$ rpki-client -vvf rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a353a3a2f34382d3438203d3e20313331363330.roa File: 323430323a346632303a353a3a2f34382d3438203d3e20313331363330.roa (raw, json) Hash identifier: bU1HQDuT0IRVu34E/RZMoTgSImGbDCROI5x6EQPDfzA= Subject key identifier: D7:59:B6:91:53:D7:27:93:0B:D3:F7:E8:1A:E9:C9:7B:5F:A9:27:39 Certificate issuer: /CN=3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE Certificate serial: 76756FC1A0E0536D0D659EAB17EDE652BA1A98F4 Authority key identifier: 3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a353a3a2f34382d3438203d3e20313331363330.roa Signing time: Mon 11 May 2026 17:58:26 +0000 ROA not before: Mon 11 May 2026 17:53:26 +0000 ROA not after: Mon 10 May 2027 17:58:26 +0000 asID: 131630 IP address blocks: 2402:4f20:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.crl rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:75:6f:c1:a0:e0:53:6d:0d:65:9e:ab:17:ed:e6:52:ba:1a:98:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE Validity Not Before: May 11 17:53:26 2026 GMT Not After : May 10 17:58:26 2027 GMT Subject: CN=D759B69153D727930BD3F7E81AE9C97B5FA92739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c9:6b:9f:5a:68:c2:fe:d2:ec:f0:fb:0d:58: d8:89:bc:d9:d6:51:27:15:86:27:f1:9d:10:f8:7d: 2b:39:cf:62:4c:77:1c:bb:f6:ef:13:ae:bc:d0:d4: 88:9a:5d:8b:5b:dd:ed:68:e1:de:32:85:91:97:7b: bb:32:53:87:d9:8b:c2:3e:0e:0b:ee:5b:ae:2b:cb: 59:1f:1a:b6:84:22:c3:c5:b2:ff:65:58:49:af:5e: 04:24:ed:5a:ba:b7:77:2d:fe:28:10:9f:cf:35:73: 96:f6:70:d4:ba:79:20:fe:22:8b:de:f7:b6:b1:f4: 87:bb:81:52:a3:38:45:1e:11:53:51:85:1e:22:ff: ce:ce:86:8f:b2:aa:5e:eb:6c:b1:90:34:1c:9e:3e: 8e:5d:be:54:f1:6e:54:80:a8:a9:61:ea:d8:76:17: 81:6a:71:be:b1:51:43:7e:dd:d6:31:ef:af:e6:4c: 00:a2:b9:11:e4:51:23:2f:59:1b:86:1d:37:df:af: 79:27:f7:9e:35:2a:bd:79:a1:87:d7:8c:57:17:0b: a1:4a:e8:49:8b:65:9f:dc:09:57:a1:4b:a7:0e:ed: c0:57:f6:ad:53:d9:75:27:ee:a0:fe:15:30:b3:d1: 4e:76:6b:2d:b0:87:fc:0f:ad:5a:45:82:d1:10:b1: dd:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:59:B6:91:53:D7:27:93:0B:D3:F7:E8:1A:E9:C9:7B:5F:A9:27:39 X509v3 Authority Key Identifier: keyid:3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a353a3a2f34382d3438203d3e20313331363330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4f20:5::/48 Signature Algorithm: sha256WithRSAEncryption 5d:82:5f:56:cd:e7:e7:1d:da:9d:70:92:90:82:e0:93:d6:59: f4:53:14:fb:dd:49:19:15:36:69:8f:b5:2e:0d:a8:d6:72:5f: 05:b5:74:99:1c:f5:12:bd:e6:38:fa:cb:61:36:ff:9d:bd:2b: bd:2d:62:ed:c2:38:35:56:2f:5f:78:09:dd:60:12:28:6a:63: 80:41:be:ed:9d:87:ad:35:8d:2d:0a:97:79:21:9e:9e:90:b6: 85:ef:ee:4d:97:c1:ed:c9:ab:3d:34:6e:4d:7c:24:70:b6:85: 46:13:c6:74:e3:f7:da:26:98:16:68:10:12:be:73:6a:59:db: bd:53:41:97:16:63:3c:7b:ce:5f:fb:31:bf:33:36:17:42:e1: 0f:c8:61:e3:7e:2a:22:12:36:d8:9d:93:e2:ab:28:e7:6a:81: 49:e9:9b:f8:3f:21:57:a5:13:a8:d4:1a:c1:8f:98:61:a8:88: 4c:93:20:9e:36:10:3a:b6:5b:af:d7:60:72:8f:bf:bc:81:79: 5a:20:1f:e1:f3:3f:62:96:30:36:fa:60:83:24:f3:c1:44:11: 58:9a:c9:ad:9a:3c:bc:6d:57:85:a0:7e:4b:04:f5:d5:ba:66: e6:9f:75:9b:8c:c2:ce:ca:d1:3a:8f:f1:ad:5f:7e:63:6c:c2: a3:e9:94:c8 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUdnVvwaDgU20NZZ6rF+3mUroamPQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0YyRkEwRTlBOUI3QTM2NEQ0OUEyRUE2MUVGMzg5Njcw OUM0QURBRTAeFw0yNjA1MTExNzUzMjZaFw0yNzA1MTAxNzU4MjZaMDMxMTAvBgNV BAMTKEQ3NTlCNjkxNTNENzI3OTMwQkQzRjdFODFBRTlDOTdCNUZBOTI3MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5yWufWmjC/tLs8PsNWNiJvNnW UScVhifxnRD4fSs5z2JMdxy79u8TrrzQ1IiaXYtb3e1o4d4yhZGXe7syU4fZi8I+ DgvuW64ry1kfGraEIsPFsv9lWEmvXgQk7Vq6t3ct/igQn881c5b2cNS6eSD+Iove 97ax9Ie7gVKjOEUeEVNRhR4i/87Oho+yql7rbLGQNByePo5dvlTxblSAqKlh6th2 F4Fqcb6xUUN+3dYx76/mTACiuRHkUSMvWRuGHTffr3kn9541Kr15oYfXjFcXC6FK 6EmLZZ/cCVehS6cO7cBX9q1T2XUn7qD+FTCz0U52ay2wh/wPrVpFgtEQsd3RAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQU11m2kVPXJ5ML0/foGunJe1+pJzkwHwYDVR0j BBgwFoAUPy+g6am3o2TUmi6mHvOJZwnEra4wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTEFaQ08v MC8zRjJGQTBFOUE5QjdBMzY0RDQ5QTJFQTYxRUYzODk2NzA5QzRBREFFLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzNGMkZBMEU5QTlCN0EzNjRENDlBMkVBNjFFRjM4 OTY3MDlDNEFEQUUuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEFBQcwC4ZjcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MQVpDTy8wLzMyMzQzMDMyM2EzNDY2 MzIzMDNhMzUzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzNjMzMzAucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAkAk8gAAUwDQYJKoZIhvcNAQELBQADggEBAF2CX1bN5+cd2p1wkpCC 4JPWWfRTFPvdSRkVNmmPtS4NqNZyXwW1dJkc9RK95jj6y2E2/529K70tYu3CODVW L194Cd1gEihqY4BBvu2dh601jS0Kl3khnp6QtoXv7k2Xwe3Jqz00bk18JHC2hUYT xnTj99ommBZoEBK+c2pZ271TQZcWYzx7zl/7Mb8zNhdC4Q/IYeN+KiISNtidk+Kr KOdqgUnpm/g/IVelE6jUGsGPmGGoiEyTIJ42EDq2W6/XYHKPv7yBeVogH+HzP2KW MDb6YIMk88FEEViaya2aPLxtV4WgfksE9dW6ZuafdZuMws7K0TqP8a1ffmNswqPp lMg= -----END CERTIFICATE-----Generated at Wed May 13 21:12:38 2026 by rpki-client