Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PROFOND/0/AS131611.roa
File: AS131611.roa (raw, json)
Hash identifier: mvKazFQTqWEYfFel9UNSPzchLE55lx9ddNLi4292dQY=
Subject key identifier: 5B:F8:D0:C7:97:67:7B:C6:60:0E:DA:3E:0C:B4:9C:69:49:16:EA:47
Certificate issuer: /CN=9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5
Certificate serial: 2C32FBD5A20A2D2566B3A334234CBEE5C3B0050B
Authority key identifier: 9B:01:D5:A4:96:75:5D:F6:9A:C9:2F:EC:3B:D6:4F:FE:4A:EA:51:F5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PROFOND/0/AS131611.roa
Signing time: Mon 11 May 2026 17:08:39 +0000
ROA not before: Mon 11 May 2026 17:03:39 +0000
ROA not after: Mon 10 May 2027 17:08:39 +0000
asID: 131611
IP address blocks: 60.198.160.0/19 maxlen: 24
124.9.64.0/19 maxlen: 24
124.9.96.0/19 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:32:fb:d5:a2:0a:2d:25:66:b3:a3:34:23:4c:be:e5:c3:b0:05:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5
Validity
Not Before: May 11 17:03:39 2026 GMT
Not After : May 10 17:08:39 2027 GMT
Subject: CN=5BF8D0C797677BC6600EDA3E0CB49C694916EA47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0f:81:e5:25:af:e5:82:4b:7f:61:ca:96:98:
9a:41:6c:6e:0f:d7:ca:4b:31:4e:43:24:fe:01:e6:
da:e6:dd:00:c4:8d:fd:2d:ec:0e:c5:cf:5d:ed:69:
b3:ec:ad:aa:f1:aa:09:eb:55:74:ab:66:7f:6b:f9:
dd:14:14:57:80:2f:73:91:f3:01:6f:c3:4b:7e:ef:
37:3b:76:18:93:12:09:5f:c8:04:4e:94:11:e2:a0:
3e:05:5f:6a:b3:09:99:90:86:7e:24:60:28:45:c7:
71:af:38:b0:31:0d:05:c3:ac:ca:24:e1:29:3d:e3:
da:88:13:fd:9f:a7:16:96:a0:48:8e:b6:dd:76:05:
96:5c:0e:6f:c7:a9:5c:ff:d5:9e:62:7b:d0:dd:3b:
64:07:bb:1c:42:7f:47:cf:51:32:5a:59:8b:c9:b5:
a1:8f:b0:e6:2e:dc:f2:0c:65:0d:a9:57:26:13:cf:
b7:12:af:47:7a:be:e2:ef:bf:3c:07:49:c0:f5:d7:
d7:06:dc:e3:14:d9:5c:7f:29:a3:80:12:74:33:48:
84:03:21:0f:b8:07:27:da:12:9a:00:4f:58:6c:3e:
5a:cd:e0:a1:33:07:23:89:a1:e0:a4:a6:12:4b:7e:
d0:c8:0f:40:17:07:44:ba:ab:15:04:b6:d8:0f:17:
48:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:F8:D0:C7:97:67:7B:C6:60:0E:DA:3E:0C:B4:9C:69:49:16:EA:47
X509v3 Authority Key Identifier:
keyid:9B:01:D5:A4:96:75:5D:F6:9A:C9:2F:EC:3B:D6:4F:FE:4A:EA:51:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PROFOND/0/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PROFOND/0/AS131611.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
60.198.160.0/19
124.9.64.0/18
Signature Algorithm: sha256WithRSAEncryption
04:47:38:78:f1:7c:05:58:b6:47:17:f9:53:42:0a:8c:f7:e7:
05:16:1f:24:e8:78:ff:b6:24:ec:56:3a:1b:46:c7:9f:55:41:
df:94:ee:aa:06:07:7d:d3:9e:89:a5:56:16:61:b9:bd:d0:cb:
07:16:12:d1:55:a0:0c:20:a3:c4:12:f1:58:ac:77:22:9a:e9:
1f:28:65:a0:b1:91:40:bd:8c:78:50:3d:88:d3:69:bf:f7:fb:
f2:2c:ae:e2:2e:91:b8:a0:da:4a:a1:b8:3c:d7:f1:eb:15:b1:
90:5f:56:8f:28:d2:7d:92:27:4c:51:a8:59:10:e8:02:7e:07:
0c:2b:b7:e6:80:9f:f8:5a:de:b4:f6:6c:c0:c5:72:a4:8e:7e:
b7:95:90:a5:52:f5:38:4c:64:5c:31:ed:e8:5d:96:00:d8:1e:
4d:0b:0b:e4:38:65:03:f3:d7:99:29:bc:d6:fc:53:1f:f7:68:
78:af:f2:8d:84:45:bc:d1:1b:4f:95:65:73:a8:89:43:16:f9:
55:36:d4:fc:56:89:58:12:12:a6:8f:b4:7f:7a:41:66:71:ed:
1e:5c:c2:29:3c:91:ab:85:be:61:c3:e1:71:31:db:66:86:92:
bc:a0:32:39:1a:41:5d:6a:43:ac:23:0f:18:37:3e:05:4e:f7:
3f:f2:3c:8c
-----BEGIN CERTIFICATE-----
MIIEszCCA5ugAwIBAgIULDL71aIKLSVms6M0I0y+5cOwBQswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUIwMUQ1QTQ5Njc1NURGNjlBQzkyRkVDM0JENjRGRkU0
QUVBNTFGNTAeFw0yNjA1MTExNzAzMzlaFw0yNzA1MTAxNzA4MzlaMDMxMTAvBgNV
BAMTKDVCRjhEMEM3OTc2NzdCQzY2MDBFREEzRTBDQjQ5QzY5NDkxNkVBNDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaD4HlJa/lgkt/YcqWmJpBbG4P
18pLMU5DJP4B5trm3QDEjf0t7A7Fz13tabPsrarxqgnrVXSrZn9r+d0UFFeAL3OR
8wFvw0t+7zc7dhiTEglfyAROlBHioD4FX2qzCZmQhn4kYChFx3GvOLAxDQXDrMok
4Sk949qIE/2fpxaWoEiOtt12BZZcDm/HqVz/1Z5ie9DdO2QHuxxCf0fPUTJaWYvJ
taGPsOYu3PIMZQ2pVyYTz7cSr0d6vuLvvzwHScD119cG3OMU2Vx/KaOAEnQzSIQD
IQ+4ByfaEpoAT1hsPlrN4KEzByOJoeCkphJLftDID0AXB0S6qxUEttgPF0iNAgMB
AAGjggG9MIIBuTAdBgNVHQ4EFgQUW/jQx5dne8ZgDto+DLScaUkW6kcwHwYDVR0j
BBgwFoAUmwHVpJZ1XfaayS/sO9ZP/krqUfUwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud
HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFJPRk9O
RC8wLzlCMDFENUE0OTY3NTVERjY5QUM5MkZFQzNCRDY0RkZFNEFFQTUxRjUuY3Js
MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu
aWMudHcvcnBraS9UV05JQ0NBLzEvOUIwMUQ1QTQ5Njc1NURGNjlBQzkyRkVDM0JE
NjRGRkU0QUVBNTFGNS5jZXIwTwYIKwYBBQUHAQsEQzBBMD8GCCsGAQUFBzALhjNy
c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BST0ZPTkQvMC9BUzEzMTYxMS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw
EgQCAAEwDAMEBTzGoAMEBnwJQDANBgkqhkiG9w0BAQsFAAOCAQEABEc4ePF8BVi2
Rxf5U0IKjPfnBRYfJOh4/7Yk7FY6G0bHn1VB35TuqgYHfdOeiaVWFmG5vdDLBxYS
0VWgDCCjxBLxWKx3IprpHyhloLGRQL2MeFA9iNNpv/f78iyu4i6RuKDaSqG4PNfx
6xWxkF9WjyjSfZInTFGoWRDoAn4HDCu35oCf+FretPZswMVypI5+t5WQpVL1OExk
XDHt6F2WANgeTQsL5DhlA/PXmSm81vxTH/doeK/yjYRFvNEbT5Vlc6iJQxb5VTbU
/FaJWBISpo+0f3pBZnHtHlzCKTyRq4W+YcPhcTHbZoaSvKAyORpBXWpDrCMPGDc+
BU73P/I8jA==
-----END CERTIFICATE-----
Generated at Tue May 12 23:04:27 2026 by rpki-client