$ rpki-client -vvf rpkica.twnic.tw/rpki/CHIEF-TW/0/AS139750.roa File: AS139750.roa (raw, json) Hash identifier: GV5NMmRzHea6XnMsN0IxKMCLZBnQovc5+vQXwtuFXho= Subject key identifier: 97:59:12:96:5C:81:5C:AD:FE:3A:7D:32:13:71:78:C7:4B:7E:E1:79 Certificate issuer: /CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314 Certificate serial: 5D01CE5F779F832D68450BBEE20EDB956C3E6AF1 Authority key identifier: 33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS139750.roa Signing time: Mon 11 May 2026 17:44:55 +0000 ROA not before: Mon 11 May 2026 17:39:55 +0000 ROA not after: Mon 10 May 2027 17:44:55 +0000 asID: 139750 IP address blocks: 150.116.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.crl rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:01:ce:5f:77:9f:83:2d:68:45:0b:be:e2:0e:db:95:6c:3e:6a:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314 Validity Not Before: May 11 17:39:55 2026 GMT Not After : May 10 17:44:55 2027 GMT Subject: CN=975912965C815CADFE3A7D32137178C74B7EE179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:46:b4:a3:c1:17:47:39:78:e9:bf:45:05:36: 78:8d:65:b5:2b:d6:e1:ef:69:09:36:8d:ba:76:54: eb:11:02:41:60:aa:c1:e0:ac:fb:cc:bc:f3:75:fa: 9e:46:9d:b2:fb:7a:41:6c:ed:74:54:00:b6:38:a3: 99:1e:e6:cd:39:2b:b8:71:3d:f4:0a:03:7c:ad:a7: fa:37:2f:0f:38:0c:7f:b8:a1:cd:52:5b:ea:7a:8e: 16:8c:af:f2:fd:da:85:cf:15:dd:d0:b8:6d:c8:24: cf:ff:cd:91:75:67:61:a6:b1:c7:b2:fc:c8:7e:45: a5:87:d0:d7:c7:32:f1:07:d8:0f:41:1e:77:b0:dc: de:00:59:bb:75:19:f2:d0:af:d5:d4:db:81:bd:35: 78:f8:82:2f:62:7c:74:04:07:3b:ea:f4:3a:91:75: bf:b4:a2:45:d0:eb:fe:46:ca:75:8f:94:22:32:99: cb:65:33:da:fc:fb:1e:63:07:f8:e3:8a:99:d4:8b: ff:c5:e8:cb:86:79:bf:3f:99:53:f4:80:e6:2f:7a: e2:67:3f:59:d4:b5:d3:bf:07:5e:04:1e:a8:da:50: d8:49:c5:ef:93:79:16:dd:b8:4f:31:6a:bc:31:a9: fa:37:1b:69:b4:b1:bf:65:04:46:0e:2e:f7:a0:ee: 80:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:59:12:96:5C:81:5C:AD:FE:3A:7D:32:13:71:78:C7:4B:7E:E1:79 X509v3 Authority Key Identifier: keyid:33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS139750.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.116.10.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:b5:2c:05:35:21:2e:df:de:05:60:1c:7e:53:10:3f:ea:de: 70:07:1f:14:ab:f6:a6:11:d7:f0:c8:8b:68:07:50:cc:d1:b0: 86:b8:f0:de:e5:68:60:48:2f:bd:3d:64:5a:78:5a:84:97:a8: b8:eb:92:e0:dc:1d:6f:ac:dd:db:1f:39:d3:ff:69:7b:21:58: f5:95:92:d9:71:cc:28:d6:33:27:f9:79:c3:ce:6f:eb:e6:29: 74:87:48:f2:5c:7d:48:59:bb:46:cd:18:26:54:9b:4c:1b:1d: d0:80:4c:2e:8e:45:95:a3:a7:df:94:d8:a1:fb:e0:9c:92:9c: 76:96:6c:02:e5:0e:f5:22:49:9e:5c:e7:87:16:80:38:d7:4a: 67:de:c5:92:ad:42:7a:89:6e:74:d4:c7:40:92:77:45:71:f6: fb:f3:eb:8e:6e:f4:67:ba:6b:4d:32:91:5e:a8:9b:a2:33:2e: 12:65:1b:19:fe:cd:c6:c6:97:19:68:9f:90:66:78:1e:4e:98: 4a:43:5c:40:b4:60:3e:47:6c:a1:b2:df:03:2e:8d:09:2f:6e: 76:e7:ed:98:d7:6b:95:91:17:7d:4e:dd:00:2e:9f:92:b7:45: 3c:9f:53:b4:70:5d:48:8c:1d:03:22:93:bf:db:25:dc:cf:47: a8:ed:f8:74 -----BEGIN CERTIFICATE----- MIIErzCCA5egAwIBAgIUXQHOX3efgy1oRQu+4g7blWw+avEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNDQTRCNUY0Mjk1QjY4MTIxMjdBRjU3NjFDNkQ3MzUz RDFGMDMxNDAeFw0yNjA1MTExNzM5NTVaFw0yNzA1MTAxNzQ0NTVaMDMxMTAvBgNV BAMTKDk3NTkxMjk2NUM4MTVDQURGRTNBN0QzMjEzNzE3OEM3NEI3RUUxNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaRrSjwRdHOXjpv0UFNniNZbUr 1uHvaQk2jbp2VOsRAkFgqsHgrPvMvPN1+p5GnbL7ekFs7XRUALY4o5ke5s05K7hx PfQKA3ytp/o3Lw84DH+4oc1SW+p6jhaMr/L92oXPFd3QuG3IJM//zZF1Z2Gmscey /Mh+RaWH0NfHMvEH2A9BHnew3N4AWbt1GfLQr9XU24G9NXj4gi9ifHQEBzvq9DqR db+0okXQ6/5GynWPlCIymctlM9r8+x5jB/jjipnUi//F6MuGeb8/mVP0gOYveuJn P1nUtdO/B14EHqjaUNhJxe+TeRbduE8xarwxqfo3G2m0sb9lBEYOLveg7oDFAgMB AAGjggG5MIIBtTAdBgNVHQ4EFgQUl1kSllyBXK3+On0yE3F4x0t+4XkwHwYDVR0j BBgwFoAUM8pLX0KVtoEhJ69XYcbXNT0fAxQwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJRUYt VFcvMC8zM0NBNEI1RjQyOTVCNjgxMjEyN0FGNTc2MUM2RDczNTNEMUYwMzE0LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzMzQ0E0QjVGNDI5NUI2ODEyMTI3QUY1NzYx QzZENzM1M0QxRjAzMTQuY2VyMFAGCCsGAQUFBwELBEQwQjBABggrBgEFBQcwC4Y0 cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSElFRi1UVy8wL0FTMTM5NzUw LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQAlnQKMA0GCSqGSIb3DQEBCwUAA4IBAQBrtSwFNSEu394FYBx+ UxA/6t5wBx8Uq/amEdfwyItoB1DM0bCGuPDe5WhgSC+9PWRaeFqEl6i465Lg3B1v rN3bHznT/2l7IVj1lZLZccwo1jMn+XnDzm/r5il0h0jyXH1IWbtGzRgmVJtMGx3Q gEwujkWVo6fflNih++Cckpx2lmwC5Q71IkmeXOeHFoA410pn3sWSrUJ6iW501MdA kndFcfb78+uObvRnumtNMpFeqJuiMy4SZRsZ/s3GxpcZaJ+QZngeTphKQ1xAtGA+ R2yhst8DLo0JL2525+2Y12uVkRd9Tt0ALp+St0U8n1O0cF1IjB0DIpO/2yXcz0eo 7fh0 -----END CERTIFICATE-----Generated at Wed May 13 21:51:26 2026 by rpki-client