Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PROFOND/0/AS24165.roa
File: AS24165.roa (raw, json)
Hash identifier: 9jt/4zU4+ts0o/vd18Ywb3wr2Nts54vHZqoTaw78B4k=
Subject key identifier: 1D:7D:02:8F:4E:B4:12:EF:82:AF:E4:41:97:30:5E:F6:2E:72:7F:E9
Certificate issuer: /CN=9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5
Certificate serial: 67AF5C0D561DD13B1E53D2A7FC923C43664406EF
Authority key identifier: 9B:01:D5:A4:96:75:5D:F6:9A:C9:2F:EC:3B:D6:4F:FE:4A:EA:51:F5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PROFOND/0/AS24165.roa
Signing time: Mon 11 May 2026 17:18:17 +0000
ROA not before: Mon 11 May 2026 17:13:17 +0000
ROA not after: Mon 10 May 2027 17:18:17 +0000
asID: 24165
IP address blocks: 203.77.40.0/22 maxlen: 24
203.77.44.0/22 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:af:5c:0d:56:1d:d1:3b:1e:53:d2:a7:fc:92:3c:43:66:44:06:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5
Validity
Not Before: May 11 17:13:17 2026 GMT
Not After : May 10 17:18:17 2027 GMT
Subject: CN=1D7D028F4EB412EF82AFE44197305EF62E727FE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5e:2b:08:5c:24:86:09:ff:4e:89:ad:df:ad:
17:00:f5:38:b2:8b:1a:c6:65:35:6e:82:78:9e:f1:
0d:80:f4:41:27:34:82:e6:23:43:05:fb:fa:73:6b:
d8:28:32:36:91:14:eb:76:8f:4d:ee:2b:10:01:41:
b0:2b:24:93:b2:cd:e8:e1:6f:62:79:54:09:50:5f:
fa:73:c6:a0:3a:2d:4f:aa:7c:73:f2:b1:03:10:7d:
2b:ac:3f:f4:ec:b2:ff:b4:99:fa:44:13:40:97:ac:
5b:3b:a6:b8:2e:30:92:ef:8a:84:ea:1c:9e:30:eb:
83:97:e9:40:af:92:58:d0:4d:34:48:85:96:6d:bb:
07:69:56:90:a6:77:78:37:dc:7d:d4:91:54:fd:f2:
2f:a5:95:3e:3a:44:a9:ec:7a:b5:3d:36:15:65:dc:
83:d6:38:a3:7b:a7:4c:b0:6e:f5:09:d2:dc:36:f3:
4a:1a:17:a1:0b:de:d5:df:31:c4:dc:08:91:19:fd:
44:f1:29:57:e0:6e:0d:1b:7d:06:89:ce:09:fe:29:
3f:d7:a1:d8:e2:52:cb:40:8e:ba:dd:81:b2:f3:45:
4f:22:69:9e:2a:38:f8:90:2c:df:47:7c:2f:85:d7:
40:28:b6:4a:27:13:d6:48:5a:b2:82:b1:21:03:9d:
1a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:7D:02:8F:4E:B4:12:EF:82:AF:E4:41:97:30:5E:F6:2E:72:7F:E9
X509v3 Authority Key Identifier:
keyid:9B:01:D5:A4:96:75:5D:F6:9A:C9:2F:EC:3B:D6:4F:FE:4A:EA:51:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PROFOND/0/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9B01D5A496755DF69AC92FEC3BD64FFE4AEA51F5.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PROFOND/0/AS24165.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.77.40.0/21
Signature Algorithm: sha256WithRSAEncryption
88:3d:2c:72:6c:e2:16:40:02:8b:d9:15:83:de:b9:73:99:b7:
d4:98:4e:fc:61:d0:de:09:6d:c6:a6:83:5c:a0:6b:7d:c3:d9:
ea:7f:d4:c7:20:fa:5d:de:a0:7b:6d:12:52:24:8c:92:7e:c5:
87:48:e0:f9:72:56:57:2c:51:a3:a3:dc:30:0e:37:65:32:5a:
9e:e9:66:f8:ff:6e:7b:4b:3a:ff:9f:1b:49:4d:0e:0a:d4:44:
b6:e2:34:40:86:69:36:b1:e7:0f:e6:c3:15:92:8d:11:da:50:
ae:4e:46:3c:13:68:9d:8e:e5:5b:53:85:3c:71:30:59:b2:1e:
07:89:8a:e3:f0:e5:cd:91:e2:d0:ea:2e:81:b2:d0:d7:43:d0:
e1:99:5d:a7:7b:0b:61:a1:bd:80:8f:46:0e:64:17:ce:60:b6:
fc:1c:e2:1c:20:9e:bd:bc:88:bb:05:19:61:ea:5e:69:17:a7:
66:d8:48:e4:2f:2c:2d:68:d6:d0:6c:17:db:d8:b5:b0:30:36:
5d:56:df:08:c0:c1:11:8d:ef:20:ab:67:3b:34:d7:e8:54:51:
71:cd:91:20:ef:9e:8d:b4:8a:3e:88:09:c8:2f:68:bd:03:12:
cf:af:2c:be:eb:6c:55:75:b3:3a:95:f6:c5:ac:27:f7:8d:db:
0b:b5:c6:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:04:31 2026 by rpki-client