$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNTT/0/36312e35382e33342e302f32352d3235203d3e203138303138.roa File: 36312e35382e33342e302f32352d3235203d3e203138303138.roa (raw, json) Hash identifier: sEbgj8r5BW9LG+uLbdsnQ3mfWS9qyXUgDZxxUrhdajU= Subject key identifier: 2A:35:D1:4B:76:A5:E7:20:FD:05:91:EC:FB:6E:7A:EF:03:F5:C4:A2 Certificate issuer: /CN=866155EC56EF0A61BC489259EA6B444F2596FF9E Certificate serial: 199C2505C414F930B861D7B30D3BEE6485791802 Authority key identifier: 86:61:55:EC:56:EF:0A:61:BC:48:92:59:EA:6B:44:4F:25:96:FF:9E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/866155EC56EF0A61BC489259EA6B444F2596FF9E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNTT/0/36312e35382e33342e302f32352d3235203d3e203138303138.roa Signing time: Mon 11 May 2026 17:08:05 +0000 ROA not before: Mon 11 May 2026 17:03:05 +0000 ROA not after: Mon 10 May 2027 17:08:05 +0000 asID: 18018 IP address blocks: 61.58.34.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNTT/0/866155EC56EF0A61BC489259EA6B444F2596FF9E.crl rsync://rpkica.twnic.tw/rpki/TWNTT/0/866155EC56EF0A61BC489259EA6B444F2596FF9E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/866155EC56EF0A61BC489259EA6B444F2596FF9E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:9c:25:05:c4:14:f9:30:b8:61:d7:b3:0d:3b:ee:64:85:79:18:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=866155EC56EF0A61BC489259EA6B444F2596FF9E Validity Not Before: May 11 17:03:05 2026 GMT Not After : May 10 17:08:05 2027 GMT Subject: CN=2A35D14B76A5E720FD0591ECFB6E7AEF03F5C4A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9f:9a:cd:a5:15:86:00:f6:8f:f3:9c:49:d5: ff:d0:bd:fa:ea:00:bc:05:0e:c4:63:bb:2e:fa:6f: 14:90:de:a3:48:16:d2:ae:13:8b:42:03:cc:a2:94: 8b:69:0c:b4:6a:1e:60:2f:5c:27:a2:b6:08:37:fe: 86:74:d7:fa:fd:fe:7e:83:af:63:0c:e5:3a:06:db: 4d:d4:53:9b:d5:a2:4e:c6:e9:28:2d:3d:ca:4a:be: d2:c8:9a:1e:f9:68:94:5e:0f:6f:c0:38:ff:c1:4b: d2:9c:82:b7:51:60:63:98:c7:65:74:f5:40:37:88: 96:82:cc:f1:5c:0a:87:58:5f:09:ac:46:e8:5c:10: c3:d8:95:52:32:3a:de:1b:6f:5f:95:39:0d:17:4d: 36:e8:71:96:63:48:87:2f:39:13:84:5f:8f:bd:7b: 76:c7:13:8d:a4:d5:1b:93:a2:db:2e:dd:ca:87:f6: ab:a7:3f:da:79:cf:ec:83:79:1c:e4:9d:22:61:fc: 9e:b3:5a:83:d0:49:04:85:69:38:b9:81:c2:64:91: 00:2a:ed:3b:5c:da:52:dd:75:bd:aa:9b:03:47:05: 4c:0b:ad:a3:d3:b6:4d:1e:fc:b9:a2:a9:1b:a1:0b: 90:8e:07:5b:47:a0:e7:80:cc:1a:0c:7e:f8:bf:e3: 4c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:35:D1:4B:76:A5:E7:20:FD:05:91:EC:FB:6E:7A:EF:03:F5:C4:A2 X509v3 Authority Key Identifier: keyid:86:61:55:EC:56:EF:0A:61:BC:48:92:59:EA:6B:44:4F:25:96:FF:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNTT/0/866155EC56EF0A61BC489259EA6B444F2596FF9E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/866155EC56EF0A61BC489259EA6B444F2596FF9E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNTT/0/36312e35382e33342e302f32352d3235203d3e203138303138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.58.34.0/25 Signature Algorithm: sha256WithRSAEncryption 6e:47:d1:da:ca:d5:8f:20:f2:9a:cd:ce:64:c5:4f:70:ff:e4: df:4c:6b:53:a0:0c:ce:3b:e5:8b:2d:c9:1f:2c:44:26:39:05: 6d:d3:45:0d:e2:1e:3d:63:ba:d8:d7:7e:85:2d:e7:07:f0:9e: 89:fa:e0:a3:35:56:80:42:a2:a8:ac:69:72:b0:10:81:87:fa: a9:da:88:4c:ec:6e:7f:e1:3b:88:6b:02:27:2a:09:11:e1:4d: 16:aa:5e:0f:35:3a:50:f6:20:ec:d4:f9:39:8c:ea:74:1e:8b: 01:da:4a:80:16:08:5f:ee:58:bf:44:87:90:6e:69:16:88:8f: c0:62:05:91:39:8c:6b:cb:57:5a:6d:00:d1:c3:e0:5d:ba:d9: 5c:d2:9c:89:21:e2:e7:06:63:53:b4:40:0e:f3:72:f3:d2:7a: 13:e0:2b:8d:7f:fc:ae:b8:b0:58:9a:c8:19:32:d3:46:b0:e9: 33:eb:6c:28:91:be:5c:e0:56:6e:37:7f:64:12:62:44:07:c3: ed:93:10:01:eb:89:04:6a:4b:13:90:12:ee:a3:60:3c:ae:a7: e1:d8:ac:7b:45:88:c0:05:8c:c3:99:8b:4b:c5:a6:a8:23:6d: 1c:17:e2:b6:65:3c:45:a9:b6:74:1f:98:33:71:b4:10:cb:b1: e1:9d:6e:9d -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUGZwlBcQU+TC4YdezDTvuZIV5GAIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY2MTU1RUM1NkVGMEE2MUJDNDg5MjU5RUE2QjQ0NEYy NTk2RkY5RTAeFw0yNjA1MTExNzAzMDVaFw0yNzA1MTAxNzA4MDVaMDMxMTAvBgNV BAMTKDJBMzVEMTRCNzZBNUU3MjBGRDA1OTFFQ0ZCNkU3QUVGMDNGNUM0QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMn5rNpRWGAPaP85xJ1f/Qvfrq ALwFDsRjuy76bxSQ3qNIFtKuE4tCA8yilItpDLRqHmAvXCeitgg3/oZ01/r9/n6D r2MM5ToG203UU5vVok7G6SgtPcpKvtLImh75aJReD2/AOP/BS9KcgrdRYGOYx2V0 9UA3iJaCzPFcCodYXwmsRuhcEMPYlVIyOt4bb1+VOQ0XTTbocZZjSIcvOROEX4+9 e3bHE42k1RuTotsu3cqH9qunP9p5z+yDeRzknSJh/J6zWoPQSQSFaTi5gcJkkQAq 7Ttc2lLddb2qmwNHBUwLraPTtk0e/LmiqRuhC5COB1tHoOeAzBoMfvi/40x9AgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQUKjXRS3al5yD9BZHs+2567wP1xKIwHwYDVR0j BBgwFoAUhmFV7FbvCmG8SJJZ6mtETyWW/54wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOVFQv MC84NjYxNTVFQzU2RUYwQTYxQkM0ODkyNTlFQTZCNDQ0RjI1OTZGRjlFLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzg2NjE1NUVDNTZFRjBBNjFCQzQ4OTI1OUVBNkI0 NDRGMjU5NkZGOUUuY2VyMHcGCCsGAQUFBwELBGswaTBnBggrBgEFBQcwC4ZbcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05UVC8wLzM2MzEyZTM1MzgyZTMz MzQyZTMwMmYzMjM1MmQzMjM1MjAzZDNlMjAzMTM4MzAzMTM4LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUH PToiADANBgkqhkiG9w0BAQsFAAOCAQEAbkfR2srVjyDyms3OZMVPcP/k30xrU6AM zjvliy3JHyxEJjkFbdNFDeIePWO62Nd+hS3nB/CeifrgozVWgEKiqKxpcrAQgYf6 qdqITOxuf+E7iGsCJyoJEeFNFqpeDzU6UPYg7NT5OYzqdB6LAdpKgBYIX+5Yv0SH kG5pFoiPwGIFkTmMa8tXWm0A0cPgXbrZXNKciSHi5wZjU7RADvNy89J6E+ArjX/8 rriwWJrIGTLTRrDpM+tsKJG+XOBWbjd/ZBJiRAfD7ZMQAeuJBGpLE5AS7qNgPK6n 4dise0WIwAWMw5mLS8WmqCNtHBfitmU8Ram2dB+YM3G0EMux4Z1unQ== -----END CERTIFICATE-----Generated at Wed May 13 21:13:31 2026 by rpki-client