:43:62:e9:e1:2f: 68:c7:d1:9d:59:5b:25:ac:d0:ec:22:3c:c1:56:19:f2:b4:bd: 39:0a:88:2f:b5:82:db:41:eb:c8:64:85:06:87:90:69:10:60: 19:ab:5f:24:cf:39:e3:95:44:7d:72:85:71:1b:35:d8:62:3c: e5:4b:42:29:2b:65:af:d3:ca:f7:e0:08:75:f2:05:c0:6b:21: 67:c0:3c:ab:3c:79:e8:b7:a1:68:0e:9d:5c:a9:a0:fe:75:92: 86:40:29:75 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICBJ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjg4 Nzk4NURCMTlFNUZEODJGOTYyQjQyMEVDQzBGQzRFRDczMEQwMjAeFw0yNjAzMDMx NTM5MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEREREFFMDUxNjU2NURF RkMzOUE5OThBNTU5ODhBQTBFMTM1NTdDMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfb8fychmvngByyDA5XgtbDCFG8VpWB/nAW9xwf6/JjUWp42GY bSPEEJpQXgJivsXf62xyxLK2blhUxWmcc978Sou+ox5s32WwFNCHahYP80Z629ST BrWNNOfHlxcevTZEv1SFKRbxtkHnyaxswGgFCgzZtkOj3kJOHlK1Hf+H95AcLRa3 fFmiCIs8raEwSj1T9ji3BNAVRJz6hqXUrdBdtxdf7CRB2fUdW3UuKtUUCdBrspW6 jiv/tfy/rTAiqIUzq/oqhM69EuhqgeySauo6HMCbUxZj7sGP63A8QMVTaXakKMdz lZNKd1ORykrSfA5kvhOXGoQxsoYBDJdmMmAFAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU3drgUWVl3vw5qZilWYiqDhNVfAowHwYDVR0jBBgwFoAUaIeYXbGeX9gvlitC DswPxO1zDQIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNUVkMv YUllWVhiR2VYOWd2bGl0Q0Rzd1B4TzF6RFFJLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9hSWVZWGJHZVg5Z3ZsaXRDRHN3UHhPMXpEUUkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JU1RWQy8zZHJnVVdWbDN2dzVxWmlsV1lp cURoTlZmQW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ61e MA0GCSqGSIb3DQEBCwUAA4IBAQCF6gP8bEg/7aO+4LFfIOkXFiVzwWq6f/DATQSf K9ZKJ73JB0+c6Z64X3NYW7UNQiw+KbP66x7ffPXcshWiJaA3CtYeBKfV5vJYCCM4 N56+fahU8tyV2QanOQuGaByvMh6NI3vjB5Lp9QlTkWhM+ig/6ksgX7TonxLX/upR Cl6UiqtuZxl1OjzyBd+mroAHG3i8nwMid+AZf0RTdsyNQ2Lp4S9ox9GdWVslrNDs IjzBVhnytL05CogvtYLbQevIZIUGh5BpEGAZq18kzznjlUR9coVxGzXYYjzlS0Ip K2Wv08r34Ah18gXAayFnwDyrPHnot6FoDp1cqaD+dZKGQCl1 -----END CERTIFICATE-----Generated at Fri Mar 27 05:13:34 2026 by rpki-client