$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/35382e3131352e3139322e302f31382d3138203d3e203138303432.roa File: 35382e3131352e3139322e302f31382d3138203d3e203138303432.roa (raw, json) Hash identifier: zfYbIO5ILDKB8l2bW0YOAL3Dh6dTnH7Ag6dqfHr+mOA= Subject key identifier: E8:F0:FC:68:A2:9D:91:14:33:D3:01:4C:5D:C6:CA:E1:4F:1E:F0:DB Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 4019CDA4A16570EE249B919D0FA235ACCABA03F6 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131352e3139322e302f31382d3138203d3e203138303432.roa Signing time: Mon 22 Jun 2026 03:23:58 +0000 ROA not before: Mon 22 Jun 2026 03:18:58 +0000 ROA not after: Mon 21 Jun 2027 03:23:58 +0000 asID: 18042 IP address blocks: 58.115.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:19:cd:a4:a1:65:70:ee:24:9b:91:9d:0f:a2:35:ac:ca:ba:03:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:18:58 2026 GMT Not After : Jun 21 03:23:58 2027 GMT Subject: CN=E8F0FC68A29D911433D3014C5DC6CAE14F1EF0DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1a:38:35:61:55:5d:43:5d:f0:e9:9c:a1:e4: 6b:39:13:38:76:47:ac:d7:9b:b3:c7:92:41:d5:36: 76:94:7e:31:d2:d1:90:de:db:9e:b2:a4:36:05:6f: 01:76:44:ea:65:30:12:fe:fe:58:09:e1:e7:8d:6d: 29:a2:0a:e3:54:4a:71:bd:16:14:ed:9e:8e:11:bc: d7:86:fa:e6:04:26:41:4f:98:9e:02:e3:3b:8a:2a: 69:ae:77:9c:e1:a7:15:37:71:1e:21:d9:70:db:40: e5:b8:03:e1:4f:41:99:71:59:23:f3:39:12:cd:8e: b5:c5:65:e2:f9:18:90:f5:30:3c:04:dd:0b:1d:37: fe:a1:b0:b9:16:a2:1f:06:43:91:2c:61:3f:e4:1f: 89:88:5d:63:24:c6:21:6c:95:06:aa:b3:66:e4:67: 5f:d5:c0:9c:27:81:2a:f6:30:a4:32:66:9f:06:a1: 0b:e6:4a:b7:ef:ac:4f:d4:6a:64:4d:68:7f:6f:ac: 59:b3:20:ab:29:63:98:4f:ef:53:22:ec:76:da:96: 5a:b9:04:a5:08:a6:4f:7a:38:2e:4e:62:9e:0f:0f: 18:f4:17:f9:ee:8f:cf:be:85:f8:7b:07:58:c3:36: 61:bc:d2:90:dd:4c:b2:ec:8e:2a:9c:8c:e7:3c:98: 97:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F0:FC:68:A2:9D:91:14:33:D3:01:4C:5D:C6:CA:E1:4F:1E:F0:DB X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131352e3139322e302f31382d3138203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.115.192.0/18 Signature Algorithm: sha256WithRSAEncryption ab:72:0f:d1:07:a5:1b:a4:3e:57:b6:cf:b2:98:2a:17:da:4f: d0:f1:e9:06:53:ba:f4:23:47:c2:a7:51:8e:ce:92:34:d8:3e: c4:06:fe:49:35:b0:88:6d:a3:ab:61:1c:bc:e9:25:3d:04:89: f7:7a:53:d5:ef:70:8f:a0:7c:8a:47:ea:68:11:21:b6:16:b8: ac:c8:0f:51:4d:71:7b:b8:5e:df:e2:b6:28:ea:40:f5:d2:5a: 7b:41:b4:ea:02:61:e4:3f:d5:80:bb:a4:ff:13:6c:31:82:e3: 0f:f7:28:d9:71:e4:40:8d:4e:39:63:ca:cb:64:9d:0c:6b:57: 82:8c:21:9d:80:3e:24:d5:cc:89:bb:c1:b3:8c:99:46:10:64: 0a:af:3b:5b:78:29:8f:9b:ec:ec:d5:18:42:7e:66:5e:4a:ec: 8f:89:26:f1:19:de:2a:9c:51:52:80:b7:e1:97:a8:ba:71:bf: 2f:b8:29:3c:48:06:97:2d:1c:c8:6d:66:a7:dd:fe:b6:86:07: 68:e0:06:1a:11:0c:ad:b5:77:e0:27:b5:3b:41:1b:f6:36:ae: ae:5f:19:68:63:f4:6e:e5:a1:2c:ff:11:ec:29:3d:6b:e5:84: 13:d0:f8:b5:8b:d3:12:b9:88:e0:9a:e7:67:b3:f5:82:85:89: cb:d3:6d:23 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUQBnNpKFlcO4km5GdD6I1rMq6A/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzE4NThaFw0yNzA2MjEwMzIzNThaMDMxMTAvBgNV BAMTKEU4RjBGQzY4QTI5RDkxMTQzM0QzMDE0QzVEQzZDQUUxNEYxRUYwREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Gjg1YVVdQ13w6Zyh5Gs5Ezh2 R6zXm7PHkkHVNnaUfjHS0ZDe256ypDYFbwF2ROplMBL+/lgJ4eeNbSmiCuNUSnG9 FhTtno4RvNeG+uYEJkFPmJ4C4zuKKmmud5zhpxU3cR4h2XDbQOW4A+FPQZlxWSPz ORLNjrXFZeL5GJD1MDwE3QsdN/6hsLkWoh8GQ5EsYT/kH4mIXWMkxiFslQaqs2bk Z1/VwJwngSr2MKQyZp8GoQvmSrfvrE/UamRNaH9vrFmzIKspY5hP71Mi7Hballq5 BKUIpk96OC5OYp4PDxj0F/nuj8++hfh7B1jDNmG80pDdTLLsjiqcjOc8mJezAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQU6PD8aKKdkRQz0wFMXcbK4U8e8NswHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB5BggrBgEFBQcBCwRtMGswaQYIKwYBBQUHMAuGXXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzUzODJlMzEzMTM1MmUzMTM5 MzIyZTMwMmYzMTM4MmQzMTM4MjAzZDNlMjAzMTM4MzAzNDMyLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG OnPAMA0GCSqGSIb3DQEBCwUAA4IBAQCrcg/RB6UbpD5Xts+ymCoX2k/Q8ekGU7r0 I0fCp1GOzpI02D7EBv5JNbCIbaOrYRy86SU9BIn3elPV73CPoHyKR+poESG2Fris yA9RTXF7uF7f4rYo6kD10lp7QbTqAmHkP9WAu6T/E2wxguMP9yjZceRAjU45Y8rL ZJ0Ma1eCjCGdgD4k1cyJu8GzjJlGEGQKrztbeCmPm+zs1RhCfmZeSuyPiSbxGd4q nFFSgLfhl6i6cb8vuCk8SAaXLRzIbWan3f62hgdo4AYaEQyttXfgJ7U7QRv2Nq6u XxloY/Ru5aEs/xHsKT1r5YQT0Pi1i9MSuYjgmudns/WChYnL020j -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:55 2026 by rpki-client