$ rpki-client -vvf rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a323a3a2f34382d3438203d3e20323133343238.roa File: 323430323a346632303a323a3a2f34382d3438203d3e20323133343238.roa (raw, json) Hash identifier: s9oKXRbmyMlcGoDwcLYZ0mRlXD27VylhFpYrWppG6Cs= Subject key identifier: B5:4F:8F:16:C1:FD:23:13:69:11:E5:46:CE:CC:B6:41:1E:C5:40:F7 Certificate issuer: /CN=3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE Certificate serial: 0BE2372B3552BFE1174C7FF2DCB9842ED2A2C1C1 Authority key identifier: 3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a323a3a2f34382d3438203d3e20323133343238.roa Signing time: Mon 11 May 2026 17:58:32 +0000 ROA not before: Mon 11 May 2026 17:53:32 +0000 ROA not after: Mon 10 May 2027 17:58:32 +0000 asID: 213428 IP address blocks: 2402:4f20:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.crl rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:e2:37:2b:35:52:bf:e1:17:4c:7f:f2:dc:b9:84:2e:d2:a2:c1:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE Validity Not Before: May 11 17:53:32 2026 GMT Not After : May 10 17:58:32 2027 GMT Subject: CN=B54F8F16C1FD23136911E546CECCB6411EC540F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:93:22:17:52:23:76:5e:a0:69:19:33:e9:3c: ba:52:c3:b8:16:f5:33:54:e3:d2:3b:01:66:ce:c5: 56:6b:49:ff:f8:dd:3b:95:48:04:a5:a9:d1:78:aa: cc:64:4c:66:c9:02:dc:b5:d1:8d:3c:ac:23:80:90: 1c:83:f9:5e:07:0a:d0:f3:bd:24:f4:3e:b4:26:32: 69:71:e6:ca:bb:db:6d:e9:fc:7f:df:4d:7c:91:46: ef:88:48:7d:c6:35:f0:c5:78:08:1e:53:cc:17:03: c0:6e:2b:f3:d2:a7:0f:0e:6b:3b:9b:99:6d:8e:7d: 68:ce:a2:fb:9b:ac:45:cb:ea:ad:89:08:e3:e4:ab: 77:a0:ee:c3:f9:30:bc:16:27:84:c8:2f:ea:d3:2b: f6:4e:f4:d3:08:e4:57:10:8a:d5:93:99:37:c1:8d: d0:1a:fc:ca:8f:dc:c5:7b:90:11:ef:96:a5:1b:7e: d4:21:0b:d1:78:1e:d3:3c:b6:4e:2f:19:a6:4c:ab: 40:b6:04:7e:d7:8b:f9:f7:90:ca:fb:41:54:5b:5b: 3c:13:4f:c8:17:ec:85:82:f1:ee:6f:4c:65:cd:c3: 85:8b:a1:83:ef:74:a3:35:57:ce:cd:c4:7f:fa:8a: e1:e0:38:1c:b6:c3:7c:40:6b:77:9f:bd:7c:48:11: ff:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:4F:8F:16:C1:FD:23:13:69:11:E5:46:CE:CC:B6:41:1E:C5:40:F7 X509v3 Authority Key Identifier: keyid:3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a323a3a2f34382d3438203d3e20323133343238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4f20:2::/48 Signature Algorithm: sha256WithRSAEncryption db:44:5b:16:e8:70:bd:0c:de:54:e5:a7:2e:a6:39:9f:3d:2f: d5:7d:ca:9e:de:50:4e:83:ee:4f:be:05:8f:2a:33:43:2f:f7: 8e:da:b9:cd:e4:49:39:21:aa:ca:6f:07:78:f8:2b:14:58:27: ed:c4:a4:0e:be:f7:8a:a8:f7:cc:e7:a7:41:7f:90:94:28:61: b9:d2:00:27:31:32:08:b3:ee:26:17:01:53:64:ab:8f:98:ee: ed:cf:48:88:08:a9:bb:45:64:e0:c2:36:4c:09:73:74:31:01: ae:e6:b4:42:a6:26:10:66:0a:80:5b:3c:ed:3d:9a:c5:25:2b: 27:e1:37:ca:17:59:0f:aa:bf:db:26:26:65:35:5b:0c:19:13: 2b:cd:a1:78:a5:71:9b:2f:c4:84:ab:0b:66:b4:9a:62:55:b8: d4:47:1a:a3:01:58:dc:bf:27:5f:d7:6f:b0:e1:ff:70:e9:87: 25:9d:01:3d:53:bd:60:48:fc:01:84:27:c2:08:18:32:ba:29: ad:85:44:a9:8d:dd:c9:71:1e:e5:13:9b:60:ff:6d:1e:85:24: 23:5e:f0:8e:7b:cf:a8:09:17:8c:d3:dc:f7:1c:d0:1f:9e:b8: 51:64:c5:48:ee:31:fb:58:46:84:fd:5a:62:15:b7:54:de:9c: 2b:f7:4a:8c -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUC+I3KzVSv+EXTH/y3LmELtKiwcEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0YyRkEwRTlBOUI3QTM2NEQ0OUEyRUE2MUVGMzg5Njcw OUM0QURBRTAeFw0yNjA1MTExNzUzMzJaFw0yNzA1MTAxNzU4MzJaMDMxMTAvBgNV BAMTKEI1NEY4RjE2QzFGRDIzMTM2OTExRTU0NkNFQ0NCNjQxMUVDNTQwRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGkyIXUiN2XqBpGTPpPLpSw7gW 9TNU49I7AWbOxVZrSf/43TuVSASlqdF4qsxkTGbJAty10Y08rCOAkByD+V4HCtDz vST0PrQmMmlx5sq7223p/H/fTXyRRu+ISH3GNfDFeAgeU8wXA8BuK/PSpw8Oazub mW2OfWjOovubrEXL6q2JCOPkq3eg7sP5MLwWJ4TIL+rTK/ZO9NMI5FcQitWTmTfB jdAa/MqP3MV7kBHvlqUbftQhC9F4HtM8tk4vGaZMq0C2BH7Xi/n3kMr7QVRbWzwT T8gX7IWC8e5vTGXNw4WLoYPvdKM1V87NxH/6iuHgOBy2w3xAa3efvXxIEf8lAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUtU+PFsH9IxNpEeVGzsy2QR7FQPcwHwYDVR0j BBgwFoAUPy+g6am3o2TUmi6mHvOJZwnEra4wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTEFaQ08v MC8zRjJGQTBFOUE5QjdBMzY0RDQ5QTJFQTYxRUYzODk2NzA5QzRBREFFLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzNGMkZBMEU5QTlCN0EzNjRENDlBMkVBNjFFRjM4 OTY3MDlDNEFEQUUuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEFBQcwC4ZjcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MQVpDTy8wLzMyMzQzMDMyM2EzNDY2 MzIzMDNhMzIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzMzNDMyMzgucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAkAk8gAAIwDQYJKoZIhvcNAQELBQADggEBANtEWxbocL0M3lTlpy6m OZ89L9V9yp7eUE6D7k++BY8qM0Mv947auc3kSTkhqspvB3j4KxRYJ+3EpA6+94qo 98znp0F/kJQoYbnSACcxMgiz7iYXAVNkq4+Y7u3PSIgIqbtFZODCNkwJc3QxAa7m tEKmJhBmCoBbPO09msUlKyfhN8oXWQ+qv9smJmU1WwwZEyvNoXilcZsvxISrC2a0 mmJVuNRHGqMBWNy/J1/Xb7Dh/3DphyWdAT1TvWBI/AGEJ8IIGDK6Ka2FRKmN3clx HuUTm2D/bR6FJCNe8I57z6gJF4zT3Pcc0B+euFFkxUjuMftYRoT9WmIVt1TenCv3 Sow= -----END CERTIFICATE-----Generated at Wed May 13 14:43:28 2026 by rpki-client