$ rpki-client -vvf rpkica.twnic.tw/rpki/CHIEF-TW/0/AS131607.roa File: AS131607.roa (raw, json) Hash identifier: Ko3377c28EF6ik+MPYsJpuviH/yggUoyqs69q5XaynQ= Subject key identifier: B9:B5:D5:FB:63:6F:38:2B:D1:97:2A:10:2F:1B:D2:6B:C3:36:F4:E0 Certificate issuer: /CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314 Certificate serial: 5545D6BCAD819585186324EF599FF16074C523BF Authority key identifier: 33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS131607.roa Signing time: Mon 11 May 2026 17:18:59 +0000 ROA not before: Mon 11 May 2026 17:13:59 +0000 ROA not after: Mon 10 May 2027 17:18:59 +0000 asID: 131607 IP address blocks: 150.117.56.0/21 maxlen: 24 150.117.64.0/20 maxlen: 24 150.117.80.0/20 maxlen: 24 150.117.168.0/21 maxlen: 24 150.117.176.0/20 maxlen: 24 150.117.192.0/19 maxlen: 24 150.117.192.0/20 maxlen: 24 150.117.208.0/20 maxlen: 24 150.117.224.0/21 maxlen: 24 203.163.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.crl rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:45:d6:bc:ad:81:95:85:18:63:24:ef:59:9f:f1:60:74:c5:23:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314 Validity Not Before: May 11 17:13:59 2026 GMT Not After : May 10 17:18:59 2027 GMT Subject: CN=B9B5D5FB636F382BD1972A102F1BD26BC336F4E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:a8:5f:da:67:9b:24:af:18:cc:70:16:a9:62: 0a:8e:9e:84:95:ff:7e:84:85:7e:80:ec:51:5a:f5: 55:50:2f:c7:7c:31:32:46:30:55:8b:bf:f6:c4:8d: ba:48:80:92:91:42:7f:7d:19:0c:d1:d8:db:54:2e: 50:2f:7e:6f:7a:e6:1f:82:70:24:92:46:3d:97:5a: 25:d5:3e:0b:47:22:a6:c4:b2:87:60:f3:3e:18:01: ca:bd:1e:70:e3:30:6b:e4:13:d6:87:7d:f2:62:37: dc:4b:a1:a6:3b:66:2c:d4:56:e7:b7:f2:86:99:ac: 62:dd:9f:32:a3:49:a9:04:75:e9:9b:d4:c1:ed:5a: 7a:7a:ee:08:69:85:97:8b:37:e7:04:a1:ba:cf:9a: f5:90:08:5e:93:ec:7d:4e:cc:e1:98:eb:fb:31:0a: 9b:d0:9d:82:87:ab:8a:a4:2e:59:0f:bb:5f:ad:f8: 82:c7:11:08:f7:d6:62:d4:67:d9:2b:e8:c5:7c:32: ef:74:7a:1d:5b:54:4e:fb:77:8c:57:2d:1b:71:36: d8:00:74:4a:cd:21:a8:cb:ae:c8:88:4e:55:e2:74: d8:00:65:6b:85:be:fc:76:0a:92:8f:bc:9d:a4:89: 00:38:16:a4:9b:0b:4b:d5:40:e6:e8:e1:ce:39:45: 1e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:B5:D5:FB:63:6F:38:2B:D1:97:2A:10:2F:1B:D2:6B:C3:36:F4:E0 X509v3 Authority Key Identifier: keyid:33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS131607.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.117.56.0-150.117.95.255 150.117.168.0-150.117.231.255 203.163.193.0/24 Signature Algorithm: sha256WithRSAEncryption 30:05:01:f1:7c:a6:8f:86:8d:5b:5f:77:f8:44:6d:02:ca:70: 1d:68:8d:90:d2:83:2b:e6:ca:36:53:2b:29:f6:99:53:29:59: 9f:e1:b7:38:d2:67:5a:4a:d0:78:fe:c0:b8:8e:b6:69:aa:48: 84:75:39:e4:88:38:af:1d:38:8d:41:2b:2c:3b:48:11:67:e3: a4:df:24:aa:82:4e:62:8b:7e:ac:6a:18:8c:dc:36:d3:33:72: 8e:ae:0a:ee:70:64:26:30:7b:6b:22:55:04:58:7c:0e:eb:94: 91:06:10:ab:03:49:71:50:a9:94:bf:d1:e9:3a:06:5d:eb:e5: b2:f1:2a:5d:58:b3:33:55:fd:c3:3d:2a:de:89:de:48:c6:49: 1f:c4:67:12:08:21:a3:83:41:19:70:55:51:30:c1:17:b0:36: f7:68:30:8e:77:4a:a6:63:5d:fa:4a:5b:fd:0b:5f:c4:85:ee: 35:fa:ba:f2:4b:e4:4e:d4:b6:3a:c8:b3:10:cc:e0:34:be:d5: 73:f9:45:f7:0e:99:01:c5:fd:10:93:37:a1:fc:fa:60:bc:78: 10:9e:bb:83:a2:9d:de:7f:eb:09:37:73:d6:70:89:1b:fb:34: 36:95:e6:bc:4f:4e:23:66:0b:c3:ab:78:03:39:fd:f5:83:bb: 4c:4f:bb:02 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgIUVUXWvK2BlYUYYyTvWZ/xYHTFI78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNDQTRCNUY0Mjk1QjY4MTIxMjdBRjU3NjFDNkQ3MzUz RDFGMDMxNDAeFw0yNjA1MTExNzEzNTlaFw0yNzA1MTAxNzE4NTlaMDMxMTAvBgNV BAMTKEI5QjVENUZCNjM2RjM4MkJEMTk3MkExMDJGMUJEMjZCQzMzNkY0RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJqF/aZ5skrxjMcBapYgqOnoSV /36EhX6A7FFa9VVQL8d8MTJGMFWLv/bEjbpIgJKRQn99GQzR2NtULlAvfm965h+C cCSSRj2XWiXVPgtHIqbEsodg8z4YAcq9HnDjMGvkE9aHffJiN9xLoaY7ZizUVue3 8oaZrGLdnzKjSakEdemb1MHtWnp67ghphZeLN+cEobrPmvWQCF6T7H1OzOGY6/sx CpvQnYKHq4qkLlkPu1+t+ILHEQj31mLUZ9kr6MV8Mu90eh1bVE77d4xXLRtxNtgA dErNIajLrsiITlXidNgAZWuFvvx2CpKPvJ2kiQA4FqSbC0vVQObo4c45RR7zAgMB AAGjggHVMIIB0TAdBgNVHQ4EFgQUubXV+2NvOCvRlyoQLxvSa8M29OAwHwYDVR0j BBgwFoAUM8pLX0KVtoEhJ69XYcbXNT0fAxQwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJRUYt VFcvMC8zM0NBNEI1RjQyOTVCNjgxMjEyN0FGNTc2MUM2RDczNTNEMUYwMzE0LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzMzQ0E0QjVGNDI5NUI2ODEyMTI3QUY1NzYx QzZENzM1M0QxRjAzMTQuY2VyMFAGCCsGAQUFBwELBEQwQjBABggrBgEFBQcwC4Y0 cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSElFRi1UVy8wL0FTMTMxNjA3 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCww KjAoBAIAATAiMAwDBAOWdTgDBAWWdUAwDAMEA5Z1qAMEA5Z14AMEAMujwTANBgkq hkiG9w0BAQsFAAOCAQEAMAUB8Xymj4aNW193+ERtAspwHWiNkNKDK+bKNlMrKfaZ UylZn+G3ONJnWkrQeP7AuI62aapIhHU55Ig4rx04jUErLDtIEWfjpN8kqoJOYot+ rGoYjNw20zNyjq4K7nBkJjB7ayJVBFh8DuuUkQYQqwNJcVCplL/R6ToGXevlsvEq XVizM1X9wz0q3oneSMZJH8RnEggho4NBGXBVUTDBF7A292gwjndKpmNd+kpb/Qtf xIXuNfq68kvkTtS2OsizEMzgNL7Vc/lF9w6ZAcX9EJM3ofz6YLx4EJ67g6Kd3n/r CTdz1nCJG/s0NpXmvE9OI2YLw6t4Azn99YO7TE+7Ag== -----END CERTIFICATE-----Generated at Wed May 13 21:51:26 2026 by rpki-client