$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LAZCO/dHI47AnRLCC6vwiepfkiJy_NykA.roa File: dHI47AnRLCC6vwiepfkiJy_NykA.roa (raw, json) Hash identifier: N1gDrdUlWJFzTLprcejS0Y6xJvj+Ff33pPNX3v8zc4g= Subject key identifier: 74:72:38:EC:09:D1:2C:20:BA:BF:08:9E:A5:F9:22:27:2F:CD:CA:40 Certificate issuer: /CN=3BE896CFF2C01697848450DAB7F21A1E14A4F086 Certificate serial: 0D Authority key identifier: 3B:E8:96:CF:F2:C0:16:97:84:84:50:DA:B7:F2:1A:1E:14:A4:F0:86 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/dHI47AnRLCC6vwiepfkiJy_NykA.roa Signing time: Wed 04 Mar 2026 07:44:31 +0000 ROA not before: Wed 04 Mar 2026 07:44:31 +0000 ROA not after: Wed 24 Feb 2027 15:30:19 +0000 asID: 131630 IP address blocks: 2402:4f20:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 13:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE896CFF2C01697848450DAB7F21A1E14A4F086 Validity Not Before: Mar 4 07:44:31 2026 GMT Not After : Feb 24 15:30:19 2027 GMT Subject: CN=747238EC09D12C20BABF089EA5F922272FCDCA40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7d:ae:6f:25:78:78:07:81:ab:03:1f:86:de: aa:42:7e:a3:46:1f:7a:49:fd:bb:bd:9a:b3:37:71: 95:99:32:85:74:6c:b4:86:be:cd:41:99:53:b1:5b: 11:56:f3:cc:8e:cf:2d:9d:5a:6c:a9:f1:43:08:6c: 25:3c:f0:c9:0a:4d:17:31:a8:4f:6d:d1:e6:e5:7f: 06:62:6b:6e:26:b9:a8:84:1a:d1:ce:d6:df:f3:28: c3:3a:93:6b:06:c2:24:58:91:06:61:be:87:f0:3e: 39:fb:ed:ca:79:3e:0c:49:74:93:c3:19:78:ef:0e: 78:cb:3f:35:73:84:6a:a4:17:00:29:0c:a9:ec:28: 4d:1d:f4:3a:60:e3:ca:0b:9d:e2:be:dd:3d:f1:28: 2c:1f:49:23:96:31:e7:78:e7:b7:0b:59:bb:c1:05: 31:1d:0d:89:6c:81:7b:bc:52:fa:e6:39:d7:69:57: dc:39:08:fd:9c:94:48:78:52:c3:37:f3:2a:e5:7a: b4:d3:c4:eb:20:83:5c:65:20:2e:1d:d7:d0:b4:d4: 07:60:10:d1:c6:be:d7:d6:92:0c:4f:98:da:17:80: a0:54:75:a3:aa:31:db:2a:09:fb:80:00:d6:90:ef: fe:00:a8:8e:8b:f0:b8:d9:f9:01:75:2f:9e:a4:fd: f7:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:72:38:EC:09:D1:2C:20:BA:BF:08:9E:A5:F9:22:27:2F:CD:CA:40 X509v3 Authority Key Identifier: keyid:3B:E8:96:CF:F2:C0:16:97:84:84:50:DA:B7:F2:1A:1E:14:A4:F0:86 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/dHI47AnRLCC6vwiepfkiJy_NykA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:4f20:2::/48 Signature Algorithm: sha256WithRSAEncryption a5:a6:67:63:38:1f:60:3f:e8:39:7e:3a:e5:13:48:3e:ad:99: 36:69:43:ce:c7:6e:00:58:15:7c:13:6a:65:0e:4a:24:a8:3c: 98:31:5d:4a:57:7b:92:ca:93:72:78:5d:07:36:65:7a:88:4b: 31:66:20:4e:c4:e7:49:ce:90:05:61:bb:8d:15:5f:94:4d:36: 79:d4:be:ac:25:ab:66:fd:12:2c:e4:7c:06:30:db:da:52:d6: 5b:2c:f1:39:f6:13:ec:8d:d0:e1:84:b0:ef:1d:94:ad:55:7f: c8:9c:02:dc:99:ad:2a:63:a2:88:14:01:2d:c5:f8:bb:1e:fe: 2f:e8:a9:93:83:c7:98:23:bf:18:6b:a7:30:7d:ad:38:c9:db: 3d:f7:d8:6b:51:74:59:12:89:76:bb:19:7e:e9:fc:5a:3c:e2: b4:0a:6d:aa:8d:7e:ff:a1:2b:68:33:80:16:7b:16:ad:08:5b: 44:c6:13:30:f7:2e:c9:aa:8b:20:ab:d3:bd:97:b8:e0:f3:57: aa:d9:82:89:74:c6:85:1a:6d:e6:9e:9e:3f:ed:78:87:c5:b0: 99:aa:ee:dd:f0:c9:fc:db:eb:c5:d5:86:3d:ff:2c:b6:7e:45: 75:1b:36:3c:99:37:71:ce:cd:8e:d8:27:92:65:30:e3:a4:82: b0:ef:bc:de -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIBDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzQkU4 OTZDRkYyQzAxNjk3ODQ4NDUwREFCN0YyMUExRTE0QTRGMDg2MB4XDTI2MDMwNDA3 NDQzMVoXDTI3MDIyNDE1MzAxOVowMzExMC8GA1UEAxMoNzQ3MjM4RUMwOUQxMkMy MEJBQkYwODlFQTVGOTIyMjcyRkNEQ0E0MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAON9rm8leHgHgasDH4beqkJ+o0Yfekn9u72aszdxlZkyhXRstIa+ zUGZU7FbEVbzzI7PLZ1abKnxQwhsJTzwyQpNFzGoT23R5uV/BmJrbia5qIQa0c7W 3/MowzqTawbCJFiRBmG+h/A+Ofvtynk+DEl0k8MZeO8OeMs/NXOEaqQXACkMqewo TR30OmDjygud4r7dPfEoLB9JI5Yx53jntwtZu8EFMR0NiWyBe7xS+uY512lX3DkI /ZyUSHhSwzfzKuV6tNPE6yCDXGUgLh3X0LTUB2AQ0ca+19aSDE+Y2heAoFR1o6ox 2yoJ+4AA1pDv/gCojovwuNn5AXUvnqT9998CAwEAAaOCAe8wggHrMB0GA1UdDgQW BBR0cjjsCdEsILq/CJ6l+SInL83KQDAfBgNVHSMEGDAWgBQ76JbP8sAWl4SEUNq3 8hoeFKTwhjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MQVpDTy9P LWlXel9MQUZwZUVoRkRhdF9JYUhoU2s4SVkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L08taVd6X0xBRnBlRWhGRGF0X0lhSGhTazhJWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0xBWkNPL2RISTQ3QW5STENDNnZ3aWVwZmtp SnlfTnlrQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAk8g AAIwDQYJKoZIhvcNAQELBQADggEBAKWmZ2M4H2A/6Dl+OuUTSD6tmTZpQ87HbgBY FXwTamUOSiSoPJgxXUpXe5LKk3J4XQc2ZXqISzFmIE7E50nOkAVhu40VX5RNNnnU vqwlq2b9EizkfAYw29pS1lss8Tn2E+yN0OGEsO8dlK1Vf8icAtyZrSpjoogUAS3F +Lse/i/oqZODx5gjvxhrpzB9rTjJ2z332GtRdFkSiXa7GX7p/Fo84rQKbaqNfv+h K2gzgBZ7Fq0IW0TGEzD3LsmqiyCr072XuODzV6rZgol0xoUabeaenj/teIfFsJmq 7t3wyfzb68XVhj3/LLZ+RXUbNjyZN3HOzY7YJ5JlMOOkgrDvvN4= -----END CERTIFICATE-----Generated at Sat Mar 7 11:14:09 2026 by rpki-client