Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/A18kkYn-ASHL0V63QtTZkZ5HC5U.roa
File:                     A18kkYn-ASHL0V63QtTZkZ5HC5U.roa (raw, json)
Hash identifier:          golVaa4rYcgBWE//rKXUESJYOGFFVEVRU8JHRJf/eZE=
Subject key identifier:   03:5F:24:91:89:FE:01:21:CB:D1:5E:B7:42:D4:D9:91:9E:47:0B:95
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       08EE
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/A18kkYn-ASHL0V63QtTZkZ5HC5U.roa
Signing time:             Tue 29 Sep 2020 10:01:15 +0000
ROA not before:           Tue 29 Sep 2020 10:01:15 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     7482
IP address blocks:        210.85.0.0/16 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2286 (0x8ee)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 29 10:01:15 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=035F249189FE0121CBD15EB742D4D9919E470B95
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:22:71:13:6a:0a:1f:22:d3:05:07:d7:7c:fd:
                    14:8e:b7:e8:7e:c8:f7:62:d4:32:45:ba:fc:b1:56:
                    5e:dc:1c:78:53:2b:26:87:57:f6:f4:23:94:1f:7f:
                    39:03:2e:7c:40:ee:88:f1:e0:dc:8c:e8:c6:56:f5:
                    65:b2:e5:8d:13:94:6f:ac:2f:f2:b3:0e:1d:c9:c8:
                    a2:3a:10:d1:e6:ad:34:87:26:e6:60:e4:20:38:29:
                    e8:aa:77:68:30:ea:2a:a6:47:2e:6e:bd:ec:60:33:
                    99:6b:8e:de:ff:07:b4:8d:80:76:64:34:14:bb:03:
                    7c:71:b1:96:d8:57:2f:d0:ce:44:3f:52:6f:2c:ee:
                    53:39:c7:b2:56:df:ae:4d:73:5a:e0:b8:6b:39:a7:
                    db:fa:1b:14:c0:ae:1e:2c:07:9e:12:96:78:6a:b0:
                    d1:b8:f4:01:5a:ee:af:04:c4:be:e0:91:a6:f4:70:
                    fd:e2:77:5c:d2:2d:52:bb:89:67:1b:3e:1a:e9:ae:
                    5c:ce:7a:8f:7b:72:ed:08:4f:d9:03:39:1e:90:76:
                    04:82:a5:f2:d3:45:31:2a:f9:34:c3:a7:58:54:eb:
                    75:a9:c6:aa:79:5d:d1:93:d0:b7:f5:81:86:db:fa:
                    12:fe:24:52:d3:ce:87:e5:b7:f8:fb:55:5b:98:4b:
                    ea:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:5F:24:91:89:FE:01:21:CB:D1:5E:B7:42:D4:D9:91:9E:47:0B:95
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/A18kkYn-ASHL0V63QtTZkZ5HC5U.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.85.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         ab:35:aa:d2:55:ae:fc:47:dd:e3:40:8b:73:50:a5:bc:41:3b:
         fe:0e:6d:26:83:b0:05:22:b6:6a:8e:07:56:12:ba:e1:61:49:
         a3:0f:97:36:a6:cb:0b:50:11:1a:9e:37:ab:b7:ef:8e:1e:2f:
         f3:ff:81:15:24:1c:97:77:67:b2:8d:5e:a7:9e:19:b8:f9:e5:
         9c:63:70:81:51:03:ce:81:e6:f3:1a:1b:3e:90:65:6b:11:65:
         12:c5:e4:01:e3:06:9d:27:05:30:e8:0f:72:44:eb:f3:09:81:
         f3:20:8a:65:99:8a:b7:58:36:1d:86:b3:15:f5:c0:56:9c:70:
         47:ca:d7:67:0e:53:cc:b3:d8:a9:9a:65:ce:6b:67:26:bc:a8:
         fc:53:2a:ff:d2:6e:d5:c9:46:7b:57:48:bc:2d:04:bb:94:99:
         07:b6:ef:bc:76:91:b6:be:4e:2a:ec:4a:2f:e5:e6:a1:db:d3:
         33:e6:71:1b:f5:0d:dd:a3:d0:c6:9a:47:c2:ab:75:94:5e:2e:
         f7:f7:f8:c5:eb:76:d2:40:91:40:20:1e:94:1c:41:ee:5f:22:
         34:4b:2d:0d:31:34:88:9e:7c:5c:c1:df:dc:c2:00:66:d9:f3:
         cc:7c:09:e2:3b:12:52:e1:ce:23:2a:98:b7:15:fc:fa:f5:6a:
         a1:ef:f6:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org