$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LAZCO/Vo0vQFl-YSprpWfMsXwLKw54iQY.roa File: Vo0vQFl-YSprpWfMsXwLKw54iQY.roa (raw, json) Hash identifier: cJvpln4Oh1vDxWiT49SXjpKmSRirnpk1kEPNrtQLaMQ= Subject key identifier: 56:8D:2F:40:59:7E:61:2A:6B:A5:67:CC:B1:7C:0B:2B:0E:78:89:06 Certificate issuer: /CN=BE8CBC0588CD2D1733DE20FA047A38657804EAD6 Certificate serial: F8 Authority key identifier: BE:8C:BC:05:88:CD:2D:17:33:DE:20:FA:04:7A:38:65:78:04:EA:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/voy8BYjNLRcz3iD6BHo4ZXgE6tY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/Vo0vQFl-YSprpWfMsXwLKw54iQY.roa Signing time: Fri 17 Apr 2026 09:16:35 +0000 ROA not before: Fri 17 Apr 2026 09:16:35 +0000 ROA not after: Wed 24 Feb 2027 15:30:19 +0000 asID: 197537 IP address blocks: 151.158.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/voy8BYjNLRcz3iD6BHo4ZXgE6tY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/voy8BYjNLRcz3iD6BHo4ZXgE6tY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/voy8BYjNLRcz3iD6BHo4ZXgE6tY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 15:16:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE8CBC0588CD2D1733DE20FA047A38657804EAD6 Validity Not Before: Apr 17 09:16:35 2026 GMT Not After : Feb 24 15:30:19 2027 GMT Subject: CN=568D2F40597E612A6BA567CCB17C0B2B0E788906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:11:f7:10:da:be:8a:b9:7c:45:6f:20:b0:0f: 52:83:c0:6a:ca:90:c3:cb:ff:cb:60:46:f2:8b:65: f0:de:c4:bb:33:c3:aa:ef:33:6a:7e:c1:0d:2f:01: 23:2c:bd:e7:c4:ab:d1:f4:f2:fd:62:f8:58:6a:6a: 0d:36:32:9c:5d:63:26:61:f7:48:ee:a4:28:19:bb: 1c:ed:7c:5b:38:8a:f5:b8:f1:76:eb:98:20:b1:18: 1d:c8:14:6a:35:3a:7b:c2:7e:cf:be:6b:b0:7b:21: 45:a0:c3:a4:e0:f1:c8:35:b2:8e:a2:89:71:ee:27: 72:52:7d:95:de:50:25:35:55:ce:ca:3d:1c:31:73: ca:43:68:a1:b0:46:90:bf:0f:62:6d:b2:b5:56:2b: de:fb:9d:52:16:79:23:f6:e5:79:6a:43:1d:ad:94: df:58:52:ea:4b:f9:0a:81:a7:00:61:34:8b:82:f0: 72:a5:ac:8d:18:81:69:ab:83:91:c2:d5:ec:86:af: e2:dc:c3:30:66:50:95:a4:2d:3b:4d:fa:80:d5:a3: c9:eb:88:73:49:d0:ca:38:1c:c0:22:3d:17:fd:35: f5:8b:ec:7b:5f:ce:21:9c:85:1c:b9:e2:42:d2:9f: 13:8d:68:78:9e:27:4f:2e:92:d9:08:d2:59:ae:00: 13:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:8D:2F:40:59:7E:61:2A:6B:A5:67:CC:B1:7C:0B:2B:0E:78:89:06 X509v3 Authority Key Identifier: keyid:BE:8C:BC:05:88:CD:2D:17:33:DE:20:FA:04:7A:38:65:78:04:EA:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/voy8BYjNLRcz3iD6BHo4ZXgE6tY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/voy8BYjNLRcz3iD6BHo4ZXgE6tY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/Vo0vQFl-YSprpWfMsXwLKw54iQY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 151.158.225.0/24 Signature Algorithm: sha256WithRSAEncryption 36:1f:68:9d:32:a6:48:3e:c0:9e:19:23:30:f8:ce:e1:9f:b3: 0c:a2:d9:f2:18:ce:f7:34:83:71:f5:04:c6:82:79:61:66:85: ac:25:8a:e9:81:81:71:f1:72:9f:c3:ac:4f:15:24:86:4c:62: 54:e0:73:07:b9:57:bb:c7:24:ea:95:96:2a:e9:48:6a:1a:71: 49:c4:f8:32:b6:7a:10:f7:5d:6e:a5:3e:5c:b9:cf:d8:24:0a: 60:d8:d2:fa:48:a5:f6:38:85:a8:8b:6d:b4:5b:6f:b3:d7:3f: ba:42:bf:da:74:1b:5c:0b:bd:66:be:3f:2b:56:12:3f:ed:6e: 48:6b:03:ba:03:8b:29:dd:37:c1:2e:53:ae:ab:85:77:53:3e: 8d:55:98:cb:8c:0f:dc:cd:54:c9:31:e1:0b:37:8d:c3:f8:fb: 6f:47:1a:1a:43:10:c0:35:97:6c:1f:59:17:d2:30:a4:e0:17: b2:5e:6b:34:30:b7:12:09:7b:b7:7c:c3:9d:2c:70:8e:07:e4: 26:7d:2d:39:9b:6b:a4:13:34:88:63:d0:a2:04:7a:0d:f1:31: 71:f9:4a:af:ef:f5:82:39:d7:08:52:5a:0c:6c:8c:77:82:73: ec:24:88:10:4e:23:dd:6d:6b:a3:9c:7a:46:6b:bb:ac:52:39: fc:81:4b:1c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkU4 Q0JDMDU4OENEMkQxNzMzREUyMEZBMDQ3QTM4NjU3ODA0RUFENjAeFw0yNjA0MTcw OTE2MzVaFw0yNzAyMjQxNTMwMTlaMDMxMTAvBgNVBAMTKDU2OEQyRjQwNTk3RTYx MkE2QkE1NjdDQ0IxN0MwQjJCMEU3ODg5MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFEfcQ2r6KuXxFbyCwD1KDwGrKkMPL/8tgRvKLZfDexLszw6rv M2p+wQ0vASMsvefEq9H08v1i+Fhqag02MpxdYyZh90jupCgZuxztfFs4ivW48Xbr mCCxGB3IFGo1OnvCfs++a7B7IUWgw6Tg8cg1so6iiXHuJ3JSfZXeUCU1Vc7KPRwx c8pDaKGwRpC/D2JtsrVWK977nVIWeSP25XlqQx2tlN9YUupL+QqBpwBhNIuC8HKl rI0YgWmrg5HC1eyGr+LcwzBmUJWkLTtN+oDVo8nriHNJ0Mo4HMAiPRf9NfWL7Htf ziGchRy54kLSnxONaHieJ08uktkI0lmuABNFAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUVo0vQFl+YSprpWfMsXwLKw54iQYwHwYDVR0jBBgwFoAUvoy8BYjNLRcz3iD6 BHo4ZXgE6tYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEFaQ08v dm95OEJZak5MUmN6M2lENkJIbzRaWGdFNnRZLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS92b3k4QllqTkxSY3ozaUQ2QkhvNFpYZ0U2dFkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MQVpDTy9WbzB2UUZsLVlTcHJwV2ZNc1h3 TEt3NTRpUVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl57h MA0GCSqGSIb3DQEBCwUAA4IBAQA2H2idMqZIPsCeGSMw+M7hn7MMotnyGM73NINx 9QTGgnlhZoWsJYrpgYFx8XKfw6xPFSSGTGJU4HMHuVe7xyTqlZYq6UhqGnFJxPgy tnoQ911upT5cuc/YJApg2NL6SKX2OIWoi220W2+z1z+6Qr/adBtcC71mvj8rVhI/ 7W5IawO6A4sp3TfBLlOuq4V3Uz6NVZjLjA/czVTJMeELN43D+PtvRxoaQxDANZds H1kX0jCk4BeyXms0MLcSCXu3fMOdLHCOB+QmfS05m2ukEzSIY9CiBHoN8TFx+Uqv 7/WCOdcIUloMbIx3gnPsJIgQTiPdbWujnHpGa7usUjn8gUsc -----END CERTIFICATE-----Generated at Fri Apr 17 13:27:46 2026 by rpki-client