$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LAZCO/v40XBXqfd3t5DHYPrbNNGVx46mM.roa File: v40XBXqfd3t5DHYPrbNNGVx46mM.roa (raw, json) Hash identifier: VonTp+3WmJGa85ebTKpA0St4xfZW6QoaDyConcZ2xKU= Subject key identifier: BF:8D:17:05:7A:9F:77:7B:79:0C:76:0F:AD:B3:4D:19:5C:78:EA:63 Certificate issuer: /CN=3BE896CFF2C01697848450DAB7F21A1E14A4F086 Certificate serial: 30 Authority key identifier: 3B:E8:96:CF:F2:C0:16:97:84:84:50:DA:B7:F2:1A:1E:14:A4:F0:86 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/v40XBXqfd3t5DHYPrbNNGVx46mM.roa Signing time: Mon 09 Mar 2026 05:02:56 +0000 ROA not before: Mon 09 Mar 2026 05:02:56 +0000 ROA not after: Wed 24 Feb 2027 15:30:19 +0000 asID: 213428 IP address blocks: 2402:4f20:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 03:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE896CFF2C01697848450DAB7F21A1E14A4F086 Validity Not Before: Mar 9 05:02:56 2026 GMT Not After : Feb 24 15:30:19 2027 GMT Subject: CN=BF8D17057A9F777B790C760FADB34D195C78EA63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bd:33:b3:77:92:22:38:0c:2f:66:06:ba:12: 19:52:c3:c8:34:b6:df:9f:18:c0:0d:22:24:ee:b8: 3a:55:2b:b1:b1:dd:f0:62:6f:74:97:47:1b:6c:20: 1a:9d:7e:0d:b2:bf:b2:ef:79:86:57:5d:f5:71:85: 7a:0e:42:fe:ec:b2:bc:0f:e9:b8:35:d9:53:a9:dd: f2:99:1f:ef:c9:b9:63:5a:3f:ac:a2:92:e9:75:6f: 14:95:d9:d1:ab:6d:8c:71:52:63:83:da:ec:b0:55: 92:3e:17:19:a7:2a:23:f4:57:68:de:e4:c5:ff:3a: eb:61:a9:2c:a6:f9:5d:28:b3:72:9c:30:45:55:2f: a9:07:4d:b4:21:3e:a3:cf:ac:53:bd:57:d0:56:57: 0c:13:e0:1a:43:03:a5:ab:27:a6:7b:fd:64:08:02: a8:50:b5:9a:fb:ac:e6:92:a2:0d:7a:1f:30:58:1d: 33:cc:6f:13:9f:d9:47:79:65:3f:7d:4f:25:7c:1e: 5a:8e:d2:e0:2d:86:9d:f9:e4:e0:40:4a:9c:dc:d7: 9a:14:4d:8c:32:8c:ac:f0:cb:d8:40:f9:6f:3e:2c: de:5c:ad:bb:97:4e:5c:df:27:6e:e8:50:dd:e7:bc: 99:9a:a9:52:ed:54:6f:6c:f6:fe:c7:92:55:a7:4b: 18:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:8D:17:05:7A:9F:77:7B:79:0C:76:0F:AD:B3:4D:19:5C:78:EA:63 X509v3 Authority Key Identifier: keyid:3B:E8:96:CF:F2:C0:16:97:84:84:50:DA:B7:F2:1A:1E:14:A4:F0:86 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/v40XBXqfd3t5DHYPrbNNGVx46mM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:4f20:2::/48 Signature Algorithm: sha256WithRSAEncryption 8e:c6:83:36:db:96:1e:c2:ef:f9:b9:ac:6b:99:c3:1d:8e:4c: d2:f4:cf:07:43:da:28:1c:33:73:b9:f2:9f:00:a1:f8:bb:de: 98:f2:3e:96:1f:cf:5e:a4:53:50:53:81:7c:3f:da:f5:c7:ac: 83:cd:83:c1:79:64:bb:00:46:57:55:63:bb:2c:a6:b7:4e:12: d9:04:b4:d5:32:5a:b6:bf:0b:8d:9e:18:9e:63:2b:40:58:b8: 8c:53:bf:b4:20:2e:67:34:b0:9e:ed:87:41:ba:07:8f:9b:b6: b7:9a:2e:f5:17:8a:c4:5e:4f:a2:5d:47:0e:8f:00:31:30:1b: 52:25:04:28:b4:eb:9d:aa:c0:40:eb:5f:c4:0f:e3:eb:c7:1c: 4a:14:ea:ff:7f:95:be:26:b7:48:60:ec:5d:cd:92:3f:2f:db: 27:6f:ce:c2:18:0e:87:22:07:49:1a:ad:a9:25:e5:ae:ea:0d: 5d:19:6e:94:be:ab:02:81:bc:ed:ad:f2:ee:20:9c:6c:e4:b9: 42:6d:8d:c1:1f:1b:03:45:db:a3:59:33:de:90:ea:b1:17:92: a0:d6:30:6e:59:7e:47:4f:4e:fc:a8:d8:e2:09:f4:69:71:43: c6:27:20:72:28:fe:09:e1:3b:aa:9a:67:a8:da:28:75:81:91: 59:90:30:ac -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIBMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzQkU4 OTZDRkYyQzAxNjk3ODQ4NDUwREFCN0YyMUExRTE0QTRGMDg2MB4XDTI2MDMwOTA1 MDI1NloXDTI3MDIyNDE1MzAxOVowMzExMC8GA1UEAxMoQkY4RDE3MDU3QTlGNzc3 Qjc5MEM3NjBGQURCMzREMTk1Qzc4RUE2MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMm9M7N3kiI4DC9mBroSGVLDyDS2358YwA0iJO64OlUrsbHd8GJv dJdHG2wgGp1+DbK/su95hldd9XGFeg5C/uyyvA/puDXZU6nd8pkf78m5Y1o/rKKS 6XVvFJXZ0attjHFSY4Pa7LBVkj4XGacqI/RXaN7kxf8662GpLKb5XSizcpwwRVUv qQdNtCE+o8+sU71X0FZXDBPgGkMDpasnpnv9ZAgCqFC1mvus5pKiDXofMFgdM8xv E5/ZR3llP31PJXweWo7S4C2Gnfnk4EBKnNzXmhRNjDKMrPDL2ED5bz4s3lytu5dO XN8nbuhQ3ee8mZqpUu1Ub2z2/seSVadLGPcCAwEAAaOCAe8wggHrMB0GA1UdDgQW BBS/jRcFep93e3kMdg+ts00ZXHjqYzAfBgNVHSMEGDAWgBQ76JbP8sAWl4SEUNq3 8hoeFKTwhjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MQVpDTy9P LWlXel9MQUZwZUVoRkRhdF9JYUhoU2s4SVkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L08taVd6X0xBRnBlRWhGRGF0X0lhSGhTazhJWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0xBWkNPL3Y0MFhCWHFmZDN0NURIWVByYk5O R1Z4NDZtTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAk8g AAIwDQYJKoZIhvcNAQELBQADggEBAI7Ggzbblh7C7/m5rGuZwx2OTNL0zwdD2igc M3O58p8Aofi73pjyPpYfz16kU1BTgXw/2vXHrIPNg8F5ZLsARldVY7ssprdOEtkE tNUyWra/C42eGJ5jK0BYuIxTv7QgLmc0sJ7th0G6B4+btreaLvUXisReT6JdRw6P ADEwG1IlBCi0652qwEDrX8QP4+vHHEoU6v9/lb4mt0hg7F3Nkj8v2ydvzsIYDoci B0karakl5a7qDV0ZbpS+qwKBvO2t8u4gnGzkuUJtjcEfGwNF26NZM96Q6rEXkqDW MG5ZfkdPTvyo2OIJ9GlxQ8YnIHIo/gnhO6qaZ6jaKHWBkVmQMKw= -----END CERTIFICATE-----Generated at Fri Mar 27 01:33:46 2026 by rpki-client