$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/35382e3131342e3139322e302f31382d3138203d3e203138303432.roa File: 35382e3131342e3139322e302f31382d3138203d3e203138303432.roa (raw, json) Hash identifier: ZJvZ3stbMKIpGLDgux99u9CH6u7gJnta9VdC2GjD4a4= Subject key identifier: FD:83:13:7C:C5:D8:8E:F1:DE:C3:F4:95:1A:26:A1:7B:F5:6D:AA:56 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 6C8A89D8DA2145C5CB02EF2E6248CE3205F757E1 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131342e3139322e302f31382d3138203d3e203138303432.roa Signing time: Mon 22 Jun 2026 03:23:55 +0000 ROA not before: Mon 22 Jun 2026 03:18:55 +0000 ROA not after: Mon 21 Jun 2027 03:23:55 +0000 asID: 18042 IP address blocks: 58.114.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:8a:89:d8:da:21:45:c5:cb:02:ef:2e:62:48:ce:32:05:f7:57:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:18:55 2026 GMT Not After : Jun 21 03:23:55 2027 GMT Subject: CN=FD83137CC5D88EF1DEC3F4951A26A17BF56DAA56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:20:37:d6:0e:53:b7:7c:f8:f6:5a:3f:e2:0d: d8:66:5e:08:97:9c:81:c8:c7:40:24:d7:ce:0f:f3: 36:a2:e1:c8:48:6e:71:e5:07:7b:df:f6:9d:f8:3c: e8:1f:1d:f3:8c:73:1c:b5:df:c0:34:90:76:9f:9c: 39:2f:b3:fe:69:83:9d:ed:b0:d9:ec:b5:0a:6a:8f: 8c:5d:6a:fc:7e:1d:38:08:64:7f:25:ee:de:99:3c: 23:aa:0f:4e:1d:9b:54:07:c8:86:d7:8a:ed:79:07: bb:5d:0d:25:3e:75:b6:ef:ba:4a:7b:f7:b7:f3:a8: 31:22:f6:54:6d:22:6f:18:ff:17:71:e4:7d:cf:f6: f2:04:2d:73:a1:cf:67:1f:e8:4e:ee:a9:10:64:ad: 53:15:7a:b7:a8:b4:0c:a2:9e:d5:08:26:a6:6e:b4: 22:99:a7:5f:8c:b4:8b:fc:ff:be:96:04:d7:d5:66: e8:ed:e6:8d:f6:fa:fa:73:a5:09:83:76:d3:53:0e: 30:4c:f5:1b:2c:f8:f2:7b:f3:f0:4b:bc:f2:ce:af: 27:92:a0:2b:64:3d:9a:c1:76:61:ac:d2:63:cb:c2: 1a:d7:9d:4d:b5:d8:a8:58:d1:cf:d6:3c:b4:89:2a: 07:28:59:19:2f:64:f5:45:9f:f6:d3:e3:07:78:c0: b1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:83:13:7C:C5:D8:8E:F1:DE:C3:F4:95:1A:26:A1:7B:F5:6D:AA:56 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131342e3139322e302f31382d3138203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.114.192.0/18 Signature Algorithm: sha256WithRSAEncryption 35:a5:19:7d:3f:37:87:f0:78:68:60:b7:a0:ce:cf:97:7a:4b: a8:75:43:7f:25:16:d3:a2:46:2e:9a:00:fb:f7:5c:18:49:66: 73:26:81:48:81:ac:09:fa:f4:42:42:d2:f4:c3:84:cc:52:f3: 70:48:30:e4:70:97:5b:4a:05:3c:23:15:07:af:b0:81:ef:80: d9:99:05:33:70:7e:de:2c:34:fb:83:51:50:67:3b:44:ab:38: 5a:db:5c:23:96:cd:c7:bb:99:78:c1:da:54:ea:f0:5d:d7:17: 76:2f:6b:e5:ee:81:48:8e:cb:4d:5d:68:23:96:6f:70:3c:55: 29:a2:67:f9:d5:ec:b3:d5:c4:01:9c:a7:3c:c9:67:f6:1d:69: fd:fa:20:20:25:03:7c:91:f7:d9:17:91:c9:03:22:1d:d9:e5: 2e:28:e3:5e:ab:d9:ff:03:e7:e8:96:17:9f:59:88:59:e7:09: 20:96:46:47:cf:12:89:f0:98:b7:2f:06:4a:4e:7b:73:09:84: 7e:14:88:19:66:a9:65:79:8e:af:e1:5e:e0:68:ed:6b:cb:66: 8a:45:e8:1a:2c:65:03:ef:1d:6d:de:6d:c8:aa:c0:e0:f0:f0: 37:d1:55:18:ba:c7:6c:f3:79:94:9b:a2:7e:7e:a0:c5:9b:a9: 5b:ce:d6:47 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUbIqJ2NohRcXLAu8uYkjOMgX3V+EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzE4NTVaFw0yNzA2MjEwMzIzNTVaMDMxMTAvBgNV BAMTKEZEODMxMzdDQzVEODhFRjFERUMzRjQ5NTFBMjZBMTdCRjU2REFBNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvIDfWDlO3fPj2Wj/iDdhmXgiX nIHIx0Ak184P8zai4chIbnHlB3vf9p34POgfHfOMcxy138A0kHafnDkvs/5pg53t sNnstQpqj4xdavx+HTgIZH8l7t6ZPCOqD04dm1QHyIbXiu15B7tdDSU+dbbvukp7 97fzqDEi9lRtIm8Y/xdx5H3P9vIELXOhz2cf6E7uqRBkrVMVereotAyintUIJqZu tCKZp1+MtIv8/76WBNfVZujt5o32+vpzpQmDdtNTDjBM9Rss+PJ78/BLvPLOryeS oCtkPZrBdmGs0mPLwhrXnU212KhY0c/WPLSJKgcoWRkvZPVFn/bT4wd4wLFhAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQU/YMTfMXYjvHew/SVGiahe/VtqlYwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB5BggrBgEFBQcBCwRtMGswaQYIKwYBBQUHMAuGXXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzUzODJlMzEzMTM0MmUzMTM5 MzIyZTMwMmYzMTM4MmQzMTM4MjAzZDNlMjAzMTM4MzAzNDMyLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG OnLAMA0GCSqGSIb3DQEBCwUAA4IBAQA1pRl9PzeH8HhoYLegzs+XekuodUN/JRbT okYumgD791wYSWZzJoFIgawJ+vRCQtL0w4TMUvNwSDDkcJdbSgU8IxUHr7CB74DZ mQUzcH7eLDT7g1FQZztEqzha21wjls3Hu5l4wdpU6vBd1xd2L2vl7oFIjstNXWgj lm9wPFUpomf51eyz1cQBnKc8yWf2HWn9+iAgJQN8kffZF5HJAyId2eUuKONeq9n/ A+folhefWYhZ5wkglkZHzxKJ8Ji3LwZKTntzCYR+FIgZZqlleY6v4V7gaO1ry2aK RegaLGUD7x1t3m3IqsDg8PA30VUYusds83mUm6J+fqDFm6lbztZH -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:02 2026 by rpki-client