$ rpki-client -vvf rpkica.twnic.tw/rpki/LAZCO/1/3135312e3135382e3232342e302f32332d3233203d3e20313331363330.roa File: 3135312e3135382e3232342e302f32332d3233203d3e20313331363330.roa (raw, json) Hash identifier: UGeKbObtquowJEySOq447BwTw1IrQgKYmkBRzzCAemk= Subject key identifier: 7F:E9:B9:DC:46:03:19:1B:59:AF:91:18:B6:20:22:2F:BA:8B:4C:82 Certificate issuer: /CN=BFDB40496A2E2FD9B4E4F96B3589413B1F67B105 Certificate serial: 218710CC77FD287FD3527888266E094E64B9E645 Authority key identifier: BF:DB:40:49:6A:2E:2F:D9:B4:E4:F9:6B:35:89:41:3B:1F:67:B1:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.cer Subject info access: rsync://rpkica.twnic.tw/rpki/LAZCO/1/3135312e3135382e3232342e302f32332d3233203d3e20313331363330.roa Signing time: Thu 14 May 2026 10:04:57 +0000 ROA not before: Thu 14 May 2026 09:59:57 +0000 ROA not after: Thu 13 May 2027 10:04:57 +0000 asID: 131630 IP address blocks: 151.158.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/LAZCO/1/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.crl rsync://rpkica.twnic.tw/rpki/LAZCO/1/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/3/C49BAE2430BEEC354C1B14F226E761FC9BDCF005.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/3/C49BAE2430BEEC354C1B14F226E761FC9BDCF005.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xJuuJDC-7DVMGxTyJudh_Jvc8AU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 12:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:87:10:cc:77:fd:28:7f:d3:52:78:88:26:6e:09:4e:64:b9:e6:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BFDB40496A2E2FD9B4E4F96B3589413B1F67B105 Validity Not Before: May 14 09:59:57 2026 GMT Not After : May 13 10:04:57 2027 GMT Subject: CN=7FE9B9DC4603191B59AF9118B620222FBA8B4C82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:39:10:af:8a:c7:96:5a:5a:fc:7c:5d:38:d1: cc:21:10:26:4e:c7:41:96:86:83:a1:c0:7d:e0:c8: de:d2:11:fb:1c:7a:5d:f2:f1:1c:b2:a2:61:e8:3d: a2:73:7b:4b:79:f1:e3:9b:e9:b2:70:7b:2e:4a:57: 64:c7:88:d3:58:45:ec:95:94:12:7e:80:4f:74:57: 28:34:fa:25:9c:76:c6:29:d2:bb:4d:a1:7f:e3:98: f7:9e:9a:83:cb:8c:65:ae:82:bf:05:9f:2f:f3:80: ae:03:63:f7:68:9a:ed:2c:18:8f:86:9f:16:1e:31: 55:be:52:1c:3d:8f:77:ac:91:bd:fe:64:37:64:df: 6a:38:f8:a8:fd:46:8d:80:4f:45:86:16:20:ec:73: ca:f4:15:0d:af:9b:35:6d:de:a9:b7:46:6b:ad:ee: 88:c2:84:d5:11:3f:93:e7:90:4c:dc:1f:36:62:bf: f5:af:d8:28:6b:e7:88:b8:67:4f:ed:22:c0:4f:6a: b2:52:e3:80:ed:b9:23:93:b1:1a:01:7c:ad:1e:9b: 93:4c:fb:58:4f:84:d5:90:a1:41:19:70:1f:fe:ce: 1a:8e:47:c7:41:dc:c8:48:87:a5:41:1f:b6:53:33: 24:7a:29:dc:33:1b:ba:fe:be:12:4f:cb:2b:2a:91: 07:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E9:B9:DC:46:03:19:1B:59:AF:91:18:B6:20:22:2F:BA:8B:4C:82 X509v3 Authority Key Identifier: keyid:BF:DB:40:49:6A:2E:2F:D9:B4:E4:F9:6B:35:89:41:3B:1F:67:B1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/LAZCO/1/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/LAZCO/1/3135312e3135382e3232342e302f32332d3233203d3e20313331363330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.224.0/23 Signature Algorithm: sha256WithRSAEncryption 03:b0:87:65:fc:89:5e:98:7e:01:dc:bc:f6:6f:9c:5f:d9:85: 0b:ae:ec:de:1d:32:67:0e:f5:3f:66:cb:27:74:9f:d7:8b:e3: a5:91:31:7a:9b:85:40:32:74:d8:a8:12:ff:2a:64:51:14:9f: 42:03:28:03:ad:b2:0a:3f:0d:68:09:7f:c0:e6:47:d6:18:f9: ee:5a:ae:fd:39:7b:6d:05:1b:8d:c8:e4:25:42:40:e1:2f:0a: 9b:d6:b3:70:5c:5c:d4:8f:95:47:a4:83:24:e4:90:0b:11:eb: d5:1c:4e:14:1a:1b:0c:b6:ef:cc:4c:85:ff:44:98:20:1f:7c: 17:ae:3a:a3:5a:21:9b:60:19:d1:d6:42:cb:a5:a7:e6:74:fa: 81:53:e6:31:2e:ea:ac:41:56:12:c8:76:5a:98:ed:fa:ef:98: 67:5b:ae:8b:45:ae:f9:62:69:a2:d9:fe:56:82:24:16:32:53: 1f:2d:c6:8d:bc:40:22:60:3a:e2:b5:99:26:5e:1a:a2:8f:a2: fe:13:b6:ff:94:82:27:76:79:e3:83:68:06:b4:4c:8f:95:c3: 52:a8:c0:94:b7:a1:54:71:6c:97:b8:d3:23:27:5b:8e:14:29: f3:7e:ff:8f:5e:81:f4:d8:07:51:8f:0d:4b:bd:3e:5c:c8:fc: f0:32:f8:7e -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgIUIYcQzHf9KH/TUniIJm4JTmS55kUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkZEQjQwNDk2QTJFMkZEOUI0RTRGOTZCMzU4OTQxM0Ix RjY3QjEwNTAeFw0yNjA1MTQwOTU5NTdaFw0yNzA1MTMxMDA0NTdaMDMxMTAvBgNV BAMTKDdGRTlCOURDNDYwMzE5MUI1OUFGOTExOEI2MjAyMjJGQkE4QjRDODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ORCviseWWlr8fF040cwhECZO x0GWhoOhwH3gyN7SEfscel3y8RyyomHoPaJze0t58eOb6bJwey5KV2THiNNYReyV lBJ+gE90Vyg0+iWcdsYp0rtNoX/jmPeemoPLjGWugr8Fny/zgK4DY/domu0sGI+G nxYeMVW+Uhw9j3eskb3+ZDdk32o4+Kj9Ro2AT0WGFiDsc8r0FQ2vmzVt3qm3Rmut 7ojChNURP5PnkEzcHzZiv/Wv2Chr54i4Z0/tIsBParJS44DtuSOTsRoBfK0em5NM +1hPhNWQoUEZcB/+zhqOR8dB3MhIh6VBH7ZTMyR6KdwzG7r+vhJPyysqkQf3AgMB AAGjggHlMIIB4TAdBgNVHQ4EFgQUf+m53EYDGRtZr5EYtiAiL7qLTIIwHwYDVR0j BBgwFoAUv9tASWouL9m05PlrNYlBOx9nsQUwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTEFaQ08v MS9CRkRCNDA0OTZBMkUyRkQ5QjRFNEY5NkIzNTg5NDEzQjFGNjdCMTA1LmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8zL0JGREI0MDQ5NkEyRTJGRDlCNEU0Rjk2QjM1ODk0 MTNCMUY2N0IxMDUuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEFBQcwC4ZjcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MQVpDTy8xLzMxMzUzMTJlMzEzNTM4 MmUzMjMyMzQyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzMTMzMzEzNjMzMzAucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGXnuAwDQYJKoZIhvcNAQELBQADggEBAAOwh2X8iV6YfgHcvPZvnF/Z hQuu7N4dMmcO9T9myyd0n9eL46WRMXqbhUAydNioEv8qZFEUn0IDKAOtsgo/DWgJ f8DmR9YY+e5arv05e20FG43I5CVCQOEvCpvWs3BcXNSPlUekgyTkkAsR69UcThQa Gwy278xMhf9EmCAffBeuOqNaIZtgGdHWQsulp+Z0+oFT5jEu6qxBVhLIdlqY7frv mGdbrotFrvliaaLZ/laCJBYyUx8txo28QCJgOuK1mSZeGqKPov4Ttv+Ugid2eeOD aAa0TI+Vw1KowJS3oVRxbJe40yMnW44UKfN+/49egfTYB1GPDUu9PlzI/PAy+H4= -----END CERTIFICATE-----Generated at Thu May 28 06:26:30 2026 by rpki-client