$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/35382e3131342e302e302f31352d3234203d3e2039343136.roa File: 35382e3131342e302e302f31352d3234203d3e2039343136.roa (raw, json) Hash identifier: ZuZNoadZ6GphbDciL4W0+/tKUnwMMAgGLLxc+TiKcJ8= Subject key identifier: A4:A2:A9:81:60:D2:AD:CD:88:01:77:DE:E4:D7:A2:4C:3D:C7:30:24 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 369417D13DACFE5A54A798B5A6FFFDFDFC22DFC0 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131342e302e302f31352d3234203d3e2039343136.roa Signing time: Mon 22 Jun 2026 03:23:53 +0000 ROA not before: Mon 22 Jun 2026 03:18:53 +0000 ROA not after: Mon 21 Jun 2027 03:23:53 +0000 asID: 9416 IP address blocks: 58.114.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:94:17:d1:3d:ac:fe:5a:54:a7:98:b5:a6:ff:fd:fd:fc:22:df:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:18:53 2026 GMT Not After : Jun 21 03:23:53 2027 GMT Subject: CN=A4A2A98160D2ADCD880177DEE4D7A24C3DC73024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:80:1c:78:f6:76:51:f4:8c:da:9b:a2:7b:dc: b7:a0:a6:43:8e:23:db:8a:0d:96:a6:1d:53:87:ec: d4:6b:57:80:87:bb:2c:c4:13:de:ae:db:df:1d:fb: bd:ce:87:57:ee:6a:2f:14:f5:72:f1:e5:80:89:7c: b3:ba:57:0d:db:59:ed:b2:02:b5:e9:96:31:f0:a5: 47:8c:fc:36:ac:2d:57:82:e4:ef:d9:a4:7c:37:af: f3:d4:b4:8e:c9:55:c7:ec:38:63:4a:c8:f9:7b:90: 63:1d:85:0a:2b:da:b5:f7:29:ef:f1:e1:29:b9:14: 1e:62:8f:d3:77:db:c9:41:e2:2f:bb:81:8d:0f:25: 2d:5a:15:3e:a0:93:7f:17:60:9b:33:81:9a:fd:d7: 0b:ca:55:d5:14:62:f2:e8:3c:12:d3:69:c6:1b:38: a0:47:e7:1b:99:95:9e:0c:bc:37:e6:a5:c9:df:75: a4:19:24:4a:33:77:8e:49:f7:bb:ae:43:f1:5c:3e: b9:3f:a1:8d:4c:50:6c:41:75:79:93:29:bc:30:4e: 37:9b:dc:19:44:e8:b0:f4:ce:49:2e:94:1c:a9:5f: 15:86:ff:32:9f:f6:98:c8:2a:5d:33:0c:d7:95:27: e6:ff:a3:55:63:40:7a:6f:6b:74:e5:76:1b:c6:2c: 95:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:A2:A9:81:60:D2:AD:CD:88:01:77:DE:E4:D7:A2:4C:3D:C7:30:24 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131342e302e302f31352d3234203d3e2039343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.114.0.0/15 Signature Algorithm: sha256WithRSAEncryption 1b:b0:20:87:8b:fd:30:5a:10:0c:8b:fd:c1:e2:9a:54:65:0b: 8f:69:5e:9c:7b:f5:ec:0c:f8:e3:c6:f1:30:36:fb:53:10:05: df:f3:7a:1f:6e:b4:e2:ad:ec:08:29:1d:91:4b:65:95:64:ca: f1:e0:bb:3d:6a:05:fd:1e:27:10:98:74:ed:4c:02:36:6e:26: 45:f6:a6:23:4d:fc:01:63:aa:ad:dd:11:9b:ce:ba:5f:c8:00: 3d:99:98:c0:72:48:b8:d0:08:c5:70:db:ca:b9:04:91:7c:60: 61:c3:f8:54:b3:13:f3:86:71:f7:b3:45:d3:05:fe:13:af:81: ca:24:9b:14:21:78:38:e2:b8:eb:ed:67:4f:66:ad:a3:b3:d7: b1:59:ff:87:b9:50:ed:52:46:9f:f0:45:1a:a4:ca:72:df:39: 22:02:8a:2a:40:d2:d8:fe:25:38:b9:20:d4:23:8a:6b:72:c2: 89:ad:42:75:68:38:6e:52:6c:7f:f3:d5:56:70:b0:3e:e8:b7: f3:53:4e:59:88:a6:7e:38:56:10:ff:77:ec:2e:c8:65:51:56: e5:d1:b5:54:2c:96:90:73:7a:15:ef:0c:71:2b:2a:b2:b2:1f: 33:f3:d8:bf:55:46:35:a8:d9:12:91:54:6a:9b:7f:ca:06:20: 22:fc:46:2d -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgIUNpQX0T2s/lpUp5i1pv/9/fwi38AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzE4NTNaFw0yNzA2MjEwMzIzNTNaMDMxMTAvBgNV BAMTKEE0QTJBOTgxNjBEMkFEQ0Q4ODAxNzdERUU0RDdBMjRDM0RDNzMwMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCgBx49nZR9Izam6J73LegpkOO I9uKDZamHVOH7NRrV4CHuyzEE96u298d+73Oh1fuai8U9XLx5YCJfLO6Vw3bWe2y ArXpljHwpUeM/DasLVeC5O/ZpHw3r/PUtI7JVcfsOGNKyPl7kGMdhQor2rX3Ke/x 4Sm5FB5ij9N328lB4i+7gY0PJS1aFT6gk38XYJszgZr91wvKVdUUYvLoPBLTacYb OKBH5xuZlZ4MvDfmpcnfdaQZJEozd45J97uuQ/FcPrk/oY1MUGxBdXmTKbwwTjeb 3BlE6LD0zkkulBypXxWG/zKf9pjIKl0zDNeVJ+b/o1VjQHpva3TldhvGLJU9AgMB AAGjggHWMIIB0jAdBgNVHQ4EFgQUpKKpgWDSrc2IAXfe5NeiTD3HMCQwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjBzBggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzUzODJlMzEzMTM0MmUzMDJl MzAyZjMxMzUyZDMyMzQyMDNkM2UyMDM5MzQzMTM2LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBOnIwDQYJ KoZIhvcNAQELBQADggEBABuwIIeL/TBaEAyL/cHimlRlC49pXpx79ewM+OPG8TA2 +1MQBd/zeh9utOKt7AgpHZFLZZVkyvHguz1qBf0eJxCYdO1MAjZuJkX2piNN/AFj qq3dEZvOul/IAD2ZmMBySLjQCMVw28q5BJF8YGHD+FSzE/OGcfezRdMF/hOvgcok mxQheDjiuOvtZ09mraOz17FZ/4e5UO1SRp/wRRqkynLfOSICiipA0tj+JTi5INQj imtywomtQnVoOG5SbH/z1VZwsD7ot/NTTlmIpn44VhD/d+wuyGVRVuXRtVQslpBz ehXvDHErKrKyHzPz2L9VRjWo2RKRVGqbf8oGICL8Ri0= -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:04 2026 by rpki-client