Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PROFOND/0/AS133747.roa
File: AS133747.roa (raw, json)
Hash identifier: sYTVDtshx/FPq+n+PqCFHtr6Z60U3spY948bL/gvNKg=
Subject key identifier: BB:95:67:1E:0A:C8:E5:82:26:3D:D5:89:DF:A6:2F:7E:03:44:FF:52
Certificate issuer: /CN=9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5
Certificate serial: 6582468ABAEBF70D3062D8F5D98E9FD30E606EB1
Authority key identifier: 9B:01:D5:A4:96:75:5D:F6:9A:C9:2F:EC:3B:D6:4F:FE:4A:EA:51:F5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PROFOND/0/AS133747.roa
Signing time: Mon 11 May 2026 17:18:59 +0000
ROA not before: Mon 11 May 2026 17:13:59 +0000
ROA not after: Mon 10 May 2027 17:18:59 +0000
asID: 133747
IP address blocks: 60.198.136.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:82:46:8a:ba:eb:f7:0d:30:62:d8:f5:d9:8e:9f:d3:0e:60:6e:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5
Validity
Not Before: May 11 17:13:59 2026 GMT
Not After : May 10 17:18:59 2027 GMT
Subject: CN=BB95671E0AC8E582263DD589DFA62F7E0344FF52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c0:23:22:3f:31:77:6a:16:09:59:f3:89:91:
7f:e5:8e:5e:11:75:61:3f:03:64:e4:90:65:9d:ac:
e8:1c:73:e5:9f:c9:58:7a:71:70:36:7b:1f:dd:33:
93:5b:5c:07:23:8e:6c:f1:4d:30:92:26:f8:df:0a:
8e:66:91:0e:ab:82:f8:d1:ce:a7:06:b1:d7:1a:ba:
ef:72:6d:bd:a1:4e:56:81:aa:5f:15:7d:db:e6:a1:
0b:cf:c1:a6:b5:76:37:d0:e4:3d:a1:6b:a0:d0:f4:
8a:bd:f6:fa:80:26:9c:79:d1:41:87:44:55:63:c1:
e6:24:86:36:ba:75:23:b1:76:4c:ff:fd:ad:d6:c0:
e1:54:34:58:0a:ec:c3:0b:0b:5f:7d:d5:0e:d2:6c:
15:dc:36:69:8d:5f:d1:e6:dd:7a:df:24:f0:e3:24:
bc:72:39:e8:43:cb:0d:9a:cd:df:07:87:58:25:3a:
05:45:04:de:2d:d9:36:88:1c:c9:07:ab:39:6d:f3:
77:81:be:5f:43:77:31:4d:a5:df:22:7d:88:ec:a7:
9e:78:99:0c:8b:71:34:6b:0c:e4:43:dc:98:06:09:
1e:e4:aa:7a:c5:0e:f6:d7:3b:ee:5c:9d:0c:1d:8f:
ba:25:38:1c:c5:e5:b4:b3:09:7c:5f:db:46:db:a5:
ff:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:95:67:1E:0A:C8:E5:82:26:3D:D5:89:DF:A6:2F:7E:03:44:FF:52
X509v3 Authority Key Identifier:
keyid:9B:01:D5:A4:96:75:5D:F6:9A:C9:2F:EC:3B:D6:4F:FE:4A:EA:51:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PROFOND/0/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PROFOND/0/AS133747.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
60.198.136.0/24
Signature Algorithm: sha256WithRSAEncryption
40:69:9e:a4:91:86:4d:35:0f:12:0d:e7:c5:8d:db:5f:0b:ad:
9b:1c:6f:ba:a0:91:94:66:ee:cf:3a:d0:c1:af:4e:2c:bd:d8:
a2:d4:7d:5d:30:3e:ba:45:46:dc:1f:44:83:d6:b7:43:25:c9:
e1:ba:a0:23:1f:5b:d8:9f:68:3b:f2:b6:e8:25:ac:ba:5e:d5:
96:5c:38:e2:0d:8e:9b:5d:fb:27:3e:4c:d0:4a:66:bf:04:bf:
24:ad:23:19:09:31:1d:50:4c:f0:74:39:bc:c5:53:b9:fb:26:
f4:5b:7c:22:89:48:f5:11:02:8a:b6:f9:20:48:49:31:47:30:
24:b0:f3:75:34:f2:7f:4e:7f:f7:78:2f:2b:ee:0d:81:d0:a4:
da:51:c2:c9:ce:8b:99:29:48:ab:02:ad:e1:73:38:60:6f:64:
97:a1:a5:9a:7e:82:11:16:e8:82:76:81:e8:c1:0a:6b:23:33:
72:b2:e1:f0:ad:6c:b3:c9:df:a1:6d:af:94:b9:63:2c:6b:92:
d0:c5:c3:77:eb:60:77:60:5b:d1:23:c3:fc:52:90:8f:f7:d9:
d4:58:a3:c2:66:c1:6c:83:8d:aa:92:15:1f:b5:1d:df:d4:8e:
7c:21:09:22:f9:78:66:86:29:55:13:78:4a:a9:c6:5f:1f:10:
63:c9:15:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:04:27 2026 by rpki-client