$ rpki-client -vvf rpkica.twnic.tw/rpki/CHIEF-TW/0/AS136744.roa File: AS136744.roa (raw, json) Hash identifier: KmFFxCh7QltvylknLN6m9CZsIjFILUoeD8Jr/J0+GRM= Subject key identifier: C3:63:A8:14:55:EC:D8:D0:EA:AA:D6:D3:15:96:D2:2D:37:A4:CE:4C Certificate issuer: /CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314 Certificate serial: 2FE4AF62E23086990C8D88736A48281B23A2DC11 Authority key identifier: 33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS136744.roa Signing time: Mon 11 May 2026 17:37:25 +0000 ROA not before: Mon 11 May 2026 17:32:25 +0000 ROA not after: Mon 10 May 2027 17:37:25 +0000 asID: 136744 IP address blocks: 150.116.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.crl rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:e4:af:62:e2:30:86:99:0c:8d:88:73:6a:48:28:1b:23:a2:dc:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314 Validity Not Before: May 11 17:32:25 2026 GMT Not After : May 10 17:37:25 2027 GMT Subject: CN=C363A81455ECD8D0EAAAD6D31596D22D37A4CE4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:94:84:da:a0:a6:73:9b:14:28:58:46:16:e9: d5:1a:40:db:0f:36:65:14:df:42:4a:99:50:ad:91: bd:06:5a:b2:da:09:d9:56:6a:cf:56:b5:65:96:44: 07:2e:22:ee:01:81:a9:29:3b:1a:f7:15:0b:e1:50: f6:72:08:84:c4:6d:99:f9:3e:cb:e4:ea:65:63:52: 4c:04:09:ef:12:c0:f8:26:ab:db:7e:48:31:8c:d8: 53:15:f2:35:6e:b9:fe:52:1d:24:b1:e3:d3:4a:08: 1c:95:4d:df:25:b5:9f:44:c8:a9:cf:1c:4d:0d:d6: 1b:37:62:e7:7e:a3:32:71:35:32:14:da:9e:0a:75: b4:4c:b7:46:5f:82:8e:e8:72:34:43:5e:69:5f:9e: 1b:96:ec:68:ce:4a:69:e7:32:7a:1c:0b:59:da:3d: 97:5a:fd:bb:49:0c:6e:e7:dc:ef:bd:71:66:71:cc: 33:51:13:3f:cd:b6:81:5e:14:91:58:17:e0:ba:8c: 79:3d:b1:68:33:5e:6e:fe:38:5c:a6:e4:8b:24:5d: c8:5c:c1:a7:37:20:7c:5c:c9:5f:86:55:81:c3:0b: 5d:7a:cf:0b:2c:3a:72:36:9b:26:a2:7d:d6:b2:de: fb:ca:ce:c3:e4:92:8c:86:de:3f:2f:58:14:5c:8a: 55:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:63:A8:14:55:EC:D8:D0:EA:AA:D6:D3:15:96:D2:2D:37:A4:CE:4C X509v3 Authority Key Identifier: keyid:33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS136744.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.116.13.0/24 Signature Algorithm: sha256WithRSAEncryption b8:9b:ef:86:ee:15:17:02:66:51:d4:6b:c5:32:00:f3:60:93: 8f:db:d2:f2:cd:3a:2a:73:7c:c2:cc:60:b5:ae:26:27:bc:a0: fa:e9:9b:b0:60:45:e2:13:1c:2f:d2:5f:99:80:45:91:06:99: 4c:0a:62:1b:61:f0:8a:9b:a1:64:da:b6:8c:c5:18:2a:17:de: 70:4a:5b:4b:63:3b:7f:6c:c1:d3:07:44:e6:03:f0:a1:4d:a2: 07:c6:bc:63:a9:1a:42:22:22:77:bd:b0:e7:33:ce:8a:fa:6e: 9d:4b:64:99:9e:6b:84:02:4f:aa:0b:8a:e5:31:8e:83:e2:67: 97:8b:54:4f:5f:49:48:67:f2:3f:df:91:6b:ba:0a:39:5d:92: 16:d2:c7:f4:a4:b2:00:bc:04:3e:69:8a:80:56:d2:6a:3a:bd: ab:4b:06:90:96:55:fe:40:e8:39:15:14:0a:df:c8:cc:31:7d: ff:28:9b:dc:26:c4:40:e6:ff:16:72:3a:51:03:a6:f9:7e:bf: 7f:bd:7e:36:28:e6:71:a6:ba:ce:23:a2:80:b8:34:6d:06:01: db:a1:f9:5d:75:a4:b5:b9:e3:57:63:85:15:f9:57:3e:62:d2: 05:d0:65:8d:1d:f3:0e:5e:0b:80:4e:82:8f:b4:42:02:5c:10: e9:6f:b9:05 -----BEGIN CERTIFICATE----- MIIErzCCA5egAwIBAgIUL+SvYuIwhpkMjYhzakgoGyOi3BEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNDQTRCNUY0Mjk1QjY4MTIxMjdBRjU3NjFDNkQ3MzUz RDFGMDMxNDAeFw0yNjA1MTExNzMyMjVaFw0yNzA1MTAxNzM3MjVaMDMxMTAvBgNV BAMTKEMzNjNBODE0NTVFQ0Q4RDBFQUFBRDZEMzE1OTZEMjJEMzdBNENFNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPlITaoKZzmxQoWEYW6dUaQNsP NmUU30JKmVCtkb0GWrLaCdlWas9WtWWWRAcuIu4BgakpOxr3FQvhUPZyCITEbZn5 Psvk6mVjUkwECe8SwPgmq9t+SDGM2FMV8jVuuf5SHSSx49NKCByVTd8ltZ9EyKnP HE0N1hs3Yud+ozJxNTIU2p4KdbRMt0Zfgo7ocjRDXmlfnhuW7GjOSmnnMnocC1na PZda/btJDG7n3O+9cWZxzDNREz/NtoFeFJFYF+C6jHk9sWgzXm7+OFym5IskXchc wac3IHxcyV+GVYHDC116zwssOnI2myaifday3vvKzsPkkoyG3j8vWBRcilX9AgMB AAGjggG5MIIBtTAdBgNVHQ4EFgQUw2OoFFXs2NDqqtbTFZbSLTekzkwwHwYDVR0j BBgwFoAUM8pLX0KVtoEhJ69XYcbXNT0fAxQwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJRUYt VFcvMC8zM0NBNEI1RjQyOTVCNjgxMjEyN0FGNTc2MUM2RDczNTNEMUYwMzE0LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzMzQ0E0QjVGNDI5NUI2ODEyMTI3QUY1NzYx QzZENzM1M0QxRjAzMTQuY2VyMFAGCCsGAQUFBwELBEQwQjBABggrBgEFBQcwC4Y0 cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSElFRi1UVy8wL0FTMTM2NzQ0 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQAlnQNMA0GCSqGSIb3DQEBCwUAA4IBAQC4m++G7hUXAmZR1GvF MgDzYJOP29LyzToqc3zCzGC1riYnvKD66ZuwYEXiExwv0l+ZgEWRBplMCmIbYfCK m6Fk2raMxRgqF95wSltLYzt/bMHTB0TmA/ChTaIHxrxjqRpCIiJ3vbDnM86K+m6d S2SZnmuEAk+qC4rlMY6D4meXi1RPX0lIZ/I/35Frugo5XZIW0sf0pLIAvAQ+aYqA VtJqOr2rSwaQllX+QOg5FRQK38jMMX3/KJvcJsRA5v8WcjpRA6b5fr9/vX42KOZx prrOI6KAuDRtBgHboflddaS1ueNXY4UV+Vc+YtIF0GWNHfMOXguAToKPtEICXBDp b7kF -----END CERTIFICATE-----Generated at Wed May 13 21:51:26 2026 by rpki-client