$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/35382e3131342e3132382e302f31382d3138203d3e203138303432.roa File: 35382e3131342e3132382e302f31382d3138203d3e203138303432.roa (raw, json) Hash identifier: Lzl4mWDv814MIhPDq7ERKc8NuYUxhnVJTPpDosDw4sc= Subject key identifier: 9A:90:6A:15:99:FD:76:D1:6E:C8:F5:DE:10:15:76:5B:15:17:31:9F Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 26BAC7E60FF35A41C06229ED4440C6C92F9213FB Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131342e3132382e302f31382d3138203d3e203138303432.roa Signing time: Mon 22 Jun 2026 03:23:54 +0000 ROA not before: Mon 22 Jun 2026 03:18:54 +0000 ROA not after: Mon 21 Jun 2027 03:23:54 +0000 asID: 18042 IP address blocks: 58.114.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:ba:c7:e6:0f:f3:5a:41:c0:62:29:ed:44:40:c6:c9:2f:92:13:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:18:54 2026 GMT Not After : Jun 21 03:23:54 2027 GMT Subject: CN=9A906A1599FD76D16EC8F5DE1015765B1517319F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f7:ea:3c:0e:95:b4:48:af:9d:43:85:6a:fa: 92:5c:0f:fb:4b:f8:05:ce:76:0f:42:64:21:13:bf: 0a:7c:50:5b:e4:0f:76:4b:19:73:d0:25:b9:c5:61: d4:0b:48:c3:08:cb:b3:80:52:8a:85:32:d1:b2:e0: f2:3b:b9:09:2b:14:ae:d0:36:41:1f:fa:75:05:7a: 39:83:83:23:a3:3e:64:fb:ae:2e:5d:8c:a9:f3:36: 41:2d:8d:1a:d8:1a:86:0e:45:81:54:03:11:c7:5b: 26:34:4d:ad:87:0a:24:3c:ac:e4:ed:75:3f:c8:24: c8:3e:e5:e4:0e:b3:64:e6:d0:d9:1f:ef:f1:8c:5a: 45:4e:ac:24:99:dd:d5:21:62:f6:80:3d:f1:92:22: df:c6:bd:3d:fa:75:48:46:fb:88:f1:f7:1c:bf:de: 24:f8:7e:d7:21:2e:95:f9:c9:ef:c4:af:e4:22:e2: 45:a8:b5:02:da:d3:1e:4c:82:7b:1a:b4:95:d9:da: af:4e:3d:84:94:4d:d1:70:d9:33:e0:3f:71:a9:b5: d9:ee:47:87:44:f4:3d:ed:ae:9b:f0:97:bc:2c:96: de:29:77:6b:1e:07:1f:3b:79:3e:c6:a3:30:73:cb: 80:d7:92:ce:3a:4a:30:f9:ce:7f:98:d2:db:97:3a: 9e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:90:6A:15:99:FD:76:D1:6E:C8:F5:DE:10:15:76:5B:15:17:31:9F X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131342e3132382e302f31382d3138203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.114.128.0/18 Signature Algorithm: sha256WithRSAEncryption 58:1d:91:f1:b5:03:fc:f7:e7:b1:5c:66:9f:81:cd:8e:e8:15: 79:24:66:c9:b6:d9:7a:09:91:f6:b9:8d:cd:a2:e4:39:4f:d2: 5e:2f:1e:56:f2:82:c0:0b:34:9f:24:b4:56:af:ca:72:8f:58: 5e:08:78:2e:bc:87:eb:13:e0:8f:91:fc:f2:56:bc:ea:ec:8e: a4:09:76:63:dd:56:50:d4:02:06:1b:48:d4:ff:ad:e5:be:1f: e1:58:85:94:2c:24:1b:33:35:6d:e2:4c:86:a2:df:a7:79:65: 32:20:0d:9a:5c:e9:b3:95:db:df:a5:c0:0c:31:dd:84:0d:fb: 36:70:aa:22:3b:a4:0d:5e:ce:70:f8:d9:95:a9:4f:0d:9e:de: 20:f2:bf:77:5b:00:1b:5d:a4:c9:1c:e8:32:b3:95:d2:04:42: f3:14:d7:39:d5:11:a5:a8:c1:20:f9:be:e1:5e:36:f0:1b:f0: e1:b1:e3:57:b5:dd:db:cd:bd:ca:62:fd:9a:1c:80:1a:ec:47: 61:a4:06:29:35:19:b9:b0:90:8e:9a:44:b5:cb:51:07:22:ba: 81:31:23:46:5f:fe:ca:f0:3c:e6:30:a2:00:97:63:9a:b1:6e: 4c:72:5c:50:79:49:74:d5:40:62:52:94:ae:1b:75:79:f5:1b: c4:c1:c3:b4 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUJrrH5g/zWkHAYintREDGyS+SE/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzE4NTRaFw0yNzA2MjEwMzIzNTRaMDMxMTAvBgNV BAMTKDlBOTA2QTE1OTlGRDc2RDE2RUM4RjVERTEwMTU3NjVCMTUxNzMxOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz9+o8DpW0SK+dQ4Vq+pJcD/tL +AXOdg9CZCETvwp8UFvkD3ZLGXPQJbnFYdQLSMMIy7OAUoqFMtGy4PI7uQkrFK7Q NkEf+nUFejmDgyOjPmT7ri5djKnzNkEtjRrYGoYORYFUAxHHWyY0Ta2HCiQ8rOTt dT/IJMg+5eQOs2Tm0Nkf7/GMWkVOrCSZ3dUhYvaAPfGSIt/GvT36dUhG+4jx9xy/ 3iT4ftchLpX5ye/Er+Qi4kWotQLa0x5MgnsatJXZ2q9OPYSUTdFw2TPgP3Gptdnu R4dE9D3trpvwl7wslt4pd2seBx87eT7GozBzy4DXks46SjD5zn+Y0tuXOp47AgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUmpBqFZn9dtFuyPXeEBV2WxUXMZ8wHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB5BggrBgEFBQcBCwRtMGswaQYIKwYBBQUHMAuGXXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzUzODJlMzEzMTM0MmUzMTMy MzgyZTMwMmYzMTM4MmQzMTM4MjAzZDNlMjAzMTM4MzAzNDMyLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG OnKAMA0GCSqGSIb3DQEBCwUAA4IBAQBYHZHxtQP89+exXGafgc2O6BV5JGbJttl6 CZH2uY3NouQ5T9JeLx5W8oLACzSfJLRWr8pyj1heCHguvIfrE+CPkfzyVrzq7I6k CXZj3VZQ1AIGG0jU/63lvh/hWIWULCQbMzVt4kyGot+neWUyIA2aXOmzldvfpcAM Md2EDfs2cKoiO6QNXs5w+NmVqU8Nnt4g8r93WwAbXaTJHOgys5XSBELzFNc51RGl qMEg+b7hXjbwG/DhseNXtd3bzb3KYv2aHIAa7EdhpAYpNRm5sJCOmkS1y1EHIrqB MSNGX/7K8DzmMKIAl2OasW5MclxQeUl01UBiUpSuG3V59RvEwcO0 -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:02 2026 by rpki-client