$ rpki-client -vvf rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a3a2f33322d3332203d3e20313331363330.roa File: 323430323a346632303a3a2f33322d3332203d3e20313331363330.roa (raw, json) Hash identifier: 1HkzZ8xzmy/OZUVsiQY7oTz8Rgw5reF3WYzze2HTWVI= Subject key identifier: 98:A6:7C:13:35:CB:A0:7F:13:D8:2D:D7:CF:95:27:6D:B5:8D:02:70 Certificate issuer: /CN=3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE Certificate serial: 0496EA76AEA880D142C3E49A8A870786FD211F3A Authority key identifier: 3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a3a2f33322d3332203d3e20313331363330.roa Signing time: Mon 11 May 2026 17:58:22 +0000 ROA not before: Mon 11 May 2026 17:53:22 +0000 ROA not after: Mon 10 May 2027 17:58:22 +0000 asID: 131630 IP address blocks: 2402:4f20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.crl rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:96:ea:76:ae:a8:80:d1:42:c3:e4:9a:8a:87:07:86:fd:21:1f:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE Validity Not Before: May 11 17:53:22 2026 GMT Not After : May 10 17:58:22 2027 GMT Subject: CN=98A67C1335CBA07F13D82DD7CF95276DB58D0270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:57:5e:27:d7:71:17:03:7e:4f:a1:c6:a5:18: 28:ef:32:ef:19:73:b9:10:5a:92:37:ba:4f:ea:3f: 51:52:f3:af:2f:37:dd:c1:5b:98:58:ee:ee:f9:83: 87:a3:ee:73:4f:42:5a:69:0f:17:5c:bb:ac:4e:f3: 20:7e:fa:39:6d:9b:60:5a:1a:55:83:60:a5:36:03: 7a:3d:ef:00:54:14:4d:d4:c6:b7:53:ce:b4:84:7b: 25:e6:74:2a:9a:38:c3:95:dc:26:22:98:c0:4b:63: 6f:42:7e:2c:ff:08:d9:61:b0:a9:60:c7:e1:b9:3f: f5:27:49:4f:c3:65:ca:af:2c:54:03:03:3c:32:b7: 97:bc:a8:ff:af:c1:2b:b9:80:a2:e6:56:de:41:d7: 86:6f:4b:93:31:de:fc:f0:27:18:5e:eb:7e:74:48: 3a:af:f7:92:93:ae:ee:77:61:1e:0a:4d:27:6b:cd: 31:fd:b8:48:bd:a5:df:94:f5:15:02:4b:38:28:c8: b1:5c:d4:3d:2b:da:a7:a1:b5:ac:68:2a:56:ac:32: c7:e7:c2:44:9c:85:ec:c3:bb:d1:f7:90:5d:9d:f9: 71:ef:f3:ae:08:35:cd:41:b5:c6:16:1a:68:c2:97: 76:aa:5e:3e:17:a5:92:d6:2f:63:bd:4c:37:9a:6c: f6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:A6:7C:13:35:CB:A0:7F:13:D8:2D:D7:CF:95:27:6D:B5:8D:02:70 X509v3 Authority Key Identifier: keyid:3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a3a2f33322d3332203d3e20313331363330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4f20::/32 Signature Algorithm: sha256WithRSAEncryption 85:72:c9:b0:ff:7f:61:31:f0:a3:d3:f2:b2:ed:1c:04:39:e7: a8:08:86:aa:fc:d0:26:d2:43:66:11:38:8b:bf:8d:c7:71:5a: 49:1b:3d:16:45:31:99:fb:0d:a4:6c:ab:a9:7f:d9:ff:e5:9c: 9d:41:57:58:0a:9f:3f:02:a4:8b:79:00:0b:e4:a8:b8:cd:3e: ed:97:aa:af:43:5a:41:6e:87:82:9a:8c:4c:3a:0e:da:23:6c: fc:4c:1c:b8:c6:fe:93:48:9f:c2:de:97:21:31:8a:d3:f0:89: fc:1a:41:a2:ae:10:31:89:07:db:c4:7f:92:aa:e0:a2:ba:1b: 92:86:c5:f4:a2:33:c2:18:26:fd:dd:b1:40:eb:e0:e2:43:fb: c4:8f:02:06:2b:86:c1:77:15:d1:ae:b0:95:8d:07:31:27:5b: 4f:da:13:ea:a8:8c:c2:33:f2:c1:12:2e:2e:f2:39:29:a8:49: 86:05:58:1f:59:1f:8e:1e:2a:1c:20:e0:f5:17:7b:cb:38:06: 7f:9e:24:6b:4a:f4:cd:e0:36:cb:36:ab:16:b6:9f:93:f0:dd: f4:79:56:5b:1f:64:0f:a5:ec:d0:4a:f3:c9:4a:c8:ba:28:39: 56:cc:4c:06:d0:e7:d3:26:41:b7:df:a7:f1:da:68:b5:49:c3: b9:eb:99:eb -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUBJbqdq6ogNFCw+SaiocHhv0hHzowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0YyRkEwRTlBOUI3QTM2NEQ0OUEyRUE2MUVGMzg5Njcw OUM0QURBRTAeFw0yNjA1MTExNzUzMjJaFw0yNzA1MTAxNzU4MjJaMDMxMTAvBgNV BAMTKDk4QTY3QzEzMzVDQkEwN0YxM0Q4MkREN0NGOTUyNzZEQjU4RDAyNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVV14n13EXA35PocalGCjvMu8Z c7kQWpI3uk/qP1FS868vN93BW5hY7u75g4ej7nNPQlppDxdcu6xO8yB++jltm2Ba GlWDYKU2A3o97wBUFE3UxrdTzrSEeyXmdCqaOMOV3CYimMBLY29Cfiz/CNlhsKlg x+G5P/UnSU/DZcqvLFQDAzwyt5e8qP+vwSu5gKLmVt5B14ZvS5Mx3vzwJxhe6350 SDqv95KTru53YR4KTSdrzTH9uEi9pd+U9RUCSzgoyLFc1D0r2qehtaxoKlasMsfn wkSchezDu9H3kF2d+XHv864INc1BtcYWGmjCl3aqXj4XpZLWL2O9TDeabPbpAgMB AAGjggHiMIIB3jAdBgNVHQ4EFgQUmKZ8EzXLoH8T2C3Xz5UnbbWNAnAwHwYDVR0j BBgwFoAUPy+g6am3o2TUmi6mHvOJZwnEra4wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTEFaQ08v MC8zRjJGQTBFOUE5QjdBMzY0RDQ5QTJFQTYxRUYzODk2NzA5QzRBREFFLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzNGMkZBMEU5QTlCN0EzNjRENDlBMkVBNjFFRjM4 OTY3MDlDNEFEQUUuY2VyMHsGCCsGAQUFBwELBG8wbTBrBggrBgEFBQcwC4ZfcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MQVpDTy8wLzMyMzQzMDMyM2EzNDY2 MzIzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMxMzMzMTM2MzMzMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQCTyAwDQYJKoZIhvcNAQELBQADggEBAIVyybD/f2Ex8KPT8rLtHAQ556gI hqr80CbSQ2YROIu/jcdxWkkbPRZFMZn7DaRsq6l/2f/lnJ1BV1gKnz8CpIt5AAvk qLjNPu2Xqq9DWkFuh4KajEw6DtojbPxMHLjG/pNIn8LelyExitPwifwaQaKuEDGJ B9vEf5Kq4KK6G5KGxfSiM8IYJv3dsUDr4OJD+8SPAgYrhsF3FdGusJWNBzEnW0/a E+qojMIz8sESLi7yOSmoSYYFWB9ZH44eKhwg4PUXe8s4Bn+eJGtK9M3gNss2qxa2 n5Pw3fR5VlsfZA+l7NBK88lKyLooOVbMTAbQ59MmQbffp/HaaLVJw7nrmes= -----END CERTIFICATE-----Generated at Wed May 13 21:12:29 2026 by rpki-client