Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/1-ZoMRvze89Ska9Rf_7X53MezKY.roa
File:                     1-ZoMRvze89Ska9Rf_7X53MezKY.roa (raw, json)
Hash identifier:          tFvHHvN9WLmX8HoIPw4eHHeQkblfaUS+bAtUXDcLerQ=
Subject key identifier:   D7:E6:68:31:1B:F3:7B:CF:52:91:AF:51:7F:FE:D7:E7:73:1E:CC:A6
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1-ZoMRvze89Ska9Rf_7X53MezKY.roa
Signing time:             Thu 15 Sep 2022 02:40:23 +0000
ROA not before:           Thu 15 Sep 2022 02:40:23 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24155
IP address blocks:        203.201.32.0/20 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3939 (0xf63)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 15 02:40:23 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=D7E668311BF37BCF5291AF517FFED7E7731ECCA6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:e7:35:a6:3c:71:b2:75:e0:29:a9:04:18:de:
                    3c:aa:4f:08:41:d7:a6:c4:6d:a9:80:ab:9d:fb:bc:
                    a6:c7:27:47:54:dc:db:33:d8:6d:16:3f:8b:97:3c:
                    88:ee:2c:6d:61:be:2b:21:20:48:8a:19:db:57:be:
                    2b:4e:59:cf:59:a8:b1:fd:c5:25:09:15:e4:04:f1:
                    9b:db:2f:7d:d7:78:22:83:e3:99:f9:e4:f0:02:63:
                    c8:e2:e2:c3:fc:b8:1d:7c:fe:1e:e2:b9:23:80:db:
                    c8:23:af:e2:43:7d:61:2c:14:02:70:51:01:cb:78:
                    b8:fa:e3:59:37:9f:75:37:c0:0b:cc:41:40:ef:f9:
                    20:18:0e:2e:78:f1:12:3b:d3:24:a5:b6:d2:73:d9:
                    cd:2a:83:81:2b:46:d2:da:a9:ea:ee:31:24:51:31:
                    07:04:ff:1c:00:8b:19:db:db:0c:39:db:a1:8c:b8:
                    1b:b0:ab:2f:7d:97:fc:c0:2d:25:a5:b1:c8:c9:17:
                    d1:ef:73:f0:83:3f:74:56:e7:71:02:f0:47:6f:7e:
                    88:d2:f9:43:54:83:e6:df:ab:e8:23:1f:3d:a3:36:
                    21:48:1e:0b:7a:81:99:c2:6e:eb:9b:8e:7b:9a:6f:
                    e0:14:7d:7c:98:49:51:3e:95:a7:a9:b6:d4:0a:7a:
                    ec:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D7:E6:68:31:1B:F3:7B:CF:52:91:AF:51:7F:FE:D7:E7:73:1E:CC:A6
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1-ZoMRvze89Ska9Rf_7X53MezKY.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  203.201.32.0/20

    Signature Algorithm: sha256WithRSAEncryption
         3e:d0:53:81:90:46:4d:af:cd:a1:8b:49:f9:09:45:39:ee:33:
         b4:cb:24:0a:50:34:a9:68:ad:4a:c7:54:3a:18:cd:11:0f:ae:
         9f:ad:05:45:56:40:2a:54:8e:9c:c2:bc:36:6e:be:85:7c:7a:
         65:2f:ef:29:eb:21:f9:ff:ca:8b:3d:ac:f7:ae:68:61:b7:94:
         3e:2a:a4:f8:f7:e2:62:c4:b7:01:f4:2f:cd:23:da:85:00:f3:
         c3:1b:d4:ff:e5:08:69:3f:e8:9d:61:60:66:17:bc:78:2c:b5:
         ff:a5:dd:ae:4d:f9:64:44:d4:8a:d8:87:df:b6:0f:d6:18:8f:
         06:91:df:9b:02:e5:1c:4b:0a:26:a6:fa:10:d4:b0:80:30:23:
         d3:5b:4f:6d:38:6f:2f:86:7a:77:7b:ef:3f:82:b6:c6:89:5b:
         2f:90:35:95:88:3c:4e:c5:28:39:4b:5c:3b:74:83:21:0b:19:
         26:44:76:fc:3b:c4:40:08:00:57:20:f3:e7:ad:e3:5b:47:57:
         e3:c1:f0:03:ca:e4:e4:e6:72:23:6e:b3:24:e6:12:83:3a:36:
         58:f2:1b:a7:7a:f1:16:67:8c:c3:8b:8c:95:1c:f1:f0:11:34:
         54:cc:cf:1c:c6:0c:b1:34:a7:8b:77:1e:31:fe:c0:0b:91:77:
         d3:b9:fe:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org