$ rpki-client -vvf rpkica.twnic.tw/rpki/TINP/0/35382e39392e302e302f31382d3234203d3e203138303439.roa File: 35382e39392e302e302f31382d3234203d3e203138303439.roa (raw, json) Hash identifier: 0Ln5X/ej8hAf9GsZklkD3K9ADOESrdVXvzquzP7hZhM= Subject key identifier: 26:1B:60:C5:C4:B4:B7:F2:EB:41:88:CB:0E:46:14:57:FF:F2:69:2B Certificate issuer: /CN=BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F Certificate serial: 4638839ECB6F648727A36BF4480B55163C3B2ACD Authority key identifier: BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TINP/0/35382e39392e302e302f31382d3234203d3e203138303439.roa Signing time: Mon 11 May 2026 16:42:12 +0000 ROA not before: Mon 11 May 2026 16:37:12 +0000 ROA not after: Mon 10 May 2027 16:42:12 +0000 asID: 18049 IP address blocks: 58.99.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.crl rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:38:83:9e:cb:6f:64:87:27:a3:6b:f4:48:0b:55:16:3c:3b:2a:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F Validity Not Before: May 11 16:37:12 2026 GMT Not After : May 10 16:42:12 2027 GMT Subject: CN=261B60C5C4B4B7F2EB4188CB0E461457FFF2692B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1f:8b:c2:33:a2:74:ea:0d:46:b6:d8:5f:7a: 03:48:ff:c8:9b:d3:7c:54:d4:da:21:3b:21:f4:a6: 63:46:70:c2:32:d6:aa:e0:df:07:38:4b:4d:20:0e: 6f:68:b9:2d:78:b0:c4:90:1c:24:cf:7e:5f:e4:9a: 82:d4:e2:6a:26:1a:c2:d1:ef:dc:83:94:51:4f:ee: e1:08:21:3c:b1:c1:51:73:d1:8e:57:6b:90:37:f8: 8c:2e:22:a9:5c:ea:60:d2:4d:57:9a:6e:45:d7:f2: 0e:ff:ea:60:e2:3b:7c:c1:f7:ec:31:57:01:a3:4b: 64:d6:8c:ea:68:20:e2:53:74:a7:fc:12:a2:fa:16: ac:b7:33:47:f9:5f:06:24:61:93:47:64:fa:c6:a5: 57:a1:ec:73:9a:39:91:f2:39:18:90:7b:e9:11:4f: d8:85:95:7d:06:53:68:14:b0:f8:16:45:6a:c6:a8: 64:2d:8c:9c:51:57:5a:80:97:53:34:df:a7:9b:0e: 77:0b:8d:f9:80:cf:5c:35:41:4a:63:a6:d8:58:ea: 37:10:da:2d:04:28:4a:28:8b:d1:79:6e:61:5f:a5: f1:d2:33:4b:d8:13:e5:64:c7:bf:db:0d:cb:1e:da: 4f:7e:fd:d0:2d:d0:c0:65:89:58:cf:ff:6f:9c:53: 75:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:1B:60:C5:C4:B4:B7:F2:EB:41:88:CB:0E:46:14:57:FF:F2:69:2B X509v3 Authority Key Identifier: keyid:BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TINP/0/35382e39392e302e302f31382d3234203d3e203138303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.99.0.0/18 Signature Algorithm: sha256WithRSAEncryption 7e:56:d1:54:b2:7b:95:a7:37:f5:50:f8:e2:9d:bb:c1:8d:a9: e0:14:e8:21:55:48:9d:15:f1:e5:d8:c5:9a:93:c7:4b:d5:2f: 6e:e6:f9:9d:69:3a:d6:36:c9:0d:18:d7:8c:25:c6:00:78:21: 9a:17:56:aa:18:2a:ad:82:b1:0c:7f:11:12:1f:49:bc:ed:7d: 05:08:c0:8a:ee:15:10:2a:1c:25:c7:4a:78:9a:f2:8a:c6:74: 82:77:d1:43:79:5f:c5:11:6f:3c:a4:5f:e3:ea:5d:fc:54:2f: 38:b9:c7:eb:b7:d1:d1:2a:f5:bf:d8:ba:c9:cb:55:6b:e7:e8: c1:47:ef:51:39:6d:f1:37:cb:fd:24:84:38:e1:2b:41:b0:eb: 5f:6d:c1:82:e7:e5:f8:28:98:ba:26:3a:fb:72:b9:3c:6f:d8: 35:bc:62:70:35:c1:75:cd:00:14:d3:98:7a:cc:b6:da:99:cd: bf:f5:7c:b3:1e:9a:97:b2:d2:29:8f:b8:03:7a:1f:43:89:84: da:03:25:4a:15:fb:95:10:ce:44:d2:a8:cb:8b:93:ce:ee:ef: 25:c2:45:2c:cd:50:ea:dd:0a:b4:2b:ae:e5:dd:bf:97:09:4e: b5:5f:e9:be:68:26:96:2c:15:58:51:65:77:77:55:94:eb:e8: 75:76:ce:61 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIURjiDnstvZIcno2v0SAtVFjw7Ks0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNDMkY3RUQwQ0Q1Njc3Qzk4ODdFMEYyNEJBOEU3M0Qy NDdBNTYwRjAeFw0yNjA1MTExNjM3MTJaFw0yNzA1MTAxNjQyMTJaMDMxMTAvBgNV BAMTKDI2MUI2MEM1QzRCNEI3RjJFQjQxODhDQjBFNDYxNDU3RkZGMjY5MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyH4vCM6J06g1GtthfegNI/8ib 03xU1NohOyH0pmNGcMIy1qrg3wc4S00gDm9ouS14sMSQHCTPfl/kmoLU4momGsLR 79yDlFFP7uEIITyxwVFz0Y5Xa5A3+IwuIqlc6mDSTVeabkXX8g7/6mDiO3zB9+wx VwGjS2TWjOpoIOJTdKf8EqL6Fqy3M0f5XwYkYZNHZPrGpVeh7HOaOZHyORiQe+kR T9iFlX0GU2gUsPgWRWrGqGQtjJxRV1qAl1M036ebDncLjfmAz1w1QUpjpthY6jcQ 2i0EKEooi9F5bmFfpfHSM0vYE+Vkx7/bDcse2k9+/dAt0MBliVjP/2+cU3XtAgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQUJhtgxcS0t/LrQYjLDkYUV//yaSswHwYDVR0j BBgwFoAUvML37QzVZ3yYh+DyS6jnPSR6Vg8wDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVElOUC8w L0JDQzJGN0VEMENENTY3N0M5ODg3RTBGMjRCQThFNzNEMjQ3QTU2MEYuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvQkNDMkY3RUQwQ0Q1Njc3Qzk4ODdFMEYyNEJBOEU3 M0QyNDdBNTYwRi5jZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RJTlAvMC8zNTM4MmUzOTM5MmUzMDJl MzAyZjMxMzgyZDMyMzQyMDNkM2UyMDMxMzgzMDM0Mzkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAY6YwAw DQYJKoZIhvcNAQELBQADggEBAH5W0VSye5WnN/VQ+OKdu8GNqeAU6CFVSJ0V8eXY xZqTx0vVL27m+Z1pOtY2yQ0Y14wlxgB4IZoXVqoYKq2CsQx/ERIfSbztfQUIwIru FRAqHCXHSnia8orGdIJ30UN5X8URbzykX+PqXfxULzi5x+u30dEq9b/YusnLVWvn 6MFH71E5bfE3y/0khDjhK0Gw619twYLn5fgomLomOvtyuTxv2DW8YnA1wXXNABTT mHrMttqZzb/1fLMempey0imPuAN6H0OJhNoDJUoV+5UQzkTSqMuLk87u7yXCRSzN UOrdCrQrruXdv5cJTrVf6b5oJpYsFVhRZXd3VZTr6HV2zmE= -----END CERTIFICATE-----Generated at Tue May 12 22:32:35 2026 by rpki-client