Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TSMC/J3KUXnEKGc4BQHBGyiUk0PGtWTg.roa
File: J3KUXnEKGc4BQHBGyiUk0PGtWTg.roa (raw, json)
Hash identifier: 6eqFXz9Dz0PS2tlA7d9+BdUs//mpXrQKqsX7pbz6e3U=
Subject key identifier: 27:72:94:5E:71:0A:19:CE:01:40:70:46:CA:25:24:D0:F1:AD:59:38
Certificate issuer: /CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337
Certificate serial: 1309
Authority key identifier: 3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/J3KUXnEKGc4BQHBGyiUk0PGtWTg.roa
Signing time: Mon 10 Feb 2025 14:32:01 +0000
ROA not before: Mon 10 Feb 2025 14:32:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 103.132.156.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4873 (0x1309)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337
Validity
Not Before: Feb 10 14:32:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2772945E710A19CE01407046CA2524D0F1AD5938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:73:75:da:80:64:cc:9c:e1:14:36:f2:ef:fb:
b9:b8:e0:9a:84:b2:16:2a:b6:fe:a4:4a:a2:b4:ea:
54:9e:06:c0:6e:23:c2:e9:41:fb:0b:8e:f6:c2:16:
4b:b3:05:74:dc:13:e7:4c:c5:22:7d:38:61:40:bc:
aa:0a:7a:ce:66:fc:9f:ae:6c:0d:5a:07:70:e1:fe:
db:61:61:6e:44:ce:35:32:4f:70:06:60:25:f4:0d:
56:4b:1d:06:e0:07:b3:c1:b2:93:f0:6f:a5:4c:2f:
c5:0a:cd:e8:98:86:30:18:86:31:ca:ba:50:f0:09:
ac:9f:30:ae:b9:68:12:72:e5:3c:73:27:4d:0d:22:
1d:56:2e:f4:fe:39:13:2f:ba:57:f8:d9:a8:54:53:
5d:3c:ea:4e:9c:43:d1:74:75:c8:5f:c8:13:c9:3c:
03:b7:6e:57:01:29:8e:8d:cd:7d:3b:fa:93:fa:17:
55:2f:32:8b:69:b0:8f:82:67:52:33:6c:32:91:9d:
d5:d5:08:02:30:e6:09:5c:ee:d0:6c:2c:80:e6:3a:
ad:0d:db:03:94:cb:2e:0c:7c:7f:cb:82:8e:e1:64:
a6:d6:c7:65:d5:bf:2c:d6:88:53:e7:11:c8:a0:03:
ed:13:bb:89:c0:a1:e7:28:ae:d6:a7:db:31:7d:98:
15:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:72:94:5E:71:0A:19:CE:01:40:70:46:CA:25:24:D0:F1:AD:59:38
X509v3 Authority Key Identifier:
keyid:3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Omvo-teOlcRpDtmZkfp533Xz0zc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/J3KUXnEKGc4BQHBGyiUk0PGtWTg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.132.156.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:1a:9f:de:d5:1f:d8:8e:24:8c:de:94:ac:bf:56:57:04:1e:
aa:2f:f9:06:c7:3a:7e:44:7a:da:4b:82:27:20:5b:c3:b8:75:
d4:6c:6b:88:55:ff:d8:b1:1c:13:43:e0:79:a3:fa:f2:f0:22:
53:ef:f7:03:a1:71:45:0d:d2:59:0f:a9:10:cf:cf:3a:53:51:
a4:11:53:88:6a:b6:7c:62:67:f8:cc:71:9c:79:14:1d:28:39:
11:1a:ae:87:b4:a7:6a:21:a0:94:7f:ef:31:44:4c:81:94:4f:
a3:bc:58:df:79:ed:98:e8:ea:4d:36:ae:af:31:1c:01:2d:d4:
6a:4a:80:b4:8d:0a:3d:bb:c3:ec:00:44:b0:d1:d5:9e:6c:55:
e6:e6:52:d5:03:1d:02:77:de:2f:74:16:6c:23:59:48:12:86:
29:3b:78:0b:8d:c5:ed:f4:0d:93:16:25:fc:f7:f6:2a:01:f3:
9e:e5:3c:3b:c8:be:30:6e:0f:4f:74:cb:3d:10:b9:d9:3f:9d:
bb:ea:7d:58:f8:56:30:08:11:ff:72:f3:6b:31:04:30:3c:b3:
73:f6:5f:68:89:c2:9c:8c:b2:d2:ff:19:a0:d2:84:87:ab:2f:
d3:96:af:9f:b0:48:6e:65:49:47:2c:a5:30:f1:80:37:14:88:
90:9f:40:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:22 2025 by rpki-client