$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/35382e3131352e33322e302f31392d3139203d3e203338383531.roa File: 35382e3131352e33322e302f31392d3139203d3e203338383531.roa (raw, json) Hash identifier: I+nO0wX+sYSEGfDwS6Mabif9I1k8rpoVvNy8D/oc07U= Subject key identifier: 5D:23:E7:89:65:5B:D8:7C:5D:7D:48:38:AA:9D:CA:9C:8B:88:20:4C Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 42CC95867FCB1F978A32A9280B7FCB9FC4121EC8 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131352e33322e302f31392d3139203d3e203338383531.roa Signing time: Mon 22 Jun 2026 03:43:49 +0000 ROA not before: Mon 22 Jun 2026 03:38:49 +0000 ROA not after: Mon 21 Jun 2027 03:43:49 +0000 asID: 38851 IP address blocks: 58.115.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:cc:95:86:7f:cb:1f:97:8a:32:a9:28:0b:7f:cb:9f:c4:12:1e:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: Jun 22 03:38:49 2026 GMT Not After : Jun 21 03:43:49 2027 GMT Subject: CN=5D23E789655BD87C5D7D4838AA9DCA9C8B88204C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5d:3d:5d:81:af:e3:f6:de:8e:0c:2d:d2:20: 08:b4:7e:87:41:d3:1a:a2:19:3f:9b:64:ef:98:e0: e9:05:92:3d:5b:a8:4c:62:52:ac:9a:4f:57:30:4c: 00:b7:db:8d:36:80:44:54:76:fd:d7:30:47:af:00: 62:6c:a5:dd:4c:95:88:cf:76:3a:af:1e:55:95:b4: 23:f1:a6:16:d9:71:cb:de:c6:9d:1a:4c:c8:7b:12: 2b:43:85:56:4c:b4:e3:10:a9:0b:a6:94:36:ad:9b: e7:4b:03:3c:27:48:fd:ac:b1:04:a0:e0:d3:4a:67: a2:27:39:50:cb:c0:59:93:cd:e5:49:71:0a:5a:ab: 1c:e0:bc:37:e4:fa:71:dd:a8:e0:0d:c7:ec:2a:95: 4a:42:12:fa:43:b7:60:69:87:33:98:8e:6b:e1:3d: 54:26:42:6b:4e:ee:f7:3b:28:86:df:7b:f5:35:fc: d8:39:0a:ac:90:ad:97:9b:05:bc:56:71:79:4a:13: 91:a8:f7:e8:3c:d2:1e:d0:e0:21:29:63:49:d0:53: be:f8:a5:cb:4f:37:48:0d:94:bc:02:92:34:1c:c7: 9f:33:e6:4a:58:de:1b:8a:e2:80:64:d7:03:fb:a8: cf:ab:51:e9:76:fc:78:06:00:0f:ec:98:5f:21:95: 03:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:23:E7:89:65:5B:D8:7C:5D:7D:48:38:AA:9D:CA:9C:8B:88:20:4C X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/35382e3131352e33322e302f31392d3139203d3e203338383531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.115.32.0/19 Signature Algorithm: sha256WithRSAEncryption 37:1d:1c:8d:6e:76:47:49:c3:d6:7e:9c:d4:ae:9a:f5:4e:c9: 78:44:8a:5e:20:23:61:82:68:80:7a:7a:7a:2e:2d:86:a1:72: ef:e5:7e:2e:5b:0b:e4:17:0d:86:d7:82:6c:4f:57:4b:f4:4f: 5a:88:17:82:dd:36:fd:9e:cb:77:57:27:43:99:fe:75:43:ce: bb:43:0e:3f:7e:9b:b5:96:50:68:a1:3d:fa:2f:2c:54:bf:b6: 4a:12:6d:5f:cf:b7:9c:66:38:51:9b:03:5b:69:1b:72:61:e5: a6:77:ea:50:30:1b:08:0a:f4:6d:8a:2f:b3:8b:35:b3:0d:3e: 50:10:3f:e6:73:4f:01:0e:51:0d:a6:bb:91:b6:61:4e:9a:ab: ee:d2:d7:a0:4e:30:94:61:8b:fb:2d:b0:8b:60:af:c8:37:10: 6b:97:70:4e:8f:57:57:64:c8:df:13:45:08:f2:d9:7c:53:41: 92:2c:58:5e:22:77:c9:2f:63:f0:73:5d:29:51:c1:38:d2:de: 23:53:a2:ff:18:1e:74:ef:3f:ff:f3:8a:af:32:28:5f:e4:aa: 69:54:c8:52:3e:b3:75:20:6c:77:db:64:e9:3b:f3:fa:0e:ed: f7:f3:74:c0:a1:0c:94:57:dd:ba:71:e1:ea:09:af:7a:47:73: 94:19:dd:3d -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIUQsyVhn/LH5eKMqkoC3/Ln8QSHsgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA2MjIwMzM4NDlaFw0yNzA2MjEwMzQzNDlaMDMxMTAvBgNV BAMTKDVEMjNFNzg5NjU1QkQ4N0M1RDdENDgzOEFBOURDQTlDOEI4ODIwNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClXT1dga/j9t6ODC3SIAi0fodB 0xqiGT+bZO+Y4OkFkj1bqExiUqyaT1cwTAC32402gERUdv3XMEevAGJspd1MlYjP djqvHlWVtCPxphbZccvexp0aTMh7EitDhVZMtOMQqQumlDatm+dLAzwnSP2ssQSg 4NNKZ6InOVDLwFmTzeVJcQpaqxzgvDfk+nHdqOANx+wqlUpCEvpDt2BphzOYjmvh PVQmQmtO7vc7KIbfe/U1/Ng5CqyQrZebBbxWcXlKE5Go9+g80h7Q4CEpY0nQU774 pctPN0gNlLwCkjQcx58z5kpY3huK4oBk1wP7qM+rUel2/HgGAA/smF8hlQMtAgMB AAGjggHbMIIB1zAdBgNVHQ4EFgQUXSPniWVb2HxdfUg4qp3KnIuIIEwwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzUzODJlMzEzMTM1MmUzMzMy MmUzMDJmMzEzOTJkMzEzOTIwM2QzZTIwMzMzODM4MzUzMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBTpz IDANBgkqhkiG9w0BAQsFAAOCAQEANx0cjW52R0nD1n6c1K6a9U7JeESKXiAjYYJo gHp6ei4thqFy7+V+LlsL5BcNhteCbE9XS/RPWogXgt02/Z7Ld1cnQ5n+dUPOu0MO P36btZZQaKE9+i8sVL+2ShJtX8+3nGY4UZsDW2kbcmHlpnfqUDAbCAr0bYovs4s1 sw0+UBA/5nNPAQ5RDaa7kbZhTpqr7tLXoE4wlGGL+y2wi2CvyDcQa5dwTo9XV2TI 3xNFCPLZfFNBkixYXiJ3yS9j8HNdKVHBONLeI1Oi/xgedO8///OKrzIoX+SqaVTI Uj6zdSBsd9tk6Tvz+g7t9/N0wKEMlFfdunHh6gmvekdzlBndPQ== -----END CERTIFICATE-----Generated at Tue Jun 30 20:12:58 2026 by rpki-client