$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/35382e3131352e302e302f31382d3138203d3e203338383531.roa File: 35382e3131352e302e302f31382d3138203d3e203338383531.roa (raw, json) Hash identifier: rAQP6F/M3ZrxuhXl0gB71oZrX6ICZTJh2Y6OnF5tuV0= Subject key identifier: F1:0B:99:C7:24:03:AC:A6:E9:B3:CB:C9:D0:77:0E:78:CE:86:AF:34 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 56AD5D7E9E2BB86EE4070F86C80E4E7E7F664000 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131352e302e302f31382d3138203d3e203338383531.roa Signing time: Mon 22 Jun 2026 03:24:02 +0000 ROA not before: Mon 22 Jun 2026 03:19:02 +0000 ROA not after: Mon 21 Jun 2027 03:24:02 +0000 asID: 38851 IP address blocks: 58.115.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:ad:5d:7e:9e:2b:b8:6e:e4:07:0f:86:c8:0e:4e:7e:7f:66:40:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:19:02 2026 GMT Not After : Jun 21 03:24:02 2027 GMT Subject: CN=F10B99C72403ACA6E9B3CBC9D0770E78CE86AF34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b6:15:34:b1:c0:55:d6:2a:60:31:09:b6:8e: 75:16:ad:4c:c9:b6:e3:02:6b:94:b4:28:70:de:5d: f5:c1:dd:e9:ed:94:f6:6a:62:a9:29:ab:52:77:b6: 14:02:d1:39:e1:c7:c2:27:c2:5b:e5:6b:9c:9e:b3: ac:73:f2:74:f3:01:58:86:84:5b:fd:a2:b5:43:85: 26:36:a0:7d:0f:9d:7f:1e:26:e4:1c:27:77:e6:99: 90:a6:b7:6c:d6:3f:3c:d4:da:dd:bb:64:53:41:59: a5:14:a0:50:db:d3:e6:c1:a8:05:14:58:32:c7:13: 56:05:3e:c1:4c:61:54:f7:66:95:e7:01:a2:7e:43: e1:ea:5c:90:c6:22:20:d2:e6:7c:94:17:b4:90:5f: f1:47:b9:b8:21:a0:c4:4b:fb:0e:6a:f2:45:4d:de: 8a:32:e1:e0:14:87:ce:50:49:db:6b:75:a9:e9:d9: 9c:ec:a1:b7:67:7c:71:92:61:d9:43:84:2f:eb:51: 5c:82:1c:92:db:bd:9f:14:11:85:d1:59:31:1a:95: 30:bf:39:93:14:37:8b:33:af:37:8b:eb:13:5c:2d: b4:0b:10:13:16:da:c0:b1:3a:f5:cb:40:2a:5d:32: d6:5e:4f:42:ed:b2:3c:25:3e:bc:02:f7:34:43:cc: 04:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:0B:99:C7:24:03:AC:A6:E9:B3:CB:C9:D0:77:0E:78:CE:86:AF:34 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131352e302e302f31382d3138203d3e203338383531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.115.0.0/18 Signature Algorithm: sha256WithRSAEncryption c9:f9:5d:76:ec:02:6a:e0:83:38:d8:d6:f0:16:fd:a8:e5:7b: d0:65:e6:da:4f:14:2a:35:28:d6:95:77:ad:49:56:cb:96:b4: 79:fe:e3:e4:3a:fb:a5:0a:97:c3:1c:37:22:7f:12:10:87:a5: 9a:0d:5d:4b:ac:36:95:64:49:33:ab:72:ba:cc:0f:18:70:a6: 66:7d:eb:74:19:15:f3:8f:15:ed:1f:2f:a3:05:13:68:a3:e4: 4f:cf:29:6a:66:09:55:11:b0:ec:4d:5e:1d:12:97:6c:2d:85: f6:76:4f:ba:79:3b:b5:d9:7f:07:d4:34:09:0c:20:85:4d:46: 47:78:7c:91:56:1d:3f:c5:49:41:c1:f2:9a:1b:e6:60:2b:56: d6:74:e1:1d:c0:13:2b:96:6e:37:f4:ec:9f:71:5e:b8:9c:d8: 09:bf:f3:76:d6:32:83:81:ee:b1:b4:6b:f4:60:1b:06:c6:7f: d7:e9:05:1e:68:3f:d8:c0:5c:d0:69:0b:00:0e:61:fe:ae:eb: 6c:6c:2b:43:2f:06:de:f1:82:d3:6e:31:85:99:6e:ce:6d:19: 4f:e2:76:92:a7:db:88:10:ac:87:ae:69:46:fb:72:49:97:1a: 1c:47:35:71:ce:91:25:f7:23:33:80:66:31:d6:04:0d:9c:fb: 64:19:f6:4c -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIUVq1dfp4ruG7kBw+GyA5Ofn9mQAAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzE5MDJaFw0yNzA2MjEwMzI0MDJaMDMxMTAvBgNV BAMTKEYxMEI5OUM3MjQwM0FDQTZFOUIzQ0JDOUQwNzcwRTc4Q0U4NkFGMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvthU0scBV1ipgMQm2jnUWrUzJ tuMCa5S0KHDeXfXB3entlPZqYqkpq1J3thQC0Tnhx8Inwlvla5yes6xz8nTzAViG hFv9orVDhSY2oH0PnX8eJuQcJ3fmmZCmt2zWPzzU2t27ZFNBWaUUoFDb0+bBqAUU WDLHE1YFPsFMYVT3ZpXnAaJ+Q+HqXJDGIiDS5nyUF7SQX/FHubghoMRL+w5q8kVN 3ooy4eAUh85QSdtrdanp2ZzsobdnfHGSYdlDhC/rUVyCHJLbvZ8UEYXRWTEalTC/ OZMUN4szrzeL6xNcLbQLEBMW2sCxOvXLQCpdMtZeT0LtsjwlPrwC9zRDzAS5AgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQU8QuZxyQDrKbps8vJ0HcOeM6GrzQwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzUzODJlMzEzMTM1MmUzMDJl MzAyZjMxMzgyZDMxMzgyMDNkM2UyMDMzMzgzODM1MzEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAY6cwAw DQYJKoZIhvcNAQELBQADggEBAMn5XXbsAmrggzjY1vAW/ajle9Bl5tpPFCo1KNaV d61JVsuWtHn+4+Q6+6UKl8McNyJ/EhCHpZoNXUusNpVkSTOrcrrMDxhwpmZ963QZ FfOPFe0fL6MFE2ij5E/PKWpmCVURsOxNXh0Sl2wthfZ2T7p5O7XZfwfUNAkMIIVN Rkd4fJFWHT/FSUHB8pob5mArVtZ04R3AEyuWbjf07J9xXric2Am/83bWMoOB7rG0 a/RgGwbGf9fpBR5oP9jAXNBpCwAOYf6u62xsK0MvBt7xgtNuMYWZbs5tGU/idpKn 24gQrIeuaUb7ckmXGhxHNXHOkSX3IzOAZjHWBA2c+2QZ9kw= -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:01 2026 by rpki-client