$ rpki-client -vvf rpkica.twnic.tw/rpki/TINP/0/35382e39392e36342e302f31382d3234203d3e2034373830.roa File: 35382e39392e36342e302f31382d3234203d3e2034373830.roa (raw, json) Hash identifier: niYgQmkbFiVAxMbJG+jDTd+/Xd0s2kYfl7SmIma9v3I= Subject key identifier: F4:40:F3:62:EB:5B:7F:B6:B5:FB:CA:91:E8:DD:69:EF:9A:66:94:F3 Certificate issuer: /CN=BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F Certificate serial: 42E8C1A581AC2D54A3011B074D692137ABC01F98 Authority key identifier: BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TINP/0/35382e39392e36342e302f31382d3234203d3e2034373830.roa Signing time: Mon 11 May 2026 17:10:51 +0000 ROA not before: Mon 11 May 2026 17:05:51 +0000 ROA not after: Mon 10 May 2027 17:10:51 +0000 asID: 4780 IP address blocks: 58.99.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.crl rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:e8:c1:a5:81:ac:2d:54:a3:01:1b:07:4d:69:21:37:ab:c0:1f:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F Validity Not Before: May 11 17:05:51 2026 GMT Not After : May 10 17:10:51 2027 GMT Subject: CN=F440F362EB5B7FB6B5FBCA91E8DD69EF9A6694F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:29:f8:f4:d9:88:01:9f:38:b8:c7:48:e0:bb: 5b:0c:b7:9c:51:c6:bd:8c:02:93:0d:7e:59:79:1c: 41:d5:4a:58:d1:fa:fc:d0:a9:bc:81:55:01:bc:33: eb:e6:12:31:fb:32:97:f8:bc:a0:ee:ac:f4:53:96: 82:56:34:a0:4a:a3:02:ab:1d:c3:b7:cf:b8:33:97: ba:1d:6a:d6:48:f4:d4:c0:63:48:20:a3:1a:f3:6e: 70:00:fb:c1:2a:b7:c1:91:e2:e4:b7:fd:1f:3c:88: c9:fe:95:81:a8:a2:31:c4:5b:fc:fa:c9:85:37:99: e1:f4:b9:0f:b6:6c:c9:f4:47:77:c0:24:00:b2:7b: e7:05:d1:00:4b:46:6c:15:f9:5e:b3:1b:53:b1:51: c2:f0:0f:00:e9:aa:29:5e:fb:51:d5:e3:51:d7:ed: 09:05:f2:5f:59:d9:8d:47:cf:66:c7:39:b9:10:15: f3:93:90:bb:5a:9c:b4:82:d2:3f:e0:fd:0d:fe:69: 26:e4:ec:49:ac:a5:05:10:94:ec:4d:8e:5f:82:ee: b4:18:61:e5:ca:5a:f7:c3:b2:eb:8c:ff:ac:8d:14: ef:fd:5b:45:ec:49:b2:b5:b5:59:dd:3d:aa:26:17: 9a:2f:77:7e:c2:79:21:25:f7:8b:22:bc:2f:e6:48: 50:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:40:F3:62:EB:5B:7F:B6:B5:FB:CA:91:E8:DD:69:EF:9A:66:94:F3 X509v3 Authority Key Identifier: keyid:BC:C2:F7:ED:0C:D5:67:7C:98:87:E0:F2:4B:A8:E7:3D:24:7A:56:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TINP/0/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BCC2F7ED0CD5677C9887E0F24BA8E73D247A560F.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TINP/0/35382e39392e36342e302f31382d3234203d3e2034373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.99.64.0/18 Signature Algorithm: sha256WithRSAEncryption 1b:93:29:da:61:b8:01:3f:44:7f:30:b2:8b:bf:69:da:9f:a8: 28:52:fd:d4:33:27:bd:b0:e7:05:12:7a:15:08:40:ec:c3:e2: 02:9e:9e:51:06:4a:dd:88:39:65:ed:2d:da:ea:d9:74:f1:90: 25:cb:e6:d0:d2:3f:f5:c9:0a:5a:47:ef:3a:ce:8c:b6:83:45: 44:2e:5c:de:10:99:f6:75:37:9e:bf:47:43:a6:61:b8:ff:b0: 2a:9c:4d:0e:32:e9:ca:72:e3:3f:3f:e8:2a:9f:db:4e:07:fa: f8:a1:a4:9a:72:ba:8e:a7:e2:87:34:ab:06:41:34:1d:25:a7: 55:ec:a9:b6:96:28:9a:41:4e:b2:47:64:ba:f3:85:3f:f5:68: d3:69:56:0c:4c:c3:db:d5:d8:4a:0a:5c:01:25:63:92:9d:04: 79:d8:02:4b:71:87:7e:23:d9:83:87:f6:08:35:ec:3a:6a:9a: 44:eb:14:1c:7e:9e:b2:d2:2e:0c:02:58:44:e1:a9:78:d1:36: 4b:ac:09:48:6c:74:ec:ee:e5:05:d6:c1:e8:14:f1:3c:75:9e: fd:09:28:f9:c7:1a:8f:cd:ee:ad:40:69:ef:24:76:26:82:5c: 37:71:60:49:71:3d:da:71:e4:2e:30:03:2c:97:3e:cb:ca:26: 54:53:28:6c -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIUQujBpYGsLVSjARsHTWkhN6vAH5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNDMkY3RUQwQ0Q1Njc3Qzk4ODdFMEYyNEJBOEU3M0Qy NDdBNTYwRjAeFw0yNjA1MTExNzA1NTFaFw0yNzA1MTAxNzEwNTFaMDMxMTAvBgNV BAMTKEY0NDBGMzYyRUI1QjdGQjZCNUZCQ0E5MUU4REQ2OUVGOUE2Njk0RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Kfj02YgBnzi4x0jgu1sMt5xR xr2MApMNfll5HEHVSljR+vzQqbyBVQG8M+vmEjH7Mpf4vKDurPRTloJWNKBKowKr HcO3z7gzl7odatZI9NTAY0ggoxrzbnAA+8Eqt8GR4uS3/R88iMn+lYGoojHEW/z6 yYU3meH0uQ+2bMn0R3fAJACye+cF0QBLRmwV+V6zG1OxUcLwDwDpqile+1HV41HX 7QkF8l9Z2Y1Hz2bHObkQFfOTkLtanLSC0j/g/Q3+aSbk7EmspQUQlOxNjl+C7rQY YeXKWvfDsuuM/6yNFO/9W0XsSbK1tVndPaomF5ovd37CeSEl94sivC/mSFCtAgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQU9EDzYutbf7a1+8qR6N1p75pmlPMwHwYDVR0j BBgwFoAUvML37QzVZ3yYh+DyS6jnPSR6Vg8wDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVElOUC8w L0JDQzJGN0VEMENENTY3N0M5ODg3RTBGMjRCQThFNzNEMjQ3QTU2MEYuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvQkNDMkY3RUQwQ0Q1Njc3Qzk4ODdFMEYyNEJBOEU3 M0QyNDdBNTYwRi5jZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RJTlAvMC8zNTM4MmUzOTM5MmUzNjM0 MmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzQzNzM4MzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAY6Y0Aw DQYJKoZIhvcNAQELBQADggEBABuTKdphuAE/RH8wsou/adqfqChS/dQzJ72w5wUS ehUIQOzD4gKenlEGSt2IOWXtLdrq2XTxkCXL5tDSP/XJClpH7zrOjLaDRUQuXN4Q mfZ1N56/R0OmYbj/sCqcTQ4y6cpy4z8/6Cqf204H+vihpJpyuo6n4oc0qwZBNB0l p1XsqbaWKJpBTrJHZLrzhT/1aNNpVgxMw9vV2EoKXAElY5KdBHnYAktxh34j2YOH 9gg17DpqmkTrFBx+nrLSLgwCWEThqXjRNkusCUhsdOzu5QXWwegU8Tx1nv0JKPnH Go/N7q1Aae8kdiaCXDdxYElxPdpx5C4wAyyXPsvKJlRTKGw= -----END CERTIFICATE-----Generated at Wed May 13 01:14:37 2026 by rpki-client