$ rpki-client -vvf rpkica.twnic.tw/rpki/KBT/0/35382e38362e34362e302f32342d3234203d3e203138303432.roa File: 35382e38362e34362e302f32342d3234203d3e203138303432.roa (raw, json) Hash identifier: CxttYVdqWAvxvqNH+5SFaXVGIQqOZbmJDRdONZef3jA= Subject key identifier: 1D:E7:1D:28:39:C1:5B:D7:5D:64:CD:85:20:AB:0C:B8:15:3B:75:64 Certificate issuer: /CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Certificate serial: 490C2859ED2E807D4032CC05D156F565DD2A92B9 Authority key identifier: 91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KBT/0/35382e38362e34362e302f32342d3234203d3e203138303432.roa Signing time: Mon 11 May 2026 16:49:01 +0000 ROA not before: Mon 11 May 2026 16:44:01 +0000 ROA not after: Mon 10 May 2027 16:49:01 +0000 asID: 18042 IP address blocks: 58.86.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:0c:28:59:ed:2e:80:7d:40:32:cc:05:d1:56:f5:65:dd:2a:92:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589 Validity Not Before: May 11 16:44:01 2026 GMT Not After : May 10 16:49:01 2027 GMT Subject: CN=1DE71D2839C15BD75D64CD8520AB0CB8153B7564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:90:35:4d:af:ae:57:49:6e:7d:4f:0f:43:dc: 33:53:94:1e:7a:6a:cf:14:b1:d6:62:e6:ab:69:2a: ab:c5:31:38:61:56:cb:9f:10:d0:12:1f:f4:98:16: b6:1c:e3:ee:3d:89:1c:44:3d:e2:f7:ac:4c:c9:fa: a4:f8:7b:20:30:02:ad:27:33:87:c0:a6:89:1b:81: dc:87:e2:bd:7a:d9:f3:99:94:12:92:0e:7f:6b:d1: 54:3f:c3:06:51:80:c5:c7:4d:ba:0d:db:a7:98:89: d6:72:0e:c4:c7:15:63:4e:c6:9e:f2:72:14:50:2b: ec:f5:c1:44:b0:86:f1:41:35:e4:e1:b2:91:fb:27: 33:07:90:85:d2:f5:91:4e:21:fc:66:ac:1c:8d:06: ce:92:a1:3e:8a:b8:c5:3e:d6:d1:ad:e5:d0:30:f0: 27:0b:87:1b:e1:a7:2d:78:22:07:f1:b0:e5:26:e7: 78:4a:9a:93:2b:bc:31:75:91:cd:d5:a4:de:e8:43: ff:fd:5d:ae:4e:63:91:2c:d0:3e:e7:a8:c5:a6:19: 1a:c6:5e:78:76:db:af:bf:bf:71:94:b1:8f:3b:5c: cc:6c:e6:98:20:a8:61:3d:14:b4:d6:33:7b:44:26: b7:61:9a:63:90:98:bf:7e:e4:b7:7c:32:cb:fc:7e: 4a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:E7:1D:28:39:C1:5B:D7:5D:64:CD:85:20:AB:0C:B8:15:3B:75:64 X509v3 Authority Key Identifier: keyid:91:40:9D:A1:C1:FA:F3:1A:A3:DF:29:36:DA:AA:2B:4A:B7:EA:15:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KBT/0/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/91409DA1C1FAF31AA3DF2936DAAA2B4AB7EA1589.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KBT/0/35382e38362e34362e302f32342d3234203d3e203138303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.86.46.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:d2:87:c8:68:97:5e:22:7a:64:f5:44:8b:b8:29:c0:b0:bf: c2:01:9b:fc:38:8f:28:ee:f6:ca:71:9b:11:09:dc:87:f4:3e: ab:b3:1d:07:53:54:3d:6f:19:1a:df:9d:39:0c:32:18:1b:f1: 49:de:2f:a6:8f:db:7e:f8:77:78:cb:6b:05:5a:4a:af:ff:0a: df:71:b1:4c:08:86:a6:e1:1d:a5:a8:94:53:c3:9a:dc:fe:09: 6c:1b:78:d2:f6:f9:cb:c5:2d:60:c4:b3:d6:d2:95:b2:1b:60: 93:39:f0:27:72:74:e4:fa:45:83:c0:9a:1f:a0:88:75:ed:12: 67:eb:6d:f0:5b:54:34:ed:99:38:b6:0f:7a:fc:2c:4b:bd:ee: 92:d2:ff:05:47:2b:8e:57:47:b9:b9:b6:3b:38:3b:80:22:cb: 45:12:70:80:35:be:d7:a2:68:da:46:b3:f6:e8:59:08:71:6f: 43:85:09:58:4b:9f:68:d8:83:e1:b8:7e:69:88:c1:40:e7:50: 7b:9f:f0:9e:75:bf:b4:95:d9:13:fe:c9:c2:61:80:55:9f:b3: 43:dc:6e:e8:db:cb:f5:e2:a0:2e:62:e4:14:2a:4b:ad:f8:49: b9:eb:08:a0:23:79:1f:53:ac:6d:42:76:48:ed:2d:e2:8d:97: 96:de:48:b7 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIUSQwoWe0ugH1AMswF0Vb1Zd0qkrkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFC N0VBMTU4OTAeFw0yNjA1MTExNjQ0MDFaFw0yNzA1MTAxNjQ5MDFaMDMxMTAvBgNV BAMTKDFERTcxRDI4MzlDMTVCRDc1RDY0Q0Q4NTIwQUIwQ0I4MTUzQjc1NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYkDVNr65XSW59Tw9D3DNTlB56 as8UsdZi5qtpKqvFMThhVsufENASH/SYFrYc4+49iRxEPeL3rEzJ+qT4eyAwAq0n M4fApokbgdyH4r162fOZlBKSDn9r0VQ/wwZRgMXHTboN26eYidZyDsTHFWNOxp7y chRQK+z1wUSwhvFBNeThspH7JzMHkIXS9ZFOIfxmrByNBs6SoT6KuMU+1tGt5dAw 8CcLhxvhpy14IgfxsOUm53hKmpMrvDF1kc3VpN7oQ//9Xa5OY5Es0D7nqMWmGRrG Xnh226+/v3GUsY87XMxs5pggqGE9FLTWM3tEJrdhmmOQmL9+5Ld8Msv8fkrVAgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQUHecdKDnBW9ddZM2FIKsMuBU7dWQwHwYDVR0j BBgwFoAUkUCdocH68xqj3yk22qorSrfqFYkwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAv OTE0MDlEQTFDMUZBRjMxQUEzREYyOTM2REFBQTJCNEFCN0VBMTU4OS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85MTQwOURBMUMxRkFGMzFBQTNERjI5MzZEQUFBMkI0 QUI3RUExNTg5LmNlcjB1BggrBgEFBQcBCwRpMGcwZQYIKwYBBQUHMAuGWXJzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0JULzAvMzUzODJlMzgzNjJlMzQzNjJl MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzgzMDM0MzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA6Vi4w DQYJKoZIhvcNAQELBQADggEBADrSh8hol14iemT1RIu4KcCwv8IBm/w4jyju9spx mxEJ3If0PquzHQdTVD1vGRrfnTkMMhgb8UneL6aP2374d3jLawVaSq//Ct9xsUwI hqbhHaWolFPDmtz+CWwbeNL2+cvFLWDEs9bSlbIbYJM58CdydOT6RYPAmh+giHXt EmfrbfBbVDTtmTi2D3r8LEu97pLS/wVHK45XR7m5tjs4O4Aiy0UScIA1vteiaNpG s/boWQhxb0OFCVhLn2jYg+G4fmmIwUDnUHuf8J51v7SV2RP+ycJhgFWfs0Pcbujb y/XioC5i5BQqS634SbnrCKAjeR9TrG1CdkjtLeKNl5beSLc= -----END CERTIFICATE-----Generated at Wed May 13 01:36:23 2026 by rpki-client