$ rpki-client -vvf rpkica.twnic.tw/rpki/CHIEF-TW/0/AS18046.roa File: AS18046.roa (raw, json) Hash identifier: VPK3WDXlrekfmZlMSkN9vlMyxOeqrzgD1jd03AJW0Aw= Subject key identifier: A2:3F:67:16:43:70:BD:4D:BC:95:19:18:CB:9C:17:57:5B:48:C6:D6 Certificate issuer: /CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314 Certificate serial: 2F4DDC52B6451637707520425B36F2545EC1763D Authority key identifier: 33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS18046.roa Signing time: Mon 11 May 2026 17:17:34 +0000 ROA not before: Mon 11 May 2026 17:12:34 +0000 ROA not after: Mon 10 May 2027 17:17:34 +0000 asID: 18046 IP address blocks: 150.116.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.crl rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:4d:dc:52:b6:45:16:37:70:75:20:42:5b:36:f2:54:5e:c1:76:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314 Validity Not Before: May 11 17:12:34 2026 GMT Not After : May 10 17:17:34 2027 GMT Subject: CN=A23F67164370BD4DBC951918CB9C17575B48C6D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ae:58:9d:47:dd:05:17:5b:fb:8e:1c:39:92: d6:a2:c3:e4:59:16:dd:cb:97:2f:1b:c0:d3:67:d9: f6:74:7e:1c:f8:b5:cd:57:e3:87:5e:c2:89:34:4f: 39:55:e9:bc:3d:d4:d8:e7:27:e4:81:7e:02:b3:ed: 95:46:1b:b4:5c:c4:66:e8:84:e1:d9:f6:80:b1:7b: d9:6d:fe:04:6e:f3:e8:3e:70:04:0c:3b:96:11:bc: fe:81:f9:98:9b:03:bc:38:cd:a9:bd:ec:26:91:86: 7f:45:93:b4:f9:84:e8:7a:de:bd:03:89:02:9a:8c: 88:3e:03:6a:5e:6a:a9:c9:35:80:20:ec:93:37:b5: bc:c9:97:d0:1e:5b:96:57:ef:39:25:eb:e6:69:c3: aa:8b:8b:2e:cc:c7:71:02:89:18:34:f2:23:24:0f: 78:c3:61:55:f7:e9:26:12:f5:77:2d:e3:88:75:2b: a7:50:b9:e6:46:be:3a:2e:42:04:0d:d6:4e:45:d0: 25:56:b1:e9:39:a0:05:11:6e:cc:be:07:6c:04:43: 6a:2a:88:6f:ad:7d:34:19:1b:5f:5f:3b:cc:d5:ca: a3:42:9d:0d:30:dd:1c:5e:e9:00:33:38:48:75:6c: 7b:01:28:47:ae:f5:21:66:53:56:71:08:d2:ad:b9: 2c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:3F:67:16:43:70:BD:4D:BC:95:19:18:CB:9C:17:57:5B:48:C6:D6 X509v3 Authority Key Identifier: keyid:33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS18046.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.116.16.0/20 Signature Algorithm: sha256WithRSAEncryption 87:d2:44:98:15:b7:88:38:43:f5:f7:ce:ab:3f:2a:13:6c:86: 6d:5c:9c:8c:52:eb:80:ce:f6:54:9e:4e:b2:67:03:12:a8:fc: dd:c8:39:b5:bd:95:1b:f3:f7:0b:1a:a2:4a:23:16:be:ad:e0: 60:46:da:83:50:1e:1b:57:d3:46:ca:0f:6a:cd:b8:b2:9a:ee: ed:b2:00:2a:d0:76:a2:b9:8e:21:71:93:0a:17:2f:38:8e:f9: f7:90:fa:06:fa:ba:93:63:f8:dd:4a:33:df:31:6d:04:3f:61: eb:1f:41:d1:cd:7c:35:b1:61:25:94:f9:f7:81:e8:48:39:4e: cb:6c:e6:f8:10:36:af:0a:31:e5:0a:fb:ff:db:de:f2:79:cb: 3e:15:26:52:62:db:b4:14:ff:d9:a7:8e:91:be:b3:f8:f6:1d: 97:9e:4c:8c:05:1e:85:2a:e8:60:77:d8:e0:99:49:fe:6a:66: e7:73:fa:20:be:51:b8:51:57:5d:98:2f:20:ec:71:36:08:60: 7b:d3:c1:79:08:6a:de:e5:29:67:f9:7b:9a:4f:54:31:44:b5: fd:1e:12:48:db:e5:14:3f:ff:1a:f2:8c:b3:89:23:a5:86:c1: 1c:1a:17:db:77:b0:f6:07:1f:12:b5:19:ef:0a:13:cc:a2:9d: 2d:0f:4f:21 -----BEGIN CERTIFICATE----- MIIErjCCA5agAwIBAgIUL03cUrZFFjdwdSBCWzbyVF7Bdj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNDQTRCNUY0Mjk1QjY4MTIxMjdBRjU3NjFDNkQ3MzUz RDFGMDMxNDAeFw0yNjA1MTExNzEyMzRaFw0yNzA1MTAxNzE3MzRaMDMxMTAvBgNV BAMTKEEyM0Y2NzE2NDM3MEJENERCQzk1MTkxOENCOUMxNzU3NUI0OEM2RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcrlidR90FF1v7jhw5ktaiw+RZ Ft3Lly8bwNNn2fZ0fhz4tc1X44dewok0TzlV6bw91NjnJ+SBfgKz7ZVGG7RcxGbo hOHZ9oCxe9lt/gRu8+g+cAQMO5YRvP6B+ZibA7w4zam97CaRhn9Fk7T5hOh63r0D iQKajIg+A2peaqnJNYAg7JM3tbzJl9AeW5ZX7zkl6+Zpw6qLiy7Mx3ECiRg08iMk D3jDYVX36SYS9Xct44h1K6dQueZGvjouQgQN1k5F0CVWsek5oAURbsy+B2wEQ2oq iG+tfTQZG19fO8zVyqNCnQ0w3Rxe6QAzOEh1bHsBKEeu9SFmU1ZxCNKtuSw5AgMB AAGjggG4MIIBtDAdBgNVHQ4EFgQUoj9nFkNwvU28lRkYy5wXV1tIxtYwHwYDVR0j BBgwFoAUM8pLX0KVtoEhJ69XYcbXNT0fAxQwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJRUYt VFcvMC8zM0NBNEI1RjQyOTVCNjgxMjEyN0FGNTc2MUM2RDczNTNEMUYwMzE0LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzMzQ0E0QjVGNDI5NUI2ODEyMTI3QUY1NzYx QzZENzM1M0QxRjAzMTQuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4Yz cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSElFRi1UVy8wL0FTMTgwNDYu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBASWdBAwDQYJKoZIhvcNAQELBQADggEBAIfSRJgVt4g4Q/X3zqs/ KhNshm1cnIxS64DO9lSeTrJnAxKo/N3IObW9lRvz9wsaokojFr6t4GBG2oNQHhtX 00bKD2rNuLKa7u2yACrQdqK5jiFxkwoXLziO+feQ+gb6upNj+N1KM98xbQQ/Yesf QdHNfDWxYSWU+feB6Eg5Tsts5vgQNq8KMeUK+//b3vJ5yz4VJlJi27QU/9mnjpG+ s/j2HZeeTIwFHoUq6GB32OCZSf5qZudz+iC+UbhRV12YLyDscTYIYHvTwXkIat7l KWf5e5pPVDFEtf0eEkjb5RQ//xryjLOJI6WGwRwaF9t3sPYHHxK1Ge8KE8yinS0P TyE= -----END CERTIFICATE-----Generated at Wed May 13 21:51:25 2026 by rpki-client