$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/35382e3131352e3139322e302f32302d3230203d3e203338383531.roa File: 35382e3131352e3139322e302f32302d3230203d3e203338383531.roa (raw, json) Hash identifier: g/CQQDnOQWylQPPJy951XOJmBjwKjKfeGwCZb0pXFLQ= Subject key identifier: 26:19:C1:37:D1:37:5F:2F:56:56:14:93:07:62:C6:4B:07:54:74:CE Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 4F084DD06916CC0C78098F620BF291BC0F55F014 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131352e3139322e302f32302d3230203d3e203338383531.roa Signing time: Mon 22 Jun 2026 03:43:48 +0000 ROA not before: Mon 22 Jun 2026 03:38:48 +0000 ROA not after: Mon 21 Jun 2027 03:43:48 +0000 asID: 38851 IP address blocks: 58.115.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:08:4d:d0:69:16:cc:0c:78:09:8f:62:0b:f2:91:bc:0f:55:f0:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:38:48 2026 GMT Not After : Jun 21 03:43:48 2027 GMT Subject: CN=2619C137D1375F2F565614930762C64B075474CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:0b:8b:7b:47:3b:71:a3:62:b4:ae:71:27:79: 20:7d:fe:ae:18:8c:28:b5:0f:16:67:c6:23:c3:b6: e1:42:b7:8b:b7:32:45:aa:11:64:f5:f2:82:f8:1d: 70:fb:b0:eb:67:6e:ed:7b:07:1e:38:fc:14:26:a2: 78:70:ae:9c:2a:aa:b9:6e:c1:e3:7d:c5:0d:46:1b: 55:81:eb:1f:d8:df:87:b6:ed:44:b6:23:47:ef:88: 26:c6:ee:71:ca:11:d5:70:2e:9b:b2:49:67:56:54: 6b:44:35:48:ea:10:ca:0b:c3:e4:f8:3d:81:7d:24: 2e:23:c0:3e:77:82:e3:82:00:f7:ab:b5:46:ff:91: e0:f1:41:3e:8f:27:ba:f6:80:df:64:c3:5e:25:5e: a4:f7:98:7b:77:08:a3:d0:74:0f:19:14:08:4d:a7: b9:de:bb:3e:6d:f8:71:c3:a0:c2:61:30:ff:19:67: d0:52:32:50:42:f4:24:db:be:9e:7f:dd:b5:13:94: d3:df:99:01:f4:17:21:8f:25:5e:7a:54:2f:1a:ac: 78:ae:80:dc:30:c4:44:d8:5a:33:57:0b:c9:07:d2: e1:20:93:d2:bb:15:9e:10:0b:d3:09:b1:93:5c:41: 39:95:37:f5:e8:59:67:a0:6c:ae:2f:ee:87:56:79: 6d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:19:C1:37:D1:37:5F:2F:56:56:14:93:07:62:C6:4B:07:54:74:CE X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131352e3139322e302f32302d3230203d3e203338383531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.115.192.0/20 Signature Algorithm: sha256WithRSAEncryption 5d:8c:0d:8d:a8:d0:84:1e:94:7e:14:bc:ce:53:4f:f1:52:7c: 3f:e5:30:56:e9:4c:28:6c:ba:f5:30:ce:b4:f7:22:3d:25:98: ca:8a:d6:f0:8c:bf:85:93:c2:43:37:fc:6d:0d:b7:5e:26:8a: 39:1a:59:f3:f7:f9:3e:99:d8:08:ed:3f:9f:55:17:79:02:80: ea:b8:41:b4:13:f7:f1:c5:64:71:93:51:47:f8:3f:9b:e9:b6: 39:ee:19:26:e1:79:1a:8b:83:ed:f8:d5:c7:b9:44:39:d7:21: e5:e7:e9:d4:77:60:00:c5:f6:9e:0d:2f:77:5c:35:2c:11:7d: 5a:5e:78:ce:a8:30:85:19:5f:b2:a8:51:f2:a5:9e:a1:af:22: c0:8c:bc:77:e3:3c:ec:3e:0c:db:fb:37:d8:49:b4:5a:47:6d: 30:7c:d5:9d:b0:c2:61:ce:34:fe:ff:de:8f:bd:cb:8b:10:fb: 88:cd:af:ab:4c:7e:c9:a9:be:4b:9e:52:9f:0e:48:02:75:54: 3c:94:25:36:ff:7d:b0:9a:81:87:03:9b:6a:6e:85:e6:92:30: e2:cd:bf:78:9f:17:38:8f:5d:4b:ac:40:47:ba:69:83:82:4d: 46:af:3e:69:4c:06:ad:be:17:1d:95:8e:e2:91:b5:88:53:1a: d2:46:b8:a2 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIUTwhN0GkWzAx4CY9iC/KRvA9V8BQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzM4NDhaFw0yNzA2MjEwMzQzNDhaMDMxMTAvBgNV BAMTKDI2MTlDMTM3RDEzNzVGMkY1NjU2MTQ5MzA3NjJDNjRCMDc1NDc0Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1C4t7Rztxo2K0rnEneSB9/q4Y jCi1DxZnxiPDtuFCt4u3MkWqEWT18oL4HXD7sOtnbu17Bx44/BQmonhwrpwqqrlu weN9xQ1GG1WB6x/Y34e27US2I0fviCbG7nHKEdVwLpuySWdWVGtENUjqEMoLw+T4 PYF9JC4jwD53guOCAPertUb/keDxQT6PJ7r2gN9kw14lXqT3mHt3CKPQdA8ZFAhN p7neuz5t+HHDoMJhMP8ZZ9BSMlBC9CTbvp5/3bUTlNPfmQH0FyGPJV56VC8arHiu gNwwxETYWjNXC8kH0uEgk9K7FZ4QC9MJsZNcQTmVN/XoWWegbK4v7odWeW1HAgMB AAGjggHdMIIB2TAdBgNVHQ4EFgQUJhnBN9E3Xy9WVhSTB2LGSwdUdM4wHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB5BggrBgEFBQcBCwRtMGswaQYIKwYBBQUHMAuGXXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzUzODJlMzEzMTM1MmUzMTM5 MzIyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzMzM4MzgzNTMxLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE OnPAMA0GCSqGSIb3DQEBCwUAA4IBAQBdjA2NqNCEHpR+FLzOU0/xUnw/5TBW6Uwo bLr1MM609yI9JZjKitbwjL+Fk8JDN/xtDbdeJoo5Glnz9/k+mdgI7T+fVRd5AoDq uEG0E/fxxWRxk1FH+D+b6bY57hkm4Xkai4Pt+NXHuUQ51yHl5+nUd2AAxfaeDS93 XDUsEX1aXnjOqDCFGV+yqFHypZ6hryLAjLx34zzsPgzb+zfYSbRaR20wfNWdsMJh zjT+/96PvcuLEPuIza+rTH7Jqb5LnlKfDkgCdVQ8lCU2/32wmoGHA5tqboXmkjDi zb94nxc4j11LrEBHummDgk1Grz5pTAatvhcdlY7ikbWIUxrSRrii -----END CERTIFICATE-----Generated at Tue Jun 30 20:13:01 2026 by rpki-client