Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/6mUmlZYuRLlQ4pFdvqAX_E_p6Vc.roa
File:                     6mUmlZYuRLlQ4pFdvqAX_E_p6Vc.roa (raw, json)
Hash identifier:          YkSuhGHHgvI2oCcYebgRstogCQrUoF7umKBygKPQlY4=
Subject key identifier:   EA:65:26:95:96:2E:44:B9:50:E2:91:5D:BE:A0:17:FC:4F:E9:E9:57
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       097A
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/6mUmlZYuRLlQ4pFdvqAX_E_p6Vc.roa
Signing time:             Tue 29 Sep 2020 10:01:53 +0000
ROA not before:           Tue 29 Sep 2020 10:01:53 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     9311
IP address blocks:        210.201.76.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2426 (0x97a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 29 10:01:53 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=EA652695962E44B950E2915DBEA017FC4FE9E957
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:ef:ae:d7:9b:6d:43:93:ee:26:8b:d4:36:a4:
                    0f:f4:2a:6b:e0:81:97:17:61:ea:cf:9b:3c:4c:5b:
                    1c:3f:d4:d4:39:35:87:ce:82:79:ce:79:52:d2:9c:
                    55:be:9d:f3:c3:46:91:c6:13:bb:5f:d1:cc:7f:b4:
                    b1:5c:b2:cd:c4:98:13:cc:6e:1a:f5:68:85:f0:ee:
                    a6:8d:92:8e:be:3e:97:0e:45:79:4f:c8:06:0a:ce:
                    98:38:c6:a6:6e:9a:9e:69:a3:42:97:90:d2:b4:26:
                    69:8e:ac:23:47:6e:e6:86:97:7c:1c:4d:82:f5:b3:
                    ba:c4:89:9a:7a:3c:95:7a:3c:4a:5c:09:5c:c1:d5:
                    dd:8e:01:a7:d0:11:21:ee:da:25:c2:00:96:7a:ed:
                    b0:2a:7d:35:74:15:cd:a3:28:a1:f2:a0:f4:04:bf:
                    74:26:85:83:58:94:c1:73:84:a4:9c:3c:0b:b9:87:
                    ad:74:ff:60:b3:09:d8:ed:eb:3e:bc:46:a4:dd:a5:
                    1f:6a:57:56:91:54:4b:7a:a1:2c:b6:ff:93:0f:ec:
                    b8:51:98:08:28:37:0b:8b:19:35:96:c3:c0:e0:e5:
                    9a:35:e0:73:bc:87:ee:52:4c:f2:c2:11:3e:b8:2f:
                    2e:04:33:5b:4a:fe:22:04:43:45:57:e1:29:16:ab:
                    fe:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:65:26:95:96:2E:44:B9:50:E2:91:5D:BE:A0:17:FC:4F:E9:E9:57
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/6mUmlZYuRLlQ4pFdvqAX_E_p6Vc.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.201.76.0/22

    Signature Algorithm: sha256WithRSAEncryption
         b5:78:f2:25:aa:f8:2f:71:43:cc:3d:6b:a2:ea:de:c8:97:5c:
         cf:da:85:53:ac:e9:52:67:eb:90:dd:8b:b2:83:81:2d:f8:a3:
         31:26:97:f6:55:83:a4:2b:17:cc:e2:9d:cc:6e:df:40:3c:c7:
         45:f0:fd:47:a9:c9:f4:38:39:0d:06:71:60:79:6e:fb:45:f7:
         02:19:c2:a8:66:30:5d:8f:3b:cc:b6:eb:b2:1f:a4:da:67:1c:
         ec:04:32:87:37:24:0a:40:61:02:4a:a0:91:f1:25:44:31:1e:
         c6:e1:36:25:95:96:66:fc:e8:0e:15:25:68:9f:87:a6:e2:0f:
         cd:23:2a:80:85:7e:50:b5:bc:d2:a5:7c:50:6d:2c:29:6c:6d:
         48:72:ee:a1:4b:bc:64:d7:17:b0:33:19:ed:77:c4:ec:01:07:
         cc:4e:b1:71:30:85:80:79:67:50:01:ca:6d:09:66:be:7e:41:
         e7:d4:55:c2:c0:54:df:8d:13:48:08:a5:da:95:20:56:48:88:
         91:75:51:aa:1f:a7:c7:60:54:cc:dd:99:09:c4:bd:24:15:77:
         27:7b:00:31:57:c2:ca:76:4b:75:0c:0c:3c:1a:c9:42:39:30:
         99:ef:12:14:21:77:04:a1:24:cb:83:9a:57:99:4b:27:8d:0a:
         3f:72:dc:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org