$ rpki-client -vvf rpkica.twnic.tw/rpki/LAZCO/1/3135312e3135382e3232352e302f32342d3234203d3e20323032373336.roa File: 3135312e3135382e3232352e302f32342d3234203d3e20323032373336.roa (raw, json) Hash identifier: BP3tLCNXYvf+Gp0VBeaUsi8XNu18vBFJrKuz4D6/0xk= Subject key identifier: E9:A1:E5:F3:69:EA:4F:B7:1A:39:BF:59:A2:88:DD:D9:1A:0E:BC:52 Certificate issuer: /CN=BFDB40496A2E2FD9B4E4F96B3589413B1F67B105 Certificate serial: 6970A936437D16F1B1ADE315D4579E2E177BE299 Authority key identifier: BF:DB:40:49:6A:2E:2F:D9:B4:E4:F9:6B:35:89:41:3B:1F:67:B1:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.cer Subject info access: rsync://rpkica.twnic.tw/rpki/LAZCO/1/3135312e3135382e3232352e302f32342d3234203d3e20323032373336.roa Signing time: Mon 11 May 2026 17:58:57 +0000 ROA not before: Mon 11 May 2026 17:53:57 +0000 ROA not after: Mon 10 May 2027 17:58:57 +0000 asID: 202736 IP address blocks: 151.158.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/LAZCO/1/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.crl rsync://rpkica.twnic.tw/rpki/LAZCO/1/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/3/C49BAE2430BEEC354C1B14F226E761FC9BDCF005.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/3/C49BAE2430BEEC354C1B14F226E761FC9BDCF005.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xJuuJDC-7DVMGxTyJudh_Jvc8AU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:70:a9:36:43:7d:16:f1:b1:ad:e3:15:d4:57:9e:2e:17:7b:e2:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BFDB40496A2E2FD9B4E4F96B3589413B1F67B105 Validity Not Before: May 11 17:53:57 2026 GMT Not After : May 10 17:58:57 2027 GMT Subject: CN=E9A1E5F369EA4FB71A39BF59A288DDD91A0EBC52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c8:36:d1:35:08:66:61:ce:b6:16:0a:fd:17: f5:dc:c2:b5:86:23:7a:68:96:79:82:48:be:c7:ee: 87:35:e2:48:f0:aa:f7:b8:f1:4f:31:c1:3c:ee:7a: 2f:fb:1a:4a:58:92:9b:f9:2c:82:ad:1c:c3:53:60: 31:89:b9:4d:de:84:bb:eb:8f:7c:25:d9:04:30:5e: 79:09:01:4c:c3:90:fd:2f:fa:5e:7a:f7:dc:99:5f: 24:32:03:b0:e7:c1:4f:77:d2:2b:f7:c7:55:e9:0e: 4f:1e:aa:f5:7e:26:f1:42:91:95:43:5d:9b:97:ab: 4e:1a:8a:0c:71:cc:ce:cf:b5:d2:3c:71:16:f3:8c: e9:b9:8e:d1:ad:64:c2:5f:6b:ff:f7:55:ce:36:99: ec:3f:f1:fd:04:f1:9a:af:dd:e6:c1:87:34:39:18: eb:f5:3d:f6:8f:16:7e:01:9b:2b:71:ee:bc:38:13: a5:9c:f3:7a:19:d7:f2:76:bf:f3:b2:ed:a4:c9:2f: c0:0c:6e:d4:f5:fc:48:10:2b:9f:99:42:8e:c2:ac: f0:5e:7c:0a:ec:ac:69:07:bb:89:0f:0a:40:21:e5: 56:02:30:9f:6d:a5:bb:44:81:2c:f5:07:d7:df:dd: 8b:ff:87:40:d5:a9:f6:5f:b3:5a:e3:ec:9f:93:a7: 70:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:A1:E5:F3:69:EA:4F:B7:1A:39:BF:59:A2:88:DD:D9:1A:0E:BC:52 X509v3 Authority Key Identifier: keyid:BF:DB:40:49:6A:2E:2F:D9:B4:E4:F9:6B:35:89:41:3B:1F:67:B1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/LAZCO/1/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/LAZCO/1/3135312e3135382e3232352e302f32342d3234203d3e20323032373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.158.225.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:68:31:89:d6:af:ba:e0:02:e8:9a:a2:1a:c8:76:0e:84:48: 3f:eb:e2:8c:57:b6:5b:9f:7e:16:9d:b3:02:30:f8:14:fe:ad: e0:9d:b7:d5:a5:fe:1f:08:dd:4e:9c:09:39:25:66:71:61:cb: 5c:d6:dc:b7:8d:37:ae:c6:c5:5b:2a:28:21:88:9b:72:f8:c3: 92:29:28:50:48:1e:e6:8c:ff:c4:bd:25:fb:41:69:e2:ed:85: b6:9f:e5:2a:bb:42:39:8a:e9:14:0f:88:e6:c0:c4:69:cf:9c: 7a:55:83:1b:d8:12:e8:a4:8a:f3:c9:96:f5:95:f4:a4:f7:3f: d2:14:4a:88:6e:1d:ed:96:c8:15:11:da:6c:05:58:2d:de:25: 25:ff:bd:e0:37:74:42:1a:99:8a:24:50:2f:ed:67:ed:9e:15: 87:22:6e:d7:96:51:6e:14:f5:3d:8d:1f:78:6d:e6:2d:51:be: d3:eb:fb:74:2c:12:13:59:e0:50:e1:31:b5:af:8c:86:d6:3e: 72:64:fa:28:87:be:71:1a:a5:c4:13:9a:95:6d:46:62:d5:42: 07:5c:b9:90:13:d7:19:ba:82:59:91:30:d9:b6:c0:e3:2b:03: f2:f0:ae:90:9e:54:ff:bf:41:c1:4b:e0:d3:30:e7:94:5a:d2: 36:61:a2:ac -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgIUaXCpNkN9FvGxreMV1FeeLhd74pkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkZEQjQwNDk2QTJFMkZEOUI0RTRGOTZCMzU4OTQxM0Ix RjY3QjEwNTAeFw0yNjA1MTExNzUzNTdaFw0yNzA1MTAxNzU4NTdaMDMxMTAvBgNV BAMTKEU5QTFFNUYzNjlFQTRGQjcxQTM5QkY1OUEyODhEREQ5MUEwRUJDNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpyDbRNQhmYc62Fgr9F/XcwrWG I3polnmCSL7H7oc14kjwqve48U8xwTzuei/7GkpYkpv5LIKtHMNTYDGJuU3ehLvr j3wl2QQwXnkJAUzDkP0v+l5699yZXyQyA7DnwU930iv3x1XpDk8eqvV+JvFCkZVD XZuXq04aigxxzM7PtdI8cRbzjOm5jtGtZMJfa//3Vc42mew/8f0E8Zqv3ebBhzQ5 GOv1PfaPFn4Bmytx7rw4E6Wc83oZ1/J2v/Oy7aTJL8AMbtT1/EgQK5+ZQo7CrPBe fArsrGkHu4kPCkAh5VYCMJ9tpbtEgSz1B9ff3Yv/h0DVqfZfs1rj7J+Tp3DnAgMB AAGjggHlMIIB4TAdBgNVHQ4EFgQU6aHl82nqT7caOb9Zoojd2RoOvFIwHwYDVR0j BBgwFoAUv9tASWouL9m05PlrNYlBOx9nsQUwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTEFaQ08v MS9CRkRCNDA0OTZBMkUyRkQ5QjRFNEY5NkIzNTg5NDEzQjFGNjdCMTA1LmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8zL0JGREI0MDQ5NkEyRTJGRDlCNEU0Rjk2QjM1ODk0 MTNCMUY2N0IxMDUuY2VyMH8GCCsGAQUFBwELBHMwcTBvBggrBgEFBQcwC4ZjcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MQVpDTy8xLzMxMzUzMTJlMzEzNTM4 MmUzMjMyMzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzIzNzMzMzYucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACXnuEwDQYJKoZIhvcNAQELBQADggEBADpoMYnWr7rgAuiaohrIdg6E SD/r4oxXtluffhadswIw+BT+reCdt9Wl/h8I3U6cCTklZnFhy1zW3LeNN67GxVsq KCGIm3L4w5IpKFBIHuaM/8S9JftBaeLthbaf5Sq7QjmK6RQPiObAxGnPnHpVgxvY EuikivPJlvWV9KT3P9IUSohuHe2WyBUR2mwFWC3eJSX/veA3dEIamYokUC/tZ+2e FYcibteWUW4U9T2NH3ht5i1RvtPr+3QsEhNZ4FDhMbWvjIbWPnJk+iiHvnEapcQT mpVtRmLVQgdcuZAT1xm6glmRMNm2wOMrA/LwrpCeVP+/QcFL4NMw55Ra0jZhoqw= -----END CERTIFICATE-----Generated at Wed May 13 11:59:02 2026 by rpki-client