$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/35382e3131342e302e302f31372d3137203d3e203138303432.roa File: 35382e3131342e302e302f31372d3137203d3e203138303432.roa (raw, json) Hash identifier: qVnJ4q9XWHVnDChQPd5WNtY+bRouD+ARzIrz0sNBBRw= Subject key identifier: 04:61:2C:25:6D:79:AC:B7:DA:BA:FD:DB:40:4D:34:F1:BB:0B:3F:2E Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 38CC69ABEFE1E55EEFEF959D180C2833DC0A27BC Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131342e302e302f31372d3137203d3e203138303432.roa Signing time: Mon 22 Jun 2026 03:24:03 +0000 ROA not before: Mon 22 Jun 2026 03:19:03 +0000 ROA not after: Mon 21 Jun 2027 03:24:03 +0000 asID: 18042 IP address blocks: 58.114.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:cc:69:ab:ef:e1:e5:5e:ef:ef:95:9d:18:0c:28:33:dc:0a:27:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:19:03 2026 GMT Not After : Jun 21 03:24:03 2027 GMT Subject: CN=04612C256D79ACB7DABAFDDB404D34F1BB0B3F2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:26:07:85:5b:76:49:f5:f7:81:f4:2f:06:be: f3:25:b7:6f:9d:59:39:30:29:d7:47:7c:57:8e:cc: 00:ed:dc:62:26:66:74:2e:79:82:35:6d:5c:2e:5d: 67:d0:aa:5e:21:c0:48:6f:38:d8:b6:c4:0f:fd:41: 17:0e:aa:5b:0e:cc:9a:58:56:63:8e:52:fd:a6:e3: 6e:d3:35:ed:78:40:b6:63:e9:cd:20:ac:93:b7:27: e1:98:63:38:4c:2d:00:d4:21:d8:5d:14:b8:fb:14: f5:ad:ec:cc:ad:d5:76:11:aa:2f:c3:44:aa:42:06: f7:b9:53:9d:e8:a4:8c:df:e0:7c:52:26:79:95:ac: bd:ee:a9:0b:31:8c:7a:c3:be:dd:11:85:ce:60:e4: 40:84:b7:b8:72:70:c7:43:44:2e:78:1d:d3:43:90: f5:55:e3:e2:20:01:f2:02:99:e2:c4:f6:3e:f3:8b: e1:80:5b:e5:77:8c:63:2b:9a:ef:36:90:d1:8c:07: 5c:55:af:2a:f5:e8:b8:d9:0d:80:89:91:49:c9:87: d7:cf:6f:63:27:4e:b7:7a:26:dc:d6:7a:ea:7d:c8: a8:f6:23:47:8c:30:83:9f:bc:c7:b3:1b:3d:da:52: 5b:0c:0d:bc:37:fe:0e:76:a4:cd:93:76:02:f6:20: d1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:61:2C:25:6D:79:AC:B7:DA:BA:FD:DB:40:4D:34:F1:BB:0B:3F:2E X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131342e302e302f31372d3137203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.114.0.0/17 Signature Algorithm: sha256WithRSAEncryption a4:b5:dd:d4:28:ef:ff:55:48:06:d7:be:f0:e5:35:6d:88:1f: 71:67:86:81:df:a1:b2:20:57:b1:03:6c:f7:38:bc:8b:b8:f9: 0a:cb:1e:07:11:ac:ee:0e:4a:d7:1e:2f:10:69:d9:1d:2e:93: 7a:78:a2:c4:d5:bb:ab:1e:d4:c3:32:f2:5a:e9:2b:ca:c6:73: de:dc:a6:c0:93:2c:35:b2:0a:7c:05:e1:35:4d:c5:fb:34:fc: 28:55:a6:83:17:fe:75:d2:15:a2:33:d6:16:4e:23:fe:3c:57: 47:ac:e3:48:08:e7:b7:78:96:82:a4:a1:90:01:1c:38:78:72: e9:6a:ec:d7:ce:86:f0:4a:4f:bf:83:b6:8f:b3:17:90:21:27: a6:5b:7a:56:0c:6b:0f:e3:70:c6:13:b4:2d:73:78:c3:47:11: 70:75:61:04:f6:3d:35:83:27:e7:3f:a3:06:a7:74:31:46:2e: 8a:8d:52:91:46:73:8e:5e:ef:a5:3a:8a:f2:c6:95:07:06:59: bc:36:65:e3:d5:76:dc:01:af:9c:63:2b:0a:3c:89:48:c7:39: 15:c1:37:e1:f0:4b:f1:d6:88:b9:b0:68:a0:18:99:4a:52:68: f5:f2:26:0e:ba:0a:f7:71:1c:d7:21:bf:c6:9d:6d:68:dd:ba: 68:5f:ea:91 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIUOMxpq+/h5V7v75WdGAwoM9wKJ7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzE5MDNaFw0yNzA2MjEwMzI0MDNaMDMxMTAvBgNV BAMTKDA0NjEyQzI1NkQ3OUFDQjdEQUJBRkREQjQwNEQzNEYxQkIwQjNGMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+JgeFW3ZJ9feB9C8GvvMlt2+d WTkwKddHfFeOzADt3GImZnQueYI1bVwuXWfQql4hwEhvONi2xA/9QRcOqlsOzJpY VmOOUv2m427TNe14QLZj6c0grJO3J+GYYzhMLQDUIdhdFLj7FPWt7Myt1XYRqi/D RKpCBve5U53opIzf4HxSJnmVrL3uqQsxjHrDvt0Rhc5g5ECEt7hycMdDRC54HdND kPVV4+IgAfICmeLE9j7zi+GAW+V3jGMrmu82kNGMB1xVryr16LjZDYCJkUnJh9fP b2MnTrd6JtzWeup9yKj2I0eMMIOfvMezGz3aUlsMDbw3/g52pM2TdgL2INGxAgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQUBGEsJW15rLfauv3bQE008bsLPy4wHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzUzODJlMzEzMTM0MmUzMDJl MzAyZjMxMzcyZDMxMzcyMDNkM2UyMDMxMzgzMDM0MzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc6cgAw DQYJKoZIhvcNAQELBQADggEBAKS13dQo7/9VSAbXvvDlNW2IH3FnhoHfobIgV7ED bPc4vIu4+QrLHgcRrO4OStceLxBp2R0uk3p4osTVu6se1MMy8lrpK8rGc97cpsCT LDWyCnwF4TVNxfs0/ChVpoMX/nXSFaIz1hZOI/48V0es40gI57d4loKkoZABHDh4 culq7NfOhvBKT7+Dto+zF5AhJ6ZbelYMaw/jcMYTtC1zeMNHEXB1YQT2PTWDJ+c/ owandDFGLoqNUpFGc45e76U6ivLGlQcGWbw2ZePVdtwBr5xjKwo8iUjHORXBN+Hw S/HWiLmwaKAYmUpSaPXyJg66CvdxHNchv8adbWjdumhf6pE= -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:04 2026 by rpki-client