This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/ZSxhd8aHi1LMGqcLudRx__hQNQU.roa File: ZSxhd8aHi1LMGqcLudRx__hQNQU.roa (raw, json) Hash identifier: 6c0losMgzYfoBgXeGjGJmVkJ0DSJmbIwFvnsJet7r0c= Subject key identifier: 65:2C:61:77:C6:87:8B:52:CC:1A:A7:0B:B9:D4:71:FF:F8:50:35:05 Certificate issuer: /CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Certificate serial: 0451 Authority key identifier: 2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/ZSxhd8aHi1LMGqcLudRx__hQNQU.roa Signing time: Fri 07 Nov 2025 00:24:27 +0000 ROA not before: Fri 07 Nov 2025 00:24:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 21859 IP address blocks: 223.26.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 15:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1105 (0x451) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Validity Not Before: Nov 7 00:24:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=652C6177C6878B52CC1AA70BB9D471FFF8503505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f8:a3:6b:0e:cd:48:a3:1f:8d:97:a7:47:32: 4a:56:a1:c5:29:e4:4b:e7:7f:de:05:df:6f:b0:39: 33:c0:73:5a:c1:ba:72:4b:e0:2f:cc:69:bd:b5:cc: 6a:5a:49:35:d1:c6:ee:dd:39:60:b3:1f:dc:1f:48: 4d:f8:23:4a:5c:a8:ee:32:90:cc:eb:cd:86:94:fc: 75:09:27:b5:6e:3c:8b:dc:71:ac:7c:51:d4:43:17: cc:95:36:0e:46:ae:51:0e:4d:68:19:d6:71:4c:86: c3:df:04:36:a0:59:a3:2b:d8:7b:53:87:15:07:51: 21:78:75:7f:fb:c3:08:6c:d6:46:89:49:f9:7c:e8: 09:6b:cf:d1:06:2e:4f:01:99:f7:a7:e2:8a:9c:ad: ee:48:5b:ee:03:6f:48:34:74:57:1f:33:bd:05:e9: a0:58:77:3b:92:a6:71:b6:0a:9e:12:f0:04:47:73: dd:9c:8d:86:43:92:9e:52:94:73:14:72:74:36:fd: d4:04:67:ec:de:09:e2:85:28:50:aa:bd:48:84:75: 0d:2e:9a:4f:c3:5a:fc:c7:a6:e1:77:fa:b5:76:c4: b7:66:52:68:cf:2a:dc:dc:07:7a:65:8e:41:39:11: ec:49:83:68:d4:db:bb:2b:1d:53:75:e4:de:e2:ac: d2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:2C:61:77:C6:87:8B:52:CC:1A:A7:0B:B9:D4:71:FF:F8:50:35:05 X509v3 Authority Key Identifier: keyid:2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/ZSxhd8aHi1LMGqcLudRx__hQNQU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.14.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:63:25:5f:10:4a:ab:4d:b3:e7:20:5e:c8:53:0e:8f:42:ae: 23:99:26:a3:dd:d5:55:29:bf:57:bf:ce:64:10:13:49:bd:75: 86:c1:79:40:ed:a2:58:84:0b:e2:a5:df:99:2c:01:e3:81:b4: 6b:49:7b:23:b3:f0:6a:4b:4b:19:ec:87:5b:81:bc:1e:cc:cd: 08:d5:bf:3d:a0:15:1e:4d:bb:cf:3b:93:c7:cd:c5:d3:30:17: 92:f9:90:5a:73:b9:6e:a6:47:74:0c:49:1d:62:5b:cb:a0:5d: 16:1b:cb:4d:6d:f8:8b:10:79:65:25:78:05:4a:da:d8:07:09: 49:16:02:93:bc:06:57:c6:95:19:1e:64:68:59:75:35:83:1b: 1d:f6:9c:a4:e7:4f:67:53:d1:03:37:f0:1d:e0:1a:2a:a8:5b: 1b:e6:2f:59:99:f6:75:ae:83:a0:3b:63:c2:5e:63:13:fd:ba: f0:21:b4:0f:ae:71:58:6a:92:9e:e8:be:de:4e:42:b3:2d:73: 70:65:fb:e3:49:54:de:5c:5c:c9:be:fe:7a:0b:e2:2b:4d:dd: 4f:31:9f:f9:3a:3c:c0:fc:07:2d:0f:5d:b3:ea:96:7b:4a:b8: bc:be:8c:f2:75:e9:e8:fc:5e:9e:77:97:9c:08:9e:a5:2a:39: 63:21:cc:d2 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICBFEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIz Qjg5QUQzMkYzQjk1QjdBRjE2NUY0QzhBNENEMDhFNzU0RDVBQjAeFw0yNTExMDcw MDI0MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY1MkM2MTc3QzY4NzhC NTJDQzFBQTcwQkI5RDQ3MUZGRjg1MDM1MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5+KNrDs1Iox+Nl6dHMkpWocUp5Evnf94F32+wOTPAc1rBunJL 4C/Mab21zGpaSTXRxu7dOWCzH9wfSE34I0pcqO4ykMzrzYaU/HUJJ7VuPIvccax8 UdRDF8yVNg5GrlEOTWgZ1nFMhsPfBDagWaMr2HtThxUHUSF4dX/7wwhs1kaJSfl8 6Alrz9EGLk8Bmfen4oqcre5IW+4Db0g0dFcfM70F6aBYdzuSpnG2Cp4S8ARHc92c jYZDkp5SlHMUcnQ2/dQEZ+zeCeKFKFCqvUiEdQ0umk/DWvzHpuF3+rV2xLdmUmjP KtzcB3pljkE5EexJg2jU27srHVN15N7irNKjAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUZSxhd8aHi1LMGqcLudRx//hQNQUwHwYDVR0jBBgwFoAUKzuJrTLzuVt68WX0 yKTNCOdU1aswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUND VUJFL0t6dUpyVEx6dVZ0NjhXWDB5S1ROQ09kVTFhcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvS3p1SnJUTHp1VnQ2OFdYMHlLVE5DT2RVMWFzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUNDVUJFL1pTeGhkOGFIaTFM TUdxY0x1ZFJ4X19oUU5RVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHfGg4wDQYJKoZIhvcNAQELBQADggEBACpjJV8QSqtNs+cgXshTDo9CriOZ JqPd1VUpv1e/zmQQE0m9dYbBeUDtoliEC+Kl35ksAeOBtGtJeyOz8GpLSxnsh1uB vB7MzQjVvz2gFR5Nu887k8fNxdMwF5L5kFpzuW6mR3QMSR1iW8ugXRYby01t+IsQ eWUleAVK2tgHCUkWApO8BlfGlRkeZGhZdTWDGx32nKTnT2dT0QM38B3gGiqoWxvm L1mZ9nWug6A7Y8JeYxP9uvAhtA+ucVhqkp7ovt5OQrMtc3Bl++NJVN5cXMm+/noL 4itN3U8xn/k6PMD8By0PXbPqlntKuLy+jPJ16ej8Xp53l5wInqUqOWMhzNI= -----END CERTIFICATE-----Generated at Sat Dec 6 13:58:46 2025 by rpki-client