Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/9ytM8MtiIjXCRZuRR9Fpk97Q2YE.roa
File:                     9ytM8MtiIjXCRZuRR9Fpk97Q2YE.roa (raw, json)
Hash identifier:          YyI6v6DE5S5CXdwa9pxVGL4OOXobEkhRBm+YUq2PCVk=
Subject key identifier:   F7:2B:4C:F0:CB:62:22:35:C2:45:9B:91:47:D1:69:93:DE:D0:D9:81
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       0DBE
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9ytM8MtiIjXCRZuRR9Fpk97Q2YE.roa
Signing time:             Wed 29 Sep 2021 02:39:31 +0000
ROA not before:           Wed 29 Sep 2021 02:39:31 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     24154
IP address blocks:        203.79.208.0/21 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3518 (0xdbe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 29 02:39:31 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=F72B4CF0CB622235C2459B9147D16993DED0D981
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:e4:1f:0f:58:ec:9b:fa:b9:a9:90:9b:08:33:
                    55:bb:cc:54:82:8d:69:26:27:75:c6:df:4f:9b:48:
                    5c:9e:2e:1c:18:2a:5b:0b:21:55:72:bc:71:1b:3c:
                    3b:cd:4c:bb:94:d1:cb:2f:08:15:76:0e:13:08:3a:
                    08:fe:b8:68:c7:1e:dc:86:00:56:17:dd:f0:2f:04:
                    e2:9e:c9:7d:3d:8b:f5:4b:9a:9a:06:94:a4:e8:dd:
                    6b:47:09:6c:11:65:62:8f:d9:ee:25:c6:66:59:71:
                    0f:22:c3:7c:7b:18:cd:7c:cd:17:b3:52:42:b4:2a:
                    f1:90:6e:39:ce:aa:d0:12:64:ea:94:ce:d2:db:a0:
                    43:a4:ff:a3:4f:d5:60:56:55:bc:29:3c:19:df:7a:
                    b0:d8:ab:30:a3:42:e5:b1:b0:1d:34:1c:ed:bc:5e:
                    d0:27:4f:e2:0c:3b:57:8d:0e:07:fe:69:95:64:9c:
                    55:5a:a3:9d:0f:39:2d:d2:74:f8:cd:bd:da:7a:5d:
                    08:43:78:d5:ba:36:0c:c6:c4:60:f7:fe:67:fd:fa:
                    f3:bb:8c:99:fd:18:f9:93:2c:e0:05:50:2c:66:64:
                    37:26:94:5a:52:1c:e5:7d:fd:86:1a:e9:90:06:7b:
                    e6:2a:b1:97:4a:1d:70:67:c8:c9:e7:91:f3:63:0e:
                    14:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:2B:4C:F0:CB:62:22:35:C2:45:9B:91:47:D1:69:93:DE:D0:D9:81
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9ytM8MtiIjXCRZuRR9Fpk97Q2YE.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  203.79.208.0/21

    Signature Algorithm: sha256WithRSAEncryption
         94:d6:39:40:4a:d3:28:b4:02:09:3f:40:a4:8f:dd:07:38:de:
         88:23:08:84:59:a5:26:ef:3d:6d:aa:a6:c4:06:72:f2:a9:68:
         c1:b5:0b:98:91:d1:a5:e3:88:21:74:21:f0:88:f7:3b:c8:66:
         ab:b3:1a:28:4e:76:96:0d:4f:52:1a:a2:0a:3a:a6:40:d2:38:
         e1:b4:89:90:8b:2a:5d:4e:f2:c4:da:91:01:c5:6f:a9:88:02:
         8f:18:85:e2:30:35:46:10:44:89:5e:ee:a5:24:ec:b8:29:7c:
         28:e6:fe:33:b5:ea:d3:2f:63:83:e4:a7:b6:76:41:cb:29:2e:
         46:4c:fc:84:00:b7:46:05:06:88:95:4b:55:4e:f1:cd:e3:f5:
         08:fe:cd:f3:ca:ac:1c:ab:78:68:da:a2:f6:11:39:5a:6a:84:
         f4:65:90:11:a7:b5:f8:6f:bb:a7:30:ca:24:13:80:25:80:a0:
         6f:4e:04:29:2c:e9:33:3d:1e:3b:2e:d7:fa:e8:1c:e6:59:1b:
         a6:47:95:81:4c:ff:0c:bd:d3:07:82:5e:35:4c:84:ec:1e:cd:
         73:0f:27:ad:59:de:7a:e2:fc:5e:aa:e8:bb:1d:20:33:08:ed:
         7e:44:12:65:6b:00:ee:67:12:2d:3f:94:21:3f:9e:b0:d8:30:
         68:6e:28:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org