$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LAZCO/Mm5QnjlCbD6JSnEDpdQND2hWSmU.roa File: Mm5QnjlCbD6JSnEDpdQND2hWSmU.roa (raw, json) Hash identifier: eniA0BdI4FyR8WrUJnDAn0O8u1X4txhXxkKq+zHyiqc= Subject key identifier: 32:6E:50:9E:39:42:6C:3E:89:4A:71:03:A5:D4:0D:0F:68:56:4A:65 Certificate issuer: /CN=3BE896CFF2C01697848450DAB7F21A1E14A4F086 Certificate serial: 0B Authority key identifier: 3B:E8:96:CF:F2:C0:16:97:84:84:50:DA:B7:F2:1A:1E:14:A4:F0:86 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/Mm5QnjlCbD6JSnEDpdQND2hWSmU.roa Signing time: Wed 04 Mar 2026 07:44:09 +0000 ROA not before: Wed 04 Mar 2026 07:44:09 +0000 ROA not after: Wed 24 Feb 2027 15:30:19 +0000 asID: 131630 IP address blocks: 2402:4f20:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 13:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE896CFF2C01697848450DAB7F21A1E14A4F086 Validity Not Before: Mar 4 07:44:09 2026 GMT Not After : Feb 24 15:30:19 2027 GMT Subject: CN=326E509E39426C3E894A7103A5D40D0F68564A65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7f:72:7f:43:aa:e0:0c:ca:15:9b:17:c1:ae: 57:f9:01:0c:26:90:d0:bb:13:ad:22:5e:27:36:67: 2b:60:3c:a3:89:23:f0:cb:44:60:64:72:96:d7:94: 7b:f5:76:11:8e:95:e5:c9:21:aa:51:f2:9f:30:35: 46:90:2f:d0:0c:9c:68:4a:19:3d:43:02:e2:81:c4: 7a:b3:39:b4:70:89:38:3f:47:f9:42:2d:5a:8a:55: 0a:c2:34:ec:fc:fb:84:a2:5c:83:ea:f0:97:54:da: 89:7c:42:5c:af:12:25:26:c3:89:b9:c6:a6:4b:5c: 9a:fc:ca:a8:04:82:a5:5e:7b:3f:89:f7:de:d5:d1: e7:e7:de:2b:86:e6:81:3c:d2:9b:c2:7f:7d:0f:71: 70:b0:d5:1c:5b:e5:7d:09:71:d4:2d:b8:49:5b:71: 9a:02:9b:f6:ef:36:63:b9:70:3a:1c:2d:32:5e:43: c8:c6:1f:11:82:17:2b:3a:be:38:18:74:cf:b0:38: 44:76:68:7c:f8:f6:ff:a8:ba:2d:56:8d:e4:94:19: b8:f5:85:6f:44:be:32:83:cd:cd:de:11:54:7b:7a: 44:f7:17:6d:02:4f:48:65:66:ca:80:17:c8:a5:2f: de:e8:1a:4a:7a:7b:df:8a:83:79:4e:b9:3b:3d:3b: dd:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:6E:50:9E:39:42:6C:3E:89:4A:71:03:A5:D4:0D:0F:68:56:4A:65 X509v3 Authority Key Identifier: keyid:3B:E8:96:CF:F2:C0:16:97:84:84:50:DA:B7:F2:1A:1E:14:A4:F0:86 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/Mm5QnjlCbD6JSnEDpdQND2hWSmU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:4f20:1::/48 Signature Algorithm: sha256WithRSAEncryption 29:e6:14:c1:64:48:92:67:1a:60:e4:eb:7f:3f:fe:9a:2b:fd: 19:c7:a9:72:74:15:38:1d:47:12:da:26:a2:4b:66:74:00:37: 49:c5:b4:73:c8:81:3d:a4:98:51:9e:cd:75:40:6c:82:58:da: 8d:19:f5:dc:75:ed:25:07:57:e7:0b:5f:c6:a8:99:6d:2a:1a: 4f:b5:54:2b:b7:fe:8a:fc:66:de:60:0d:d5:f8:85:f0:b8:92: 39:a3:09:49:df:f4:92:81:b0:bf:30:ed:a1:e2:fc:9e:60:62: 90:ae:ed:23:f7:d2:cd:24:3c:ed:d5:95:14:31:8d:a3:f5:a7: 36:71:fe:c1:69:93:a5:4b:9a:0a:91:ea:fc:23:1b:de:62:3d: 5c:1b:04:bc:22:2f:99:df:0b:08:d1:ee:04:d3:65:e5:89:16: a5:2b:1d:8b:9b:f0:69:71:10:47:76:6f:f1:8a:00:1d:cd:83: 43:80:50:e7:17:94:38:dd:cf:d1:57:39:c1:eb:42:ef:74:c7: 47:03:d5:71:56:54:da:f1:1e:21:4f:3c:13:eb:7a:c4:df:a1: 0d:44:b5:91:89:cf:34:69:8d:3c:79:dc:40:cf:92:ad:76:ba: ed:4b:0e:81:70:36:03:cb:f6:9c:ab:ae:0d:a1:f1:3d:39:39: 12:07:5a:47 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIBCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzQkU4 OTZDRkYyQzAxNjk3ODQ4NDUwREFCN0YyMUExRTE0QTRGMDg2MB4XDTI2MDMwNDA3 NDQwOVoXDTI3MDIyNDE1MzAxOVowMzExMC8GA1UEAxMoMzI2RTUwOUUzOTQyNkMz RTg5NEE3MTAzQTVENDBEMEY2ODU2NEE2NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKt/cn9DquAMyhWbF8GuV/kBDCaQ0LsTrSJeJzZnK2A8o4kj8MtE YGRylteUe/V2EY6V5ckhqlHynzA1RpAv0AycaEoZPUMC4oHEerM5tHCJOD9H+UIt WopVCsI07Pz7hKJcg+rwl1TaiXxCXK8SJSbDibnGpktcmvzKqASCpV57P4n33tXR 5+feK4bmgTzSm8J/fQ9xcLDVHFvlfQlx1C24SVtxmgKb9u82Y7lwOhwtMl5DyMYf EYIXKzq+OBh0z7A4RHZofPj2/6i6LVaN5JQZuPWFb0S+MoPNzd4RVHt6RPcXbQJP SGVmyoAXyKUv3ugaSnp734qDeU65Oz073W8CAwEAAaOCAe8wggHrMB0GA1UdDgQW BBQyblCeOUJsPolKcQOl1A0PaFZKZTAfBgNVHSMEGDAWgBQ76JbP8sAWl4SEUNq3 8hoeFKTwhjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MQVpDTy9P LWlXel9MQUZwZUVoRkRhdF9JYUhoU2s4SVkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L08taVd6X0xBRnBlRWhGRGF0X0lhSGhTazhJWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0xBWkNPL01tNVFuamxDYkQ2SlNuRURwZFFO RDJoV1NtVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAk8g AAEwDQYJKoZIhvcNAQELBQADggEBACnmFMFkSJJnGmDk638//por/RnHqXJ0FTgd RxLaJqJLZnQAN0nFtHPIgT2kmFGezXVAbIJY2o0Z9dx17SUHV+cLX8aomW0qGk+1 VCu3/or8Zt5gDdX4hfC4kjmjCUnf9JKBsL8w7aHi/J5gYpCu7SP30s0kPO3VlRQx jaP1pzZx/sFpk6VLmgqR6vwjG95iPVwbBLwiL5nfCwjR7gTTZeWJFqUrHYub8Glx EEd2b/GKAB3Ng0OAUOcXlDjdz9FXOcHrQu90x0cD1XFWVNrxHiFPPBPresTfoQ1E tZGJzzRpjTx53EDPkq12uu1LDoFwNgPL9pyrrg2h8T05ORIHWkc= -----END CERTIFICATE-----Generated at Sat Mar 7 11:14:10 2026 by rpki-client