$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LAZCO/09d502GqBlO6UFO__wIHIFyjhgI.roa File: 09d502GqBlO6UFO__wIHIFyjhgI.roa (raw, json) Hash identifier: zyr7C8qbHHFmR/n5OUbqGTyrJATI+n7mgzriRst5agE= Subject key identifier: D3:D7:79:D3:61:AA:06:53:BA:50:53:BF:FF:02:07:20:5C:A3:86:02 Certificate issuer: /CN=3BE896CFF2C01697848450DAB7F21A1E14A4F086 Certificate serial: 09 Authority key identifier: 3B:E8:96:CF:F2:C0:16:97:84:84:50:DA:B7:F2:1A:1E:14:A4:F0:86 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/09d502GqBlO6UFO__wIHIFyjhgI.roa Signing time: Wed 04 Mar 2026 07:43:58 +0000 ROA not before: Wed 04 Mar 2026 07:43:58 +0000 ROA not after: Wed 24 Feb 2027 15:30:19 +0000 asID: 131630 IP address blocks: 2402:4f20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 13:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE896CFF2C01697848450DAB7F21A1E14A4F086 Validity Not Before: Mar 4 07:43:58 2026 GMT Not After : Feb 24 15:30:19 2027 GMT Subject: CN=D3D779D361AA0653BA5053BFFF0207205CA38602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:89:27:9c:fb:91:93:27:d2:2f:f3:df:5a:dd: ab:84:80:83:39:fe:82:b9:20:8f:38:24:94:64:b7: e0:42:9a:03:38:2d:e8:23:1a:4c:c8:49:ac:99:e6: c3:e7:e0:81:cc:0c:f9:b6:77:c5:a3:d1:e3:c1:e8: b1:b2:c4:09:b2:7b:2c:34:1e:94:15:39:85:60:b7: 50:9d:14:e2:4c:d0:14:ed:63:69:a7:d4:5c:5b:eb: ec:11:e5:2a:fe:99:ca:10:6e:db:4c:bc:07:23:3a: 07:d6:93:72:bc:9d:f1:a0:18:0c:a1:3c:5a:e2:4f: a8:b7:13:4b:89:81:c7:3f:7b:0c:dc:da:ba:05:ad: 5c:3c:8a:6f:04:47:68:07:1c:91:25:5a:94:7f:b7: 45:f2:c8:b4:91:31:f0:c2:55:f9:fd:3d:58:9d:b2: 65:4e:87:43:62:c3:37:26:48:96:2f:ce:14:df:ff: c3:88:7f:a3:95:d7:c2:b3:17:59:c4:ed:d9:71:05: 3e:80:3b:ce:6d:8e:b4:b6:39:f9:8d:ad:46:5a:64: a1:0f:8d:77:05:4d:e9:1f:23:2f:23:86:d0:c9:73: da:ad:4b:a9:02:f4:aa:1e:2e:68:19:02:8c:f3:e7: fe:97:a4:4e:91:8f:4e:18:65:cf:5c:b3:c4:c9:e6: 5b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D7:79:D3:61:AA:06:53:BA:50:53:BF:FF:02:07:20:5C:A3:86:02 X509v3 Authority Key Identifier: keyid:3B:E8:96:CF:F2:C0:16:97:84:84:50:DA:B7:F2:1A:1E:14:A4:F0:86 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/09d502GqBlO6UFO__wIHIFyjhgI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:4f20::/48 Signature Algorithm: sha256WithRSAEncryption 97:16:e1:de:e0:b4:90:48:c5:03:47:d2:0b:28:aa:30:f8:29: 96:69:e7:af:98:cc:e2:5c:80:9c:f5:e1:6a:b1:27:6a:97:4f: f7:9e:32:93:e0:95:c8:31:fd:8e:d9:be:0f:25:2a:78:ad:99: 3d:85:0c:a5:41:48:5c:6b:c1:f8:97:74:cf:cd:a2:dc:c5:14: 34:7b:77:f1:90:de:a1:0f:94:fa:ca:28:20:5e:7c:17:8d:05: dc:78:e7:20:7d:df:91:81:d1:b6:14:a9:35:a6:75:66:69:25: 9f:2b:14:0e:8f:cf:f6:15:18:b1:11:21:10:b3:46:83:2a:6c: 86:02:61:ca:c4:44:fe:6f:42:a3:27:87:47:e6:82:43:50:f3: 86:94:39:0c:c5:a6:85:0f:3d:43:41:c9:77:ef:89:d2:fb:c5: 08:99:ef:1f:a3:4a:fe:56:98:cf:39:e4:76:1a:08:3d:f1:b6: 13:31:f3:ff:51:f4:ba:1f:bc:d5:4b:01:bc:e7:bf:ff:4e:8b: 03:d1:02:ee:be:31:6f:9d:15:23:a2:bd:e6:4f:b0:62:7e:11: 78:7a:81:43:7c:98:55:07:8c:8d:79:67:1c:9f:42:1d:dc:22: b9:2e:6b:82:ce:0e:bd:72:06:58:ef:f9:a6:69:5d:03:41:a9: d2:e9:ee:96 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIBCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzQkU4 OTZDRkYyQzAxNjk3ODQ4NDUwREFCN0YyMUExRTE0QTRGMDg2MB4XDTI2MDMwNDA3 NDM1OFoXDTI3MDIyNDE1MzAxOVowMzExMC8GA1UEAxMoRDNENzc5RDM2MUFBMDY1 M0JBNTA1M0JGRkYwMjA3MjA1Q0EzODYwMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANuJJ5z7kZMn0i/z31rdq4SAgzn+grkgjzgklGS34EKaAzgt6CMa TMhJrJnmw+fggcwM+bZ3xaPR48HosbLECbJ7LDQelBU5hWC3UJ0U4kzQFO1jaafU XFvr7BHlKv6ZyhBu20y8ByM6B9aTcryd8aAYDKE8WuJPqLcTS4mBxz97DNzaugWt XDyKbwRHaAcckSValH+3RfLItJEx8MJV+f09WJ2yZU6HQ2LDNyZIli/OFN//w4h/ o5XXwrMXWcTt2XEFPoA7zm2OtLY5+Y2tRlpkoQ+NdwVN6R8jLyOG0Mlz2q1LqQL0 qh4uaBkCjPPn/pekTpGPThhlz1yzxMnmW1sCAwEAAaOCAe8wggHrMB0GA1UdDgQW BBTT13nTYaoGU7pQU7//AgcgXKOGAjAfBgNVHSMEGDAWgBQ76JbP8sAWl4SEUNq3 8hoeFKTwhjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MQVpDTy9P LWlXel9MQUZwZUVoRkRhdF9JYUhoU2s4SVkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L08taVd6X0xBRnBlRWhGRGF0X0lhSGhTazhJWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0xBWkNPLzA5ZDUwMkdxQmxPNlVGT19fd0lI SUZ5amhnSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAk8g AAAwDQYJKoZIhvcNAQELBQADggEBAJcW4d7gtJBIxQNH0gsoqjD4KZZp56+YzOJc gJz14WqxJ2qXT/eeMpPglcgx/Y7Zvg8lKnitmT2FDKVBSFxrwfiXdM/NotzFFDR7 d/GQ3qEPlPrKKCBefBeNBdx45yB935GB0bYUqTWmdWZpJZ8rFA6Pz/YVGLERIRCz RoMqbIYCYcrERP5vQqMnh0fmgkNQ84aUOQzFpoUPPUNByXfvidL7xQiZ7x+jSv5W mM855HYaCD3xthMx8/9R9LofvNVLAbznv/9OiwPRAu6+MW+dFSOiveZPsGJ+EXh6 gUN8mFUHjI15ZxyfQh3cIrkua4LODr1yBljv+aZpXQNBqdLp7pY= -----END CERTIFICATE-----Generated at Sat Mar 7 11:14:09 2026 by rpki-client