$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LAZCO/olRPEWlfrQ15OikVZmtjxH-5CEU.roa File: olRPEWlfrQ15OikVZmtjxH-5CEU.roa (raw, json) Hash identifier: ZfgR+4tM+Ak+euNUopEr5CUJ1nqnV8hPV4D1NB/T++c= Subject key identifier: A2:54:4F:11:69:5F:AD:0D:79:3A:29:15:66:6B:63:C4:7F:B9:08:45 Certificate issuer: /CN=BE8CBC0588CD2D1733DE20FA047A38657804EAD6 Certificate serial: FA Authority key identifier: BE:8C:BC:05:88:CD:2D:17:33:DE:20:FA:04:7A:38:65:78:04:EA:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/voy8BYjNLRcz3iD6BHo4ZXgE6tY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/olRPEWlfrQ15OikVZmtjxH-5CEU.roa Signing time: Fri 17 Apr 2026 09:16:47 +0000 ROA not before: Fri 17 Apr 2026 09:16:47 +0000 ROA not after: Wed 24 Feb 2027 15:30:19 +0000 asID: 202736 IP address blocks: 151.158.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/voy8BYjNLRcz3iD6BHo4ZXgE6tY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/voy8BYjNLRcz3iD6BHo4ZXgE6tY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/voy8BYjNLRcz3iD6BHo4ZXgE6tY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 15:16:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE8CBC0588CD2D1733DE20FA047A38657804EAD6 Validity Not Before: Apr 17 09:16:47 2026 GMT Not After : Feb 24 15:30:19 2027 GMT Subject: CN=A2544F11695FAD0D793A2915666B63C47FB90845 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:09:26:61:81:f0:22:9b:54:f0:a7:69:ab:42: b3:56:0f:b6:b6:b8:5d:07:bc:27:fd:37:c0:0d:a5: 6e:0d:ea:9b:c8:c8:07:f3:d2:fd:ce:64:38:8a:83: 1f:d3:9c:b6:47:f0:db:cd:e5:41:99:fe:f0:23:b5: a8:ae:09:1b:8b:e6:74:a0:5a:79:c5:9b:3d:27:1b: 56:10:0f:75:03:85:5e:f0:c3:d3:00:02:50:b2:d0: 28:dd:73:10:e8:7e:2f:89:96:50:ea:4e:30:08:45: dc:70:69:26:e5:93:47:42:be:d0:fe:98:ca:78:d7: d9:62:56:02:25:da:e4:05:4f:10:e0:a9:e1:ae:b8: 98:a5:36:79:cd:bf:54:93:19:00:30:78:81:b0:54: e0:ef:dc:ce:9b:34:f8:92:7d:8d:2a:b3:57:3c:92: bf:73:e7:8c:15:a7:cf:88:a5:14:00:57:58:5b:f4: ae:39:6f:5f:50:4a:57:2e:95:bb:27:ea:53:30:7b: 88:48:e4:52:68:d4:f3:cb:fa:a0:04:64:58:da:31: 76:04:c8:2f:dc:c4:94:99:53:da:df:c4:b2:f0:c5: 31:67:37:d1:be:ef:f8:95:b8:77:58:57:d6:77:61: 7f:ea:b6:18:25:f5:39:6f:92:2c:a5:a9:0f:8f:72: 06:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:54:4F:11:69:5F:AD:0D:79:3A:29:15:66:6B:63:C4:7F:B9:08:45 X509v3 Authority Key Identifier: keyid:BE:8C:BC:05:88:CD:2D:17:33:DE:20:FA:04:7A:38:65:78:04:EA:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/voy8BYjNLRcz3iD6BHo4ZXgE6tY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/voy8BYjNLRcz3iD6BHo4ZXgE6tY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/olRPEWlfrQ15OikVZmtjxH-5CEU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 151.158.225.0/24 Signature Algorithm: sha256WithRSAEncryption 08:3f:87:a4:b3:77:5e:f1:78:03:ef:d6:4a:1a:8c:f2:fc:f1: 9c:bd:18:b6:18:f8:b9:38:ae:4d:b8:c4:b6:5c:ea:06:3b:ac: 35:58:17:41:6e:04:03:69:1f:97:ed:09:14:22:4e:55:f2:94: f8:56:3f:d8:75:56:2c:40:51:f9:33:56:b9:e3:52:c9:84:b2: 47:df:67:b8:ab:7e:a6:63:b3:1f:41:42:b1:b7:5c:b6:21:87: bd:b2:ad:32:64:f8:a4:1a:84:ff:5f:20:f9:16:e3:5e:1d:55: 10:d4:40:44:20:ed:dd:03:35:65:6b:4c:ba:e0:88:6a:dd:ce: 19:51:36:6e:ae:7d:1a:5a:60:9e:79:28:30:03:c9:13:83:d2: 5b:5a:65:d9:5a:ec:13:d9:08:c8:65:55:d6:9b:aa:eb:c4:8c: 94:7c:eb:8c:e1:12:b7:49:83:cc:79:03:b4:3c:c6:a3:e9:fb: a0:03:2b:9d:5e:e1:5e:61:eb:50:0c:c1:cd:7d:f6:e6:f0:96: 00:f2:08:70:5c:d0:fd:bf:88:66:b5:6c:93:47:e2:d0:d5:30: 46:3f:11:38:fb:bd:96:43:79:29:14:a0:bb:6d:07:f7:e9:9c: fc:f2:98:cc:fe:d4:82:31:48:b0:2b:b4:0a:b9:fe:05:d8:a1: 61:ea:84:fd -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAPowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkU4 Q0JDMDU4OENEMkQxNzMzREUyMEZBMDQ3QTM4NjU3ODA0RUFENjAeFw0yNjA0MTcw OTE2NDdaFw0yNzAyMjQxNTMwMTlaMDMxMTAvBgNVBAMTKEEyNTQ0RjExNjk1RkFE MEQ3OTNBMjkxNTY2NkI2M0M0N0ZCOTA4NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiCSZhgfAim1Twp2mrQrNWD7a2uF0HvCf9N8ANpW4N6pvIyAfz 0v3OZDiKgx/TnLZH8NvN5UGZ/vAjtaiuCRuL5nSgWnnFmz0nG1YQD3UDhV7ww9MA AlCy0CjdcxDofi+JllDqTjAIRdxwaSblk0dCvtD+mMp419liVgIl2uQFTxDgqeGu uJilNnnNv1STGQAweIGwVODv3M6bNPiSfY0qs1c8kr9z54wVp8+IpRQAV1hb9K45 b19QSlculbsn6lMwe4hI5FJo1PPL+qAEZFjaMXYEyC/cxJSZU9rfxLLwxTFnN9G+ 7/iVuHdYV9Z3YX/qthgl9TlvkiylqQ+PcgbBAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUolRPEWlfrQ15OikVZmtjxH+5CEUwHwYDVR0jBBgwFoAUvoy8BYjNLRcz3iD6 BHo4ZXgE6tYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEFaQ08v dm95OEJZak5MUmN6M2lENkJIbzRaWGdFNnRZLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS92b3k4QllqTkxSY3ozaUQ2QkhvNFpYZ0U2dFkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MQVpDTy9vbFJQRVdsZnJRMTVPaWtWWm10 anhILTVDRVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl57h MA0GCSqGSIb3DQEBCwUAA4IBAQAIP4eks3de8XgD79ZKGozy/PGcvRi2GPi5OK5N uMS2XOoGO6w1WBdBbgQDaR+X7QkUIk5V8pT4Vj/YdVYsQFH5M1a541LJhLJH32e4 q36mY7MfQUKxt1y2IYe9sq0yZPikGoT/XyD5FuNeHVUQ1EBEIO3dAzVla0y64Ihq 3c4ZUTZurn0aWmCeeSgwA8kTg9JbWmXZWuwT2QjIZVXWm6rrxIyUfOuM4RK3SYPM eQO0PMaj6fugAyudXuFeYetQDMHNffbm8JYA8ghwXND9v4hmtWyTR+LQ1TBGPxE4 +72WQ3kpFKC7bQf36Zz88pjM/tSCMUiwK7QKuf4F2KFh6oT9 -----END CERTIFICATE-----Generated at Fri Apr 17 15:07:49 2026 by rpki-client