$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LAZCO/rUYs0iTQAKoyh6qLZ6k7FH3bDbQ.roa File: rUYs0iTQAKoyh6qLZ6k7FH3bDbQ.roa (raw, json) Hash identifier: gE3yOxnBAx9u7VyCzB06YIxi4KXeqtUTVrppiefmZ2U= Subject key identifier: AD:46:2C:D2:24:D0:00:AA:32:87:AA:8B:67:A9:3B:14:7D:DB:0D:B4 Certificate issuer: /CN=3BE896CFF2C01697848450DAB7F21A1E14A4F086 Certificate serial: 0F Authority key identifier: 3B:E8:96:CF:F2:C0:16:97:84:84:50:DA:B7:F2:1A:1E:14:A4:F0:86 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/rUYs0iTQAKoyh6qLZ6k7FH3bDbQ.roa Signing time: Wed 04 Mar 2026 07:44:43 +0000 ROA not before: Wed 04 Mar 2026 07:44:43 +0000 ROA not after: Wed 24 Feb 2027 15:30:19 +0000 asID: 131630 IP address blocks: 2402:4f20:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 13:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE896CFF2C01697848450DAB7F21A1E14A4F086 Validity Not Before: Mar 4 07:44:43 2026 GMT Not After : Feb 24 15:30:19 2027 GMT Subject: CN=AD462CD224D000AA3287AA8B67A93B147DDB0DB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2d:d4:f9:31:bb:3c:a5:a4:12:f5:f4:3b:dd: 84:5f:e9:6b:98:20:7f:17:51:b4:2f:fe:fe:de:bd: ef:9b:ec:3b:7c:62:9a:2e:ee:d0:34:1d:69:c8:0c: 98:17:20:0b:82:6f:9b:7a:f5:1a:2e:31:2c:af:d2: bd:4a:88:4d:88:24:dc:c0:a5:dc:77:b5:6f:a1:db: e3:a3:9d:e7:d1:8e:61:d0:3f:17:41:bc:19:e4:0c: 2c:4d:ec:5c:aa:7c:54:84:79:a8:e1:bf:ce:c9:f0: 85:de:30:00:34:0f:07:31:68:6a:2e:43:45:59:0a: 7e:f3:e5:44:c1:c1:a3:95:b5:2e:46:b9:43:6d:ae: bd:84:3b:58:67:98:aa:52:21:12:cd:11:fc:0d:6c: 23:4b:74:3c:25:ee:f6:a1:d4:78:fb:75:02:fc:e5: 82:a9:c6:16:25:4b:a6:6a:a0:2f:02:c0:e6:57:6d: 34:23:c4:ad:81:ea:81:5c:9d:28:d7:9a:79:85:98: 4d:f1:27:90:2f:18:98:73:39:83:7e:df:54:df:7d: e4:55:3c:c2:e5:06:31:34:45:a7:9e:9f:a5:c9:fa: 27:8f:16:bb:8e:22:e9:c1:23:e6:53:32:b8:29:47: 15:81:f7:11:3a:4f:d8:24:dd:a2:47:39:55:d6:ce: 9b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:46:2C:D2:24:D0:00:AA:32:87:AA:8B:67:A9:3B:14:7D:DB:0D:B4 X509v3 Authority Key Identifier: keyid:3B:E8:96:CF:F2:C0:16:97:84:84:50:DA:B7:F2:1A:1E:14:A4:F0:86 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/rUYs0iTQAKoyh6qLZ6k7FH3bDbQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:4f20:3::/48 Signature Algorithm: sha256WithRSAEncryption a6:3a:e9:94:02:13:7e:ec:c7:32:36:ed:da:8f:38:a3:9c:a6: 78:5f:1f:b9:7c:48:02:c7:b0:37:8f:79:6b:09:d8:fe:96:54: de:13:84:df:8f:38:26:6e:66:bf:66:28:eb:c7:9c:44:ec:5c: 30:13:14:4d:a6:aa:71:01:6a:59:b8:9a:58:9a:18:b3:39:f1: fa:a3:aa:e7:b8:ca:ea:27:08:8a:21:8d:ca:0d:73:b1:60:ba: ac:fe:6f:f1:77:d5:7f:8c:b0:dd:00:a1:f1:e1:24:86:59:25: 68:7d:b3:12:0f:50:06:77:fd:ae:b2:7c:67:c5:fb:ae:5d:9f: 70:6a:f3:c9:03:5f:7c:10:b6:6d:84:36:05:1d:19:cb:0f:96: 7f:5a:a6:2c:c8:5e:35:4c:d0:a4:48:a5:eb:45:9f:3d:6f:89: 06:5d:f1:a3:38:57:cf:cf:3d:9e:cb:d2:2d:ac:3d:18:97:6d: ee:e7:35:58:15:c5:e8:45:00:9f:c1:c5:4d:83:0d:83:28:6a: b0:01:d5:94:cc:9e:65:e4:e6:2a:a5:d7:fa:14:13:95:c1:ab: f7:29:56:bd:0e:63:92:f6:84:aa:ad:92:8b:16:e0:b1:20:84: be:19:db:73:0b:30:4e:7a:12:c9:ac:39:69:77:ca:ad:23:00: 0d:1b:9c:0b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIBDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzQkU4 OTZDRkYyQzAxNjk3ODQ4NDUwREFCN0YyMUExRTE0QTRGMDg2MB4XDTI2MDMwNDA3 NDQ0M1oXDTI3MDIyNDE1MzAxOVowMzExMC8GA1UEAxMoQUQ0NjJDRDIyNEQwMDBB QTMyODdBQThCNjdBOTNCMTQ3RERCMERCNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMMt1PkxuzylpBL19DvdhF/pa5ggfxdRtC/+/t6975vsO3ximi7u 0DQdacgMmBcgC4Jvm3r1Gi4xLK/SvUqITYgk3MCl3He1b6Hb46Od59GOYdA/F0G8 GeQMLE3sXKp8VIR5qOG/zsnwhd4wADQPBzFoai5DRVkKfvPlRMHBo5W1Lka5Q22u vYQ7WGeYqlIhEs0R/A1sI0t0PCXu9qHUePt1AvzlgqnGFiVLpmqgLwLA5ldtNCPE rYHqgVydKNeaeYWYTfEnkC8YmHM5g37fVN995FU8wuUGMTRFp56fpcn6J48Wu44i 6cEj5lMyuClHFYH3ETpP2CTdokc5VdbOm8ECAwEAAaOCAe8wggHrMB0GA1UdDgQW BBStRizSJNAAqjKHqotnqTsUfdsNtDAfBgNVHSMEGDAWgBQ76JbP8sAWl4SEUNq3 8hoeFKTwhjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MQVpDTy9P LWlXel9MQUZwZUVoRkRhdF9JYUhoU2s4SVkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L08taVd6X0xBRnBlRWhGRGF0X0lhSGhTazhJWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0xBWkNPL3JVWXMwaVRRQUtveWg2cUxaNms3 RkgzYkRiUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAk8g AAMwDQYJKoZIhvcNAQELBQADggEBAKY66ZQCE37sxzI27dqPOKOcpnhfH7l8SALH sDePeWsJ2P6WVN4ThN+POCZuZr9mKOvHnETsXDATFE2mqnEBalm4mliaGLM58fqj que4yuonCIohjcoNc7Fguqz+b/F31X+MsN0AofHhJIZZJWh9sxIPUAZ3/a6yfGfF +65dn3Bq88kDX3wQtm2ENgUdGcsPln9apizIXjVM0KRIpetFnz1viQZd8aM4V8/P PZ7L0i2sPRiXbe7nNVgVxehFAJ/BxU2DDYMoarAB1ZTMnmXk5iql1/oUE5XBq/cp Vr0OY5L2hKqtkosW4LEghL4Z23MLME56EsmsOWl3yq0jAA0bnAs= -----END CERTIFICATE-----Generated at Sat Mar 7 11:14:17 2026 by rpki-client