$ rpki-client -vvf rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a343a3a2f34382d3438203d3e20313331363330.roa File: 323430323a346632303a343a3a2f34382d3438203d3e20313331363330.roa (raw, json) Hash identifier: K1744UKAf+z71qZv3nHhgAju8M4LXcw6dU0movyAPhI= Subject key identifier: FD:4C:B0:3F:E1:74:C7:4E:38:E9:9B:FD:FF:B3:0A:DC:33:F9:4B:0A Certificate issuer: /CN=3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE Certificate serial: 5F877EE25A75617A925143538A290426CBE71FFC Authority key identifier: 3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a343a3a2f34382d3438203d3e20313331363330.roa Signing time: Mon 11 May 2026 17:58:25 +0000 ROA not before: Mon 11 May 2026 17:53:25 +0000 ROA not after: Mon 10 May 2027 17:58:25 +0000 asID: 131630 IP address blocks: 2402:4f20:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.crl rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:87:7e:e2:5a:75:61:7a:92:51:43:53:8a:29:04:26:cb:e7:1f:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE Validity Not Before: May 11 17:53:25 2026 GMT Not After : May 10 17:58:25 2027 GMT Subject: CN=FD4CB03FE174C74E38E99BFDFFB30ADC33F94B0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4b:97:82:08:7e:b6:5c:19:49:22:a7:77:c5: 04:81:8c:54:cb:b2:a9:23:1a:2f:30:6b:8b:fa:53: d4:f2:a2:5c:6b:94:c3:3c:86:a7:bf:5a:73:9f:05: 8d:a7:a3:35:a9:db:bc:56:ce:0e:64:61:ce:ca:e5: 4e:62:19:4e:6f:f9:1b:ff:d9:cf:7b:ba:18:f2:0e: 9d:80:66:17:d8:0f:4e:2e:eb:8f:ee:18:56:42:35: 6c:91:e3:ab:9b:ea:61:89:98:7b:09:85:d7:28:19: 39:f3:69:44:b3:c1:40:cc:55:fb:5c:18:36:54:2f: 63:42:f9:ef:75:c2:ce:93:82:63:cb:dc:26:8f:ed: 00:c1:4d:f5:04:82:38:a0:2d:d4:3a:28:f9:bf:b7: dd:7b:60:aa:00:a9:02:8f:05:30:df:55:85:b6:ae: 75:9a:4c:0f:c8:dc:51:cf:7b:70:1a:fd:bf:46:64: bc:03:0b:f9:2d:a7:30:f3:68:27:1a:77:5d:a9:ee: 2a:9e:06:47:77:fd:0b:45:28:26:47:b8:44:52:3d: 90:7f:86:f9:d7:d8:86:ea:81:66:54:d9:ae:15:91: 81:90:63:82:9f:33:76:c6:25:a6:f7:f2:39:51:7b: aa:24:e1:ce:d1:7a:25:f5:71:62:8b:81:68:9e:c8: 91:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:4C:B0:3F:E1:74:C7:4E:38:E9:9B:FD:FF:B3:0A:DC:33:F9:4B:0A X509v3 Authority Key Identifier: keyid:3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a343a3a2f34382d3438203d3e20313331363330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4f20:4::/48 Signature Algorithm: sha256WithRSAEncryption 6a:4f:ff:0b:d6:25:6c:1a:07:64:6c:c0:6a:87:32:a1:5d:e4: 77:f1:e7:b1:e8:9a:57:28:e1:2d:af:b1:58:be:e1:f2:e1:6f: 1c:0d:3b:62:dd:0a:9a:64:15:d6:e9:ca:fe:49:db:a6:ec:d0: 7a:cf:a0:82:cc:1f:15:5b:82:cb:2e:ff:49:d3:a8:a5:8a:74: 5c:1b:21:24:54:ec:50:e7:af:f3:3a:ef:56:a3:d5:e0:f1:06: d8:98:8f:7d:98:91:f0:bb:a9:d0:99:3e:3c:9e:4c:7a:a6:e2: b9:87:39:82:2a:21:1f:a8:92:1d:03:23:d8:44:60:fb:30:59: 84:c7:07:0c:ec:c3:66:51:16:0f:6c:29:83:c1:79:3b:aa:62: 0b:e7:8d:64:ab:fd:b4:ef:14:bf:49:07:85:f8:39:5f:a9:36: 93:e6:9e:3f:c5:f4:0b:b3:69:b8:f1:c1:12:81:a2:0b:11:36: 7b:0e:4e:1e:b7:df:cb:21:42:82:c6:92:b6:30:1e:ac:51:77: ac:33:f0:aa:75:43:a4:70:ac:9e:19:70:90:e0:46:c1:45:1b: 28:22:27:46:e1:4d:a2:6d:82:93:d4:4a:c4:00:5f:24:f7:60: 3a:07:9d:a1:51:34:fe:f3:aa:f4:f0:93:19:df:4f:a2:a5:1e: 80:72:d1:1a -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUX4d+4lp1YXqSUUNTiikEJsvnH/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0YyRkEwRTlBOUI3QTM2NEQ0OUEyRUE2MUVGMzg5Njcw OUM0QURBRTAeFw0yNjA1MTExNzUzMjVaFw0yNzA1MTAxNzU4MjVaMDMxMTAvBgNV BAMTKEZENENCMDNGRTE3NEM3NEUzOEU5OUJGREZGQjMwQURDMzNGOTRCMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0S5eCCH62XBlJIqd3xQSBjFTL sqkjGi8wa4v6U9TyolxrlMM8hqe/WnOfBY2nozWp27xWzg5kYc7K5U5iGU5v+Rv/ 2c97uhjyDp2AZhfYD04u64/uGFZCNWyR46ub6mGJmHsJhdcoGTnzaUSzwUDMVftc GDZUL2NC+e91ws6TgmPL3CaP7QDBTfUEgjigLdQ6KPm/t917YKoAqQKPBTDfVYW2 rnWaTA/I3FHPe3Aa/b9GZLwDC/ktpzDzaCcad12p7iqeBkd3/QtFKCZHuERSPZB/ hvnX2IbqgWZU2a4VkYGQY4KfM3bGJab38jlRe6ok4c7ReiX1cWKLgWieyJHfAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQU/UywP+F0x0446Zv9/7MK3DP5SwowHwYDVR0j BBgwFoAUPy+g6am3o2TUmi6mHvOJZwnEra4wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTEFaQ08v MC8zRjJGQTBFOUE5QjdBMzY0RDQ5QTJFQTYxRUYzODk2NzA5QzRBREFFLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzNGMkZBMEU5QTlCN0EzNjRENDlBMkVBNjFFRjM4 OTY3MDlDNEFEQUUuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEFBQcwC4ZjcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MQVpDTy8wLzMyMzQzMDMyM2EzNDY2 MzIzMDNhMzQzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzNjMzMzAucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAkAk8gAAQwDQYJKoZIhvcNAQELBQADggEBAGpP/wvWJWwaB2RswGqH MqFd5Hfx57Homlco4S2vsVi+4fLhbxwNO2LdCppkFdbpyv5J26bs0HrPoILMHxVb gssu/0nTqKWKdFwbISRU7FDnr/M671aj1eDxBtiYj32YkfC7qdCZPjyeTHqm4rmH OYIqIR+okh0DI9hEYPswWYTHBwzsw2ZRFg9sKYPBeTuqYgvnjWSr/bTvFL9JB4X4 OV+pNpPmnj/F9AuzabjxwRKBogsRNnsOTh6338shQoLGkrYwHqxRd6wz8Kp1Q6Rw rJ4ZcJDgRsFFGygiJ0bhTaJtgpPUSsQAXyT3YDoHnaFRNP7zqvTwkxnfT6KlHoBy 0Ro= -----END CERTIFICATE-----Generated at Wed May 13 21:12:40 2026 by rpki-client