$ rpki-client -vvf rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a333a3a2f34382d3438203d3e20313331363330.roa File: 323430323a346632303a333a3a2f34382d3438203d3e20313331363330.roa (raw, json) Hash identifier: ozfaF6UNRXIJr4rje21YQkFsoy4ZzNiP2wPtA0erUeY= Subject key identifier: CC:FF:82:63:C8:DD:B2:14:4E:D4:64:07:BD:E7:58:5F:81:BB:1C:0F Certificate issuer: /CN=3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE Certificate serial: 6AB285F29E40D2C6A83EEBFD78603A5730755AE0 Authority key identifier: 3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a333a3a2f34382d3438203d3e20313331363330.roa Signing time: Mon 11 May 2026 17:58:24 +0000 ROA not before: Mon 11 May 2026 17:53:24 +0000 ROA not after: Mon 10 May 2027 17:58:24 +0000 asID: 131630 IP address blocks: 2402:4f20:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.crl rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:b2:85:f2:9e:40:d2:c6:a8:3e:eb:fd:78:60:3a:57:30:75:5a:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE Validity Not Before: May 11 17:53:24 2026 GMT Not After : May 10 17:58:24 2027 GMT Subject: CN=CCFF8263C8DDB2144ED46407BDE7585F81BB1C0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:48:35:8c:53:38:3a:50:5b:5e:68:47:8b:5c: d2:50:f1:a7:5d:79:16:6b:10:ea:ad:ec:87:e9:13: 19:6c:2b:74:30:ae:76:33:fa:1c:79:d5:2e:cb:fb: 16:aa:18:92:26:53:7a:e7:69:71:4c:f7:5a:28:20: 40:d8:ee:01:6c:50:8c:ea:28:1f:c8:73:fd:fd:57: 5f:53:c7:8a:4a:2c:34:23:67:64:15:3a:cb:45:cf: ba:2b:f9:01:64:03:64:b8:4d:98:01:a5:f1:e3:b4: 6e:46:12:af:4a:e3:7f:ae:69:c9:11:9b:86:20:fa: 36:09:f0:3b:e5:4a:bb:89:69:4e:f5:95:49:f1:2c: ef:04:31:70:5c:57:96:1c:5c:da:32:f6:8a:ce:6b: 8c:6d:c2:f0:ed:73:46:50:fb:ed:7b:91:21:52:3f: f3:36:ce:0e:17:75:30:d4:a2:53:b2:67:08:46:fe: 14:1a:04:09:c7:4a:32:60:97:19:bf:69:13:e1:14: 49:ed:8a:7a:08:87:3a:77:7c:ac:14:21:6f:e2:99: d8:15:84:55:99:d6:53:c5:cc:6b:b6:a4:03:11:08: b9:9c:86:98:eb:85:1c:cd:a2:6f:5e:99:28:d0:04: ab:87:d7:61:b9:25:1f:4b:35:43:71:80:a5:9c:0b: b9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:FF:82:63:C8:DD:B2:14:4E:D4:64:07:BD:E7:58:5F:81:BB:1C:0F X509v3 Authority Key Identifier: keyid:3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/323430323a346632303a333a3a2f34382d3438203d3e20313331363330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4f20:3::/48 Signature Algorithm: sha256WithRSAEncryption 71:60:03:73:df:1e:3c:6e:18:d5:bb:bc:79:d1:9c:cb:04:e8: 85:51:7f:d3:3a:dc:2d:50:dd:11:a3:3b:63:98:30:6d:db:41: 42:c2:38:97:2b:ab:d0:77:3f:66:02:bc:83:6b:2b:14:5b:6d: 87:b3:ec:6e:d0:ef:e3:76:61:74:11:8d:5b:3e:00:29:30:34: bf:32:db:ed:ff:e4:69:d4:6c:4f:d6:29:9b:ab:49:98:87:aa: 85:c0:3c:88:a8:da:66:ee:c0:e5:b2:a8:12:20:32:56:fb:64: 8d:22:39:47:9d:65:be:e9:8c:df:05:e9:4d:de:3f:af:62:49: 8f:04:aa:c4:28:be:5f:05:db:11:9d:3f:cd:bf:92:dd:21:76: 89:e2:1c:2f:8e:20:ac:52:e6:c0:cd:c1:03:7c:f5:f1:89:a2: ea:b1:2e:38:30:1f:31:db:44:67:90:cc:6c:1b:a8:23:13:1d: c7:39:b4:b6:d8:ea:e5:40:44:57:b7:29:e7:68:9b:f4:47:63: 03:d5:88:b4:b0:c3:d2:28:95:c3:50:16:36:40:3f:ce:20:c6: 8c:39:e1:82:a7:99:6d:ee:2c:fc:2b:94:58:51:17:8f:75:5f: 9f:5e:e0:89:30:83:04:9c:43:ec:b3:54:57:44:a7:57:da:1a: f0:0a:c3:1f -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUarKF8p5A0saoPuv9eGA6VzB1WuAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0YyRkEwRTlBOUI3QTM2NEQ0OUEyRUE2MUVGMzg5Njcw OUM0QURBRTAeFw0yNjA1MTExNzUzMjRaFw0yNzA1MTAxNzU4MjRaMDMxMTAvBgNV BAMTKENDRkY4MjYzQzhEREIyMTQ0RUQ0NjQwN0JERTc1ODVGODFCQjFDMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5SDWMUzg6UFteaEeLXNJQ8add eRZrEOqt7IfpExlsK3QwrnYz+hx51S7L+xaqGJImU3rnaXFM91ooIEDY7gFsUIzq KB/Ic/39V19Tx4pKLDQjZ2QVOstFz7or+QFkA2S4TZgBpfHjtG5GEq9K43+uackR m4Yg+jYJ8DvlSruJaU71lUnxLO8EMXBcV5YcXNoy9orOa4xtwvDtc0ZQ++17kSFS P/M2zg4XdTDUolOyZwhG/hQaBAnHSjJglxm/aRPhFEntinoIhzp3fKwUIW/imdgV hFWZ1lPFzGu2pAMRCLmchpjrhRzNom9emSjQBKuH12G5JR9LNUNxgKWcC7lDAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUzP+CY8jdshRO1GQHvedYX4G7HA8wHwYDVR0j BBgwFoAUPy+g6am3o2TUmi6mHvOJZwnEra4wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTEFaQ08v MC8zRjJGQTBFOUE5QjdBMzY0RDQ5QTJFQTYxRUYzODk2NzA5QzRBREFFLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzNGMkZBMEU5QTlCN0EzNjRENDlBMkVBNjFFRjM4 OTY3MDlDNEFEQUUuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEFBQcwC4ZjcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MQVpDTy8wLzMyMzQzMDMyM2EzNDY2 MzIzMDNhMzMzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzNjMzMzAucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAkAk8gAAMwDQYJKoZIhvcNAQELBQADggEBAHFgA3PfHjxuGNW7vHnR nMsE6IVRf9M63C1Q3RGjO2OYMG3bQULCOJcrq9B3P2YCvINrKxRbbYez7G7Q7+N2 YXQRjVs+ACkwNL8y2+3/5GnUbE/WKZurSZiHqoXAPIio2mbuwOWyqBIgMlb7ZI0i OUedZb7pjN8F6U3eP69iSY8EqsQovl8F2xGdP82/kt0hdoniHC+OIKxS5sDNwQN8 9fGJouqxLjgwHzHbRGeQzGwbqCMTHcc5tLbY6uVARFe3Kedom/RHYwPViLSww9Io lcNQFjZAP84gxow54YKnmW3uLPwrlFhRF491X59e4IkwgwScQ+yzVFdEp1faGvAK wx8= -----END CERTIFICATE-----Generated at Wed May 13 13:27:49 2026 by rpki-client