$ rpki-client -vvf rpkica.twnic.tw/rpki/CHIEF-TW/0/AS57976.roa File: AS57976.roa (raw, json) Hash identifier: OHhIkRujl/u3lh08F8Zhg5fPJywkv42cHFKXuXYHMaw= Subject key identifier: 41:7D:99:3C:D4:57:2B:26:E2:56:8E:13:8D:34:46:7E:9B:89:33:A1 Certificate issuer: /CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314 Certificate serial: 2B93D34B3298B20861A9AA926A654DDDBA73C547 Authority key identifier: 33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS57976.roa Signing time: Mon 11 May 2026 17:32:15 +0000 ROA not before: Mon 11 May 2026 17:27:15 +0000 ROA not after: Mon 10 May 2027 17:32:15 +0000 asID: 57976 IP address blocks: 150.116.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.crl rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:93:d3:4b:32:98:b2:08:61:a9:aa:92:6a:65:4d:dd:ba:73:c5:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314 Validity Not Before: May 11 17:27:15 2026 GMT Not After : May 10 17:32:15 2027 GMT Subject: CN=417D993CD4572B26E2568E138D34467E9B8933A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3f:d1:9a:84:88:94:be:3c:a1:63:bc:88:3b: 61:a9:28:7f:ca:57:d3:05:b5:2e:64:c7:39:97:94: 75:0c:1a:fd:3d:89:b9:49:f0:f4:39:8b:cd:e8:8f: 15:1d:8d:9f:fe:87:e0:f6:53:3c:1d:4c:ea:08:d1: aa:80:1d:99:52:8c:75:46:dc:d0:47:75:1b:b5:17: 1e:da:06:10:5b:4b:66:a5:7f:64:71:6a:f0:e3:73: 5f:08:0d:64:57:53:fb:04:43:c8:8b:a7:b8:86:8d: 86:69:72:df:a7:94:79:77:18:e4:5e:1b:97:6b:6f: ad:47:e4:58:15:b7:23:a5:68:cc:45:14:64:11:77: a1:03:28:6d:e5:68:28:94:c5:30:77:7c:f2:43:cc: b9:c2:85:d7:ad:07:a9:37:65:5e:35:9a:a1:93:c2: 3a:31:65:a4:3f:ab:23:b5:1e:84:30:30:68:70:83: 39:ac:ac:48:e6:e2:f0:83:d2:26:ad:b5:8f:1b:58: 95:a8:ba:d0:6a:17:d4:8d:66:11:91:91:cc:a3:1c: 18:4b:57:b6:5c:d5:ef:d3:1b:78:87:07:f7:28:92: cf:3d:c1:d4:b5:c6:98:06:f5:79:b2:4d:12:03:1e: 5a:45:5b:78:99:d2:bc:e8:98:88:77:06:a7:de:fb: da:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:7D:99:3C:D4:57:2B:26:E2:56:8E:13:8D:34:46:7E:9B:89:33:A1 X509v3 Authority Key Identifier: keyid:33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS57976.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.116.9.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:12:5e:53:54:16:a4:d0:8a:22:70:ad:db:2c:81:5e:92:4a: 65:48:f9:ae:41:e4:fa:1f:a6:d5:8b:dc:35:bf:fa:66:18:f8: 40:6d:ef:2f:db:99:e7:42:88:21:5c:61:e2:67:67:a0:fd:1e: fe:84:d9:0e:fe:5a:4f:10:67:40:c8:6f:9e:99:96:ba:1c:31: f8:01:6c:d9:8d:30:fa:88:11:a3:9f:91:2f:8e:98:1e:bb:01: 72:bc:35:ac:e9:95:a7:74:7a:ad:fe:54:c6:cf:6b:37:14:0f: 2f:20:54:db:4e:c0:0f:7c:4b:93:c7:c7:60:f4:d4:68:21:37: a1:46:05:bc:da:cf:01:7f:b5:ca:3a:6e:29:86:20:e2:51:14: 44:4f:97:93:8f:35:36:25:35:1d:f1:f0:b5:41:ab:fa:19:73: 46:0c:e7:c5:ce:d6:c6:b6:02:14:83:c1:b9:ba:3d:56:e0:14: 27:75:f7:13:cf:1c:7f:1b:c2:dd:64:62:d6:a0:3a:1e:58:f1: 17:0b:54:97:22:d3:ad:ee:55:e7:68:e7:30:fa:dc:b5:bf:b7: c3:e5:9a:42:8f:db:ca:57:0c:59:48:75:86:ef:8c:03:03:d7: a9:f2:b8:c1:43:5d:00:d6:19:86:94:9c:5d:b7:25:9e:ae:c2: d4:94:83:6e -----BEGIN CERTIFICATE----- MIIErjCCA5agAwIBAgIUK5PTSzKYsghhqaqSamVN3bpzxUcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNDQTRCNUY0Mjk1QjY4MTIxMjdBRjU3NjFDNkQ3MzUz RDFGMDMxNDAeFw0yNjA1MTExNzI3MTVaFw0yNzA1MTAxNzMyMTVaMDMxMTAvBgNV BAMTKDQxN0Q5OTNDRDQ1NzJCMjZFMjU2OEUxMzhEMzQ0NjdFOUI4OTMzQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4P9GahIiUvjyhY7yIO2GpKH/K V9MFtS5kxzmXlHUMGv09iblJ8PQ5i83ojxUdjZ/+h+D2UzwdTOoI0aqAHZlSjHVG 3NBHdRu1Fx7aBhBbS2alf2RxavDjc18IDWRXU/sEQ8iLp7iGjYZpct+nlHl3GORe G5drb61H5FgVtyOlaMxFFGQRd6EDKG3laCiUxTB3fPJDzLnChdetB6k3ZV41mqGT wjoxZaQ/qyO1HoQwMGhwgzmsrEjm4vCD0iattY8bWJWoutBqF9SNZhGRkcyjHBhL V7Zc1e/TG3iHB/coks89wdS1xpgG9XmyTRIDHlpFW3iZ0rzomIh3Bqfe+9o1AgMB AAGjggG4MIIBtDAdBgNVHQ4EFgQUQX2ZPNRXKybiVo4TjTRGfpuJM6EwHwYDVR0j BBgwFoAUM8pLX0KVtoEhJ69XYcbXNT0fAxQwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJRUYt VFcvMC8zM0NBNEI1RjQyOTVCNjgxMjEyN0FGNTc2MUM2RDczNTNEMUYwMzE0LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzMzQ0E0QjVGNDI5NUI2ODEyMTI3QUY1NzYx QzZENzM1M0QxRjAzMTQuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4Yz cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSElFRi1UVy8wL0FTNTc5NzYu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBACWdAkwDQYJKoZIhvcNAQELBQADggEBAD0SXlNUFqTQiiJwrdss gV6SSmVI+a5B5PofptWL3DW/+mYY+EBt7y/bmedCiCFcYeJnZ6D9Hv6E2Q7+Wk8Q Z0DIb56ZlrocMfgBbNmNMPqIEaOfkS+OmB67AXK8Nazplad0eq3+VMbPazcUDy8g VNtOwA98S5PHx2D01GghN6FGBbzazwF/tco6bimGIOJRFERPl5OPNTYlNR3x8LVB q/oZc0YM58XO1sa2AhSDwbm6PVbgFCd19xPPHH8bwt1kYtagOh5Y8RcLVJci063u Vedo5zD63LW/t8PlmkKP28pXDFlIdYbvjAMD16nyuMFDXQDWGYaUnF23JZ6uwtSU g24= -----END CERTIFICATE-----Generated at Wed May 13 21:51:27 2026 by rpki-client