$ rpki-client -vvf rpkica.twnic.tw/rpki/CHIEF-TW/0/AS7532.roa File: AS7532.roa (raw, json) Hash identifier: XmGzEusu01Qc/t82T+l8B0d9yy7aFTUPd4r0xeo4QYE= Subject key identifier: BF:BE:6E:05:FC:E9:D4:08:DC:48:55:92:F7:0C:D2:5D:80:35:40:71 Certificate issuer: /CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314 Certificate serial: 6BF66B80CFF070DAC97AD9E88F64DAC8EFAFCD29 Authority key identifier: 33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS7532.roa Signing time: Mon 11 May 2026 17:17:33 +0000 ROA not before: Mon 11 May 2026 17:12:33 +0000 ROA not after: Mon 10 May 2027 17:17:33 +0000 asID: 7532 IP address blocks: 150.116.54.0/24 maxlen: 24 150.116.55.0/24 maxlen: 24 150.116.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.crl rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:f6:6b:80:cf:f0:70:da:c9:7a:d9:e8:8f:64:da:c8:ef:af:cd:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314 Validity Not Before: May 11 17:12:33 2026 GMT Not After : May 10 17:17:33 2027 GMT Subject: CN=BFBE6E05FCE9D408DC485592F70CD25D80354071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:72:09:98:d4:fb:7f:02:76:93:fc:c3:62:b3: 05:81:00:22:91:29:a5:51:8d:29:fa:cb:78:8f:a0: 45:22:26:20:ee:de:35:b6:92:cd:96:85:a1:e4:70: 50:6f:58:e4:19:4f:7c:68:e9:fd:87:b2:bf:42:4a: df:27:fb:7d:0a:54:41:c3:76:48:e3:41:36:2f:5c: dd:d5:8b:d3:de:2e:65:e8:4f:5b:42:0b:f6:d4:54: 5d:14:96:0b:4e:84:1c:0c:0c:0d:eb:ff:fc:93:75: 74:ff:99:cf:28:9f:30:8a:ed:1d:a1:df:c7:b1:3e: 6d:d0:9f:64:12:a2:4a:71:18:1d:2e:6b:c8:63:da: f2:f2:db:81:96:9f:8d:1d:94:4d:ce:78:ae:d4:e7: 1d:cd:71:90:31:db:24:15:88:11:8b:36:39:ce:07: b1:9a:1c:52:92:cc:04:bd:fa:31:30:a3:1e:8c:2c: 95:8c:d9:41:bc:85:df:c6:d9:ed:65:52:94:04:05: e4:5b:2e:55:4f:ec:e2:21:f3:99:f9:d4:a0:4a:81: 54:4c:56:19:5d:3e:54:c2:3e:46:d7:ca:88:b2:f4: d1:bc:f5:a6:e9:54:5b:dd:b7:5b:fe:88:5c:ae:db: 1c:f9:b1:8f:23:0f:9f:5b:39:f3:0a:66:21:22:49: b7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:BE:6E:05:FC:E9:D4:08:DC:48:55:92:F7:0C:D2:5D:80:35:40:71 X509v3 Authority Key Identifier: keyid:33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS7532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.116.54.0-150.116.63.255 Signature Algorithm: sha256WithRSAEncryption 19:37:ab:5a:2d:5c:3f:f8:a9:82:3d:11:4f:82:79:c5:52:e4: b6:56:6a:06:72:c8:40:02:7a:08:16:ec:e1:be:50:80:9c:8e: 43:5f:ff:a9:4c:ed:1a:6d:39:e3:8f:b7:91:d0:1c:c6:c7:2f: 6c:7e:29:21:35:f7:76:52:07:c7:9a:47:d1:d7:49:53:dd:a4: 81:43:2f:6f:d7:63:aa:59:14:91:a2:9a:4c:d4:2d:cb:43:ab: 49:dc:df:75:3f:5c:db:47:c2:fc:77:16:8b:7d:5a:c6:64:be: f4:74:12:74:55:33:7d:3e:b3:71:c3:e1:53:1d:73:bb:95:54: 69:bf:0a:df:ac:e8:38:08:99:5b:d3:05:3f:54:03:3e:d7:39: 6a:79:1f:8f:f0:09:f3:1d:ab:6c:5e:80:3d:c3:6b:ef:b8:e6: 3e:e0:c6:50:db:60:a2:af:9e:97:a1:c0:c0:0b:6a:cf:33:df: ba:82:22:db:bb:29:32:70:92:48:da:d9:6f:3f:11:45:ec:ac: c0:4e:af:a1:70:3d:b4:6b:6f:c7:37:f2:5a:a5:a2:ee:a0:8e: 5a:4f:c4:c8:12:68:58:d5:f9:8a:b7:80:10:ef:cf:43:66:0f: 5a:8a:d3:53:e2:e9:19:9f:f7:e0:02:b6:6e:df:90:63:6f:cd: dd:66:57:c5 -----BEGIN CERTIFICATE----- MIIEtTCCA52gAwIBAgIUa/ZrgM/wcNrJetnoj2TayO+vzSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNDQTRCNUY0Mjk1QjY4MTIxMjdBRjU3NjFDNkQ3MzUz RDFGMDMxNDAeFw0yNjA1MTExNzEyMzNaFw0yNzA1MTAxNzE3MzNaMDMxMTAvBgNV BAMTKEJGQkU2RTA1RkNFOUQ0MDhEQzQ4NTU5MkY3MENEMjVEODAzNTQwNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrcgmY1Pt/AnaT/MNiswWBACKR KaVRjSn6y3iPoEUiJiDu3jW2ks2WhaHkcFBvWOQZT3xo6f2Hsr9CSt8n+30KVEHD dkjjQTYvXN3Vi9PeLmXoT1tCC/bUVF0UlgtOhBwMDA3r//yTdXT/mc8onzCK7R2h 38exPm3Qn2QSokpxGB0ua8hj2vLy24GWn40dlE3OeK7U5x3NcZAx2yQViBGLNjnO B7GaHFKSzAS9+jEwox6MLJWM2UG8hd/G2e1lUpQEBeRbLlVP7OIh85n51KBKgVRM VhldPlTCPkbXyoiy9NG89abpVFvdt1v+iFyu2xz5sY8jD59bOfMKZiEiSbfPAgMB AAGjggG/MIIBuzAdBgNVHQ4EFgQUv75uBfzp1AjcSFWS9wzSXYA1QHEwHwYDVR0j BBgwFoAUM8pLX0KVtoEhJ69XYcbXNT0fAxQwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJRUYt VFcvMC8zM0NBNEI1RjQyOTVCNjgxMjEyN0FGNTc2MUM2RDczNTNEMUYwMzE0LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzMzQ0E0QjVGNDI5NUI2ODEyMTI3QUY1NzYx QzZENzM1M0QxRjAzMTQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4Yy cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DSElFRi1UVy8wL0FTNzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAnBggrBgEFBQcBBwEB/wQYMBYw FAQCAAEwDjAMAwQBlnQ2AwQGlnQAMA0GCSqGSIb3DQEBCwUAA4IBAQAZN6taLVw/ +KmCPRFPgnnFUuS2VmoGcshAAnoIFuzhvlCAnI5DX/+pTO0abTnjj7eR0BzGxy9s fikhNfd2UgfHmkfR10lT3aSBQy9v12OqWRSRoppM1C3LQ6tJ3N91P1zbR8L8dxaL fVrGZL70dBJ0VTN9PrNxw+FTHXO7lVRpvwrfrOg4CJlb0wU/VAM+1zlqeR+P8Anz HatsXoA9w2vvuOY+4MZQ22Cir56XocDAC2rPM9+6giLbuykycJJI2tlvPxFF7KzA Tq+hcD20a2/HN/JapaLuoI5aT8TIEmhY1fmKt4AQ789DZg9aitNT4ukZn/fgArZu 35Bjb83dZlfF -----END CERTIFICATE-----Generated at Wed May 13 21:51:29 2026 by rpki-client