Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/FS6n68UDDhzU0u3QbXO1n_8Zc_U.roa
File:                     FS6n68UDDhzU0u3QbXO1n_8Zc_U.roa (raw, json)
Hash identifier:          gsu5ixnKO9EyS0P5tdsp0lk+EiKw2mqw8wecMdK7/5Q=
Subject key identifier:   15:2E:A7:EB:C5:03:0E:1C:D4:D2:ED:D0:6D:73:B5:9F:FF:19:73:F5
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       1306
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/FS6n68UDDhzU0u3QbXO1n_8Zc_U.roa
Signing time:             Fri 01 Sep 2023 08:05:17 +0000
ROA not before:           Fri 01 Sep 2023 08:05:17 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     17709
IP address blocks:        210.63.224.0/19 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4870 (0x1306)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep  1 08:05:17 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=152EA7EBC5030E1CD4D2EDD06D73B59FFF1973F5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:86:14:db:44:cc:71:03:8c:51:ea:46:28:03:
                    2a:ec:66:78:09:a0:b3:cb:a5:07:69:97:89:43:75:
                    b3:30:42:1e:59:f5:2d:2b:7b:5f:dc:3b:ae:91:a4:
                    d1:48:b2:4d:ea:fa:57:b3:ac:b1:e7:e7:aa:0a:18:
                    b7:2b:59:3b:71:8c:7f:c7:ab:f1:63:58:16:4d:fa:
                    a9:6a:c8:10:e5:83:c5:3b:5f:d2:7b:e3:02:ea:a4:
                    be:8b:e4:33:0d:38:2a:46:d9:2e:c3:f8:66:4c:34:
                    0c:c8:74:4d:e4:a7:5b:40:ac:70:a2:14:9a:95:1f:
                    83:c8:bb:24:0c:47:dd:6b:bd:ba:85:0b:0d:55:b2:
                    93:d4:35:7b:e8:94:6e:65:89:fe:b7:a8:27:5d:ea:
                    3c:e7:e0:70:43:66:23:36:90:01:f6:62:ed:46:90:
                    e9:cd:57:41:e5:82:41:fb:a9:e0:e1:b1:bb:b3:c2:
                    c3:41:00:70:13:01:cd:f7:c4:9f:41:3a:b5:16:ed:
                    52:e9:14:e4:2c:24:e4:88:6d:54:2a:23:f7:ef:c0:
                    c1:26:86:10:a5:f9:f1:94:bf:6b:ed:e2:df:f6:9e:
                    0e:fc:fa:0e:d9:94:4d:90:bf:df:ed:5b:25:3d:df:
                    4c:44:8f:47:22:68:05:04:c7:9e:01:71:25:80:77:
                    5d:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:2E:A7:EB:C5:03:0E:1C:D4:D2:ED:D0:6D:73:B5:9F:FF:19:73:F5
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/FS6n68UDDhzU0u3QbXO1n_8Zc_U.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.63.224.0/19

    Signature Algorithm: sha256WithRSAEncryption
         9e:d3:27:30:2a:91:08:dc:cb:66:3c:02:00:6f:a2:52:86:2a:
         c5:6f:e6:94:f4:95:81:ad:91:74:74:e3:b5:04:bb:94:b5:16:
         8d:4b:79:77:c6:5a:7c:24:37:11:48:11:03:4a:49:d6:c3:5e:
         c6:a1:60:e5:11:9a:8a:2a:b6:05:bc:5d:ff:66:4e:5a:f2:e7:
         86:3f:b8:8f:d8:cd:0e:9e:73:a3:e7:8b:46:64:d8:c9:b5:71:
         7d:a8:37:c8:56:9f:40:12:a6:4c:4c:06:cb:19:d8:ac:d0:c4:
         46:9a:dd:a4:72:4d:7d:f7:1e:f4:3c:95:91:68:8c:0b:13:a0:
         e2:11:63:23:8d:5c:e3:47:65:c6:91:d6:d3:f5:35:c7:99:40:
         c7:29:15:b2:ad:38:eb:56:68:e5:0e:6f:a8:c9:68:c7:58:1c:
         5c:68:69:a3:97:16:74:5a:42:e1:a2:4e:b0:11:21:7c:46:aa:
         5c:bf:a9:0c:18:be:58:d3:62:69:73:ee:8a:63:7a:5b:c3:da:
         f5:00:27:67:f8:aa:05:b9:8e:ea:a9:7f:6e:cf:0d:43:58:10:
         c9:9e:f0:cd:6d:48:c9:91:66:60:46:85:6c:28:14:ea:43:7a:
         c2:87:44:85:fd:a2:29:26:33:7e:fc:f4:a2:ff:85:d5:da:4b:
         e3:5c:67:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org