$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/35382e38362e302e302f31362d3234203d3e203138303432.roa File: 35382e38362e302e302f31362d3234203d3e203138303432.roa (raw, json) Hash identifier: oir68ulXfz2o4hpuPdgbogm3zDCKGqXXogK6EElGoRs= Subject key identifier: 94:C9:F0:E0:35:C5:F7:2C:BD:B1:D7:62:53:8A:19:D8:C7:99:9F:1B Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 6CA78603359423865FB45D931446C35C86061599 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/35382e38362e302e302f31362d3234203d3e203138303432.roa Signing time: Mon 11 May 2026 16:45:10 +0000 ROA not before: Mon 11 May 2026 16:40:10 +0000 ROA not after: Mon 10 May 2027 16:45:10 +0000 asID: 18042 IP address blocks: 58.86.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:a7:86:03:35:94:23:86:5f:b4:5d:93:14:46:c3:5c:86:06:15:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: May 11 16:40:10 2026 GMT Not After : May 10 16:45:10 2027 GMT Subject: CN=94C9F0E035C5F72CBDB1D762538A19D8C7999F1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:45:27:05:f4:50:db:70:33:c8:35:2d:7c:42: ce:11:e9:a5:d0:5f:aa:47:b4:c8:96:e0:a6:9d:78: 6a:fa:cb:2d:de:3e:03:32:5b:8c:0a:6a:be:b1:99: 3b:52:bc:89:74:fa:61:63:53:ce:c4:15:6d:a1:11: 74:f1:81:80:9a:57:bd:2c:2e:8e:91:e1:83:e8:8f: 17:a4:f0:b5:8c:8f:1b:37:12:89:12:59:f4:c6:50: 99:06:e3:a7:ec:25:c2:5c:19:d9:50:fa:0d:55:95: fb:52:b3:c6:3d:15:bf:ac:c3:d6:58:77:15:a5:a4: e8:81:60:1c:0e:cb:b5:90:11:6c:3a:48:91:43:f0: 36:60:c8:2b:e6:ed:6a:8c:82:58:76:c5:c4:fb:62: f6:9c:60:69:32:96:97:41:7f:d2:2a:23:94:a9:da: 09:87:0a:bb:0a:16:bc:16:51:fc:0d:d7:e2:01:bd: 56:ed:49:b4:8a:9e:f6:84:76:74:35:b7:a7:de:8f: 95:d0:ec:8c:22:8a:25:b6:a6:a0:2d:4c:72:dd:d7: b5:eb:22:8e:48:49:1c:99:9d:6d:82:0f:aa:d7:6a: 4e:90:de:99:2a:99:98:ca:11:17:2b:39:70:7b:64: 93:58:c2:64:fc:2e:07:07:7b:7b:7e:fc:00:99:ad: 64:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C9:F0:E0:35:C5:F7:2C:BD:B1:D7:62:53:8A:19:D8:C7:99:9F:1B X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/35382e38362e302e302f31362d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1b:37:b7:64:8c:a0:a3:cd:6d:cb:4b:b4:df:7b:94:2b:e6:53: 11:9e:2b:20:2e:66:53:59:ea:11:9e:17:0c:6b:37:f7:3a:51: 6b:3e:53:3e:f0:0d:f3:26:3b:9e:da:0e:0f:f3:55:11:1f:d3: b9:fe:45:79:fa:47:d4:f6:c9:78:24:e2:52:ef:b1:db:92:e7: 82:b9:0d:2a:06:36:7c:50:c8:0b:17:60:e4:ec:73:4e:96:92: aa:50:21:c7:ae:a6:08:5e:0f:aa:47:dd:a8:66:2e:f7:61:ae: 2a:00:8b:d7:1b:f8:cb:3c:c9:af:30:d8:79:a9:d5:f9:f1:b5: 07:0a:e9:12:41:ad:28:a2:b8:a7:4e:02:89:c5:83:78:56:d6: c5:d7:0a:88:cb:18:e0:a9:af:56:a1:f1:18:78:96:b7:31:aa: e1:ad:28:2e:a4:59:7c:1a:8e:55:fe:a6:cd:49:5e:97:b5:29: 53:25:88:02:09:6b:50:44:5c:3a:12:4e:19:b9:2b:12:cd:c7: 2a:69:40:e4:c2:49:f4:ec:25:75:17:90:2e:e8:b3:ce:4c:44: 23:74:d4:01:10:53:ea:49:4a:93:7a:6d:05:a7:df:d7:a4:8a: 06:1b:7b:5b:7f:1c:f8:14:b9:d6:f9:7b:b0:4a:a1:a6:4c:f8: b1:21:18:35 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgIUbKeGAzWUI4ZftF2TFEbDXIYGFZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA1MTExNjQwMTBaFw0yNzA1MTAxNjQ1MTBaMDMxMTAvBgNV BAMTKDk0QzlGMEUwMzVDNUY3MkNCREIxRDc2MjUzOEExOUQ4Qzc5OTlGMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6RScF9FDbcDPINS18Qs4R6aXQ X6pHtMiW4KadeGr6yy3ePgMyW4wKar6xmTtSvIl0+mFjU87EFW2hEXTxgYCaV70s Lo6R4YPojxek8LWMjxs3EokSWfTGUJkG46fsJcJcGdlQ+g1VlftSs8Y9Fb+sw9ZY dxWlpOiBYBwOy7WQEWw6SJFD8DZgyCvm7WqMglh2xcT7YvacYGkylpdBf9IqI5Sp 2gmHCrsKFrwWUfwN1+IBvVbtSbSKnvaEdnQ1t6fej5XQ7IwiiiW2pqAtTHLd17Xr Io5ISRyZnW2CD6rXak6Q3pkqmZjKERcrOXB7ZJNYwmT8LgcHe3t+/ACZrWSRAgMB AAGjggHWMIIB0jAdBgNVHQ4EFgQUlMnw4DXF9yy9sddiU4oZ2MeZnxswHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjBzBggrBgEFBQcBCwRnMGUwYwYIKwYBBQUHMAuGV3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzUzODJlMzgzNjJlMzAyZTMw MmYzMTM2MmQzMjM0MjAzZDNlMjAzMTM4MzAzNDMyLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAOlYwDQYJ KoZIhvcNAQELBQADggEBABs3t2SMoKPNbctLtN97lCvmUxGeKyAuZlNZ6hGeFwxr N/c6UWs+Uz7wDfMmO57aDg/zVREf07n+RXn6R9T2yXgk4lLvsduS54K5DSoGNnxQ yAsXYOTsc06WkqpQIceupgheD6pH3ahmLvdhrioAi9cb+Ms8ya8w2Hmp1fnxtQcK 6RJBrSiiuKdOAonFg3hW1sXXCojLGOCpr1ah8Rh4lrcxquGtKC6kWXwajlX+ps1J Xpe1KVMliAIJa1BEXDoSThm5KxLNxyppQOTCSfTsJXUXkC7os85MRCN01AEQU+pJ SpN6bQWn39ekigYbe1t/HPgUudb5e7BKoaZM+LEhGDU= -----END CERTIFICATE-----Generated at Tue May 12 22:32:22 2026 by rpki-client