Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ByrJcebO46CTTwA4IhIyL4uHat8.roa
File:                     ByrJcebO46CTTwA4IhIyL4uHat8.roa (raw, json)
Hash identifier:          xFBPlb3PXVC/vuvsGqD3nAYZJyBi99QeYk62L/xa2RQ=
Subject key identifier:   07:2A:C9:71:E6:CE:E3:A0:93:4F:00:38:22:12:32:2F:8B:87:6A:DF
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ByrJcebO46CTTwA4IhIyL4uHat8.roa
Signing time:             Thu 15 Sep 2022 02:40:35 +0000
ROA not before:           Thu 15 Sep 2022 02:40:35 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     17709
IP address blocks:        203.79.128.0/17 maxlen: 18

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3939 (0xf63)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 15 02:40:35 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=072AC971E6CEE3A0934F00382212322F8B876ADF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:9c:fb:92:7a:bb:40:ee:d7:d0:6c:98:7d:a0:
                    20:61:a3:9c:c6:86:ca:1e:cf:ef:48:5d:2e:98:cb:
                    90:59:82:78:99:8b:85:5a:41:06:f7:73:cc:ad:65:
                    fa:eb:e0:9b:c9:5c:cb:fd:33:0c:f9:ad:4d:bc:d6:
                    f9:a5:22:dd:da:04:93:bf:1e:f7:fe:17:8c:c5:b8:
                    50:20:a3:d7:bb:b1:c0:39:3c:19:86:16:49:e8:c6:
                    7b:24:c6:4e:e3:66:db:1f:9c:a4:47:dd:ff:fd:a2:
                    38:9d:ef:00:38:38:9e:13:2e:5f:e6:4c:3c:1b:96:
                    1f:fd:91:6c:2b:a8:f9:bf:81:05:9f:d3:1a:19:6a:
                    37:dd:3e:96:28:ae:f3:67:48:bc:d0:19:bd:91:1b:
                    53:4e:5d:7d:b8:03:d5:f3:95:44:fe:f9:44:84:99:
                    b4:0b:61:da:7f:e1:92:b8:ac:ea:9a:49:49:3d:d5:
                    66:d9:c1:c3:48:c1:90:c9:3d:ef:c9:a8:42:d8:16:
                    97:54:77:34:a0:ba:c0:89:50:1e:24:bd:31:e2:c2:
                    09:60:1c:94:98:f7:3a:f0:04:eb:d7:10:1f:b1:32:
                    24:9a:43:85:1f:de:3f:82:89:d8:68:66:94:da:85:
                    b4:b5:0a:39:94:e8:93:e3:03:03:ad:26:d4:f4:ce:
                    54:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:2A:C9:71:E6:CE:E3:A0:93:4F:00:38:22:12:32:2F:8B:87:6A:DF
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ByrJcebO46CTTwA4IhIyL4uHat8.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  203.79.128.0/17

    Signature Algorithm: sha256WithRSAEncryption
         39:e1:87:6d:70:41:29:ee:cd:89:da:b3:d4:f7:87:cd:6e:7e:
         44:d1:99:a4:98:b0:68:9b:e0:24:e9:62:ee:62:f5:a1:02:00:
         19:d2:b4:8f:10:46:0e:bf:c8:cc:b1:08:89:f1:78:c8:d8:44:
         b1:8c:4b:03:8f:10:c3:94:83:ec:47:ca:e6:c5:5e:6a:a0:ed:
         c2:fd:e2:a3:e9:00:cb:24:33:22:4c:65:9f:45:c0:9b:1d:cd:
         d8:a3:8a:84:27:48:85:de:1c:a2:80:07:fb:a7:b8:72:03:76:
         d3:5a:d1:6a:dd:f9:75:7d:7e:34:e6:e9:b3:3d:ad:b9:7d:c6:
         3c:6f:99:94:a8:2f:54:66:89:95:16:41:b8:b6:57:ed:55:77:
         e8:98:5a:e5:d6:c5:cf:ff:63:5f:3a:3b:c1:64:9e:02:02:78:
         f4:24:ab:45:9a:a2:05:15:b6:bf:f5:3d:7e:da:97:39:9c:6e:
         b2:ad:59:d2:a0:e3:7e:e7:0c:df:3e:ca:f1:cc:fa:3f:9e:d4:
         c0:72:64:22:ea:7d:30:d6:97:ba:49:bf:00:3d:7c:16:a6:0c:
         b4:02:82:4e:67:cd:ac:60:16:61:56:b9:c8:8e:4f:25:dd:76:
         86:c7:45:d8:cc:28:f5:22:35:37:0b:63:45:3d:e4:d9:c1:d8:
         07:a1:f9:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org