Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/6uZokkP8356Gh2P_JTSZsTvCvvc.roa
File:                     6uZokkP8356Gh2P_JTSZsTvCvvc.roa (raw, json)
Hash identifier:          6x7fJ1FT9D6t/kBJ4k6BmHnU0p4Gt2V4ADY+YoyYKR0=
Subject key identifier:   EA:E6:68:92:43:FC:DF:9E:86:87:63:FF:25:34:99:B1:3B:C2:BE:F7
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       0E42
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/6uZokkP8356Gh2P_JTSZsTvCvvc.roa
Signing time:             Wed 29 Sep 2021 02:40:09 +0000
ROA not before:           Wed 29 Sep 2021 02:40:09 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     9311
IP address blocks:        2404:0:4000::/36 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3650 (0xe42)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 29 02:40:09 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=EAE6689243FCDF9E868763FF253499B13BC2BEF7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:ea:ba:46:12:61:a4:5d:fa:45:3b:14:df:b1:
                    25:0d:bc:de:f0:61:9d:1f:c8:35:e9:e5:65:18:2a:
                    28:79:a1:b9:85:58:48:61:0b:3f:ed:fa:30:d3:7d:
                    a2:1a:dc:30:cb:af:b8:c6:c9:9c:7b:7f:47:0e:34:
                    52:bc:41:62:1c:ed:3e:6f:8b:9c:ff:cf:7a:32:a3:
                    d3:05:e6:ab:eb:46:92:2e:7a:b2:06:eb:16:aa:75:
                    d2:84:b3:c9:97:b9:70:ef:66:09:02:a5:18:8d:93:
                    c0:7a:f1:e4:66:c3:ed:f6:88:40:73:66:45:1a:08:
                    31:a5:2d:76:94:af:38:7a:a0:16:26:c9:0d:42:4d:
                    ed:a9:31:b6:69:bd:32:c2:02:75:40:fa:7e:b0:44:
                    3b:a2:15:fd:7c:91:d9:bb:9d:80:0d:3e:46:e5:01:
                    35:b4:09:33:eb:f2:6f:8a:a2:e0:53:0a:bc:39:03:
                    e4:5a:13:8f:9b:53:7e:1e:8e:80:3d:3d:2e:0a:cb:
                    2b:21:cf:fd:5a:5a:99:9a:b8:21:01:f6:34:df:56:
                    b1:36:f2:f0:5e:59:b0:51:e4:98:5e:89:43:c4:bd:
                    6f:c3:54:93:d5:b7:1a:76:c5:af:64:b6:bb:91:62:
                    44:dd:cc:f2:74:f7:5e:09:5b:dc:d8:5b:be:1c:1e:
                    d1:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:E6:68:92:43:FC:DF:9E:86:87:63:FF:25:34:99:B1:3B:C2:BE:F7
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/6uZokkP8356Gh2P_JTSZsTvCvvc.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2404:0:4000::/36

    Signature Algorithm: sha256WithRSAEncryption
         aa:a8:2e:15:d2:7e:63:25:36:18:1b:8e:ce:41:3b:09:e8:97:
         c4:d6:26:3a:78:e8:67:5d:24:a0:38:c7:6c:4f:54:12:9d:e6:
         32:71:a1:18:43:ce:74:87:9e:6a:c3:3a:0d:85:77:f8:8c:8d:
         b9:60:00:4b:6f:f7:18:0a:0d:d9:4d:c1:09:ad:97:6e:e9:95:
         9e:df:4f:f6:06:88:26:81:7e:6f:dd:b3:5e:b1:af:9e:89:95:
         b6:ea:07:f5:73:23:81:59:bf:77:dd:3d:de:34:bb:00:f9:72:
         3d:63:9c:31:52:d1:96:d3:98:4f:2f:30:ae:27:ce:2d:16:5f:
         0f:28:0b:bb:9c:3e:cd:75:4a:98:7c:d8:14:e6:5e:72:c4:52:
         54:5f:11:be:95:a0:c8:4d:75:77:27:fd:93:08:de:30:0c:43:
         05:1b:b8:e2:3b:96:48:80:c0:d6:ae:e1:dc:df:5d:0b:fa:ee:
         1d:a3:d3:88:c1:5f:71:9d:d4:cd:78:de:b8:60:10:31:73:85:
         5a:de:25:ed:9e:38:38:28:81:f8:52:4a:13:a1:6a:8a:66:19:
         71:06:de:bc:5a:44:30:c4:09:99:0d:b5:cb:d8:0c:2e:b8:50:
         58:34:44:ce:d1:ba:ac:23:16:23:af:fd:b7:c8:72:fc:24:d8:
         03:da:5f:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org