Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/I7P7UR2SzVgz5dKy5qVorW144Go.roa
File:                     I7P7UR2SzVgz5dKy5qVorW144Go.roa (raw, json)
Hash identifier:          ABOUv2n0kmA8fv93wTdIrr+mvdTt8xlSosCob91hJ+g=
Subject key identifier:   23:B3:FB:51:1D:92:CD:58:33:E5:D2:B2:E6:A5:68:AD:6D:78:E0:6A
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/I7P7UR2SzVgz5dKy5qVorW144Go.roa
Signing time:             Thu 15 Sep 2022 02:40:26 +0000
ROA not before:           Thu 15 Sep 2022 02:40:26 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     131597
IP address blocks:        218.35.64.0/19 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3939 (0xf63)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 15 02:40:26 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=23B3FB511D92CD5833E5D2B2E6A568AD6D78E06A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:6d:67:0e:54:34:f7:77:7a:23:b6:33:7d:44:
                    22:a4:56:1a:3b:4c:10:3c:1a:0c:a2:bd:a0:e0:8b:
                    81:f7:c1:b2:91:00:ed:15:e9:52:8d:2e:2c:de:01:
                    44:9d:01:71:74:19:eb:e9:85:66:10:94:c6:4b:ea:
                    33:9f:1a:e3:ac:dd:b4:64:d7:3e:66:52:b2:f5:83:
                    43:d2:2a:44:40:9f:d9:27:56:bf:a9:d0:77:db:33:
                    e7:74:59:db:7c:66:9d:c8:0d:99:b8:90:99:ef:88:
                    6a:ff:9c:a1:78:f8:07:f2:d0:10:de:ca:f6:a7:63:
                    3d:d9:cc:2c:9a:e9:5f:95:88:e7:66:8e:b7:b5:8e:
                    bd:88:c7:e9:7b:4c:35:35:53:e8:95:e3:7f:45:95:
                    9b:ba:77:ad:a6:20:ba:27:3b:b2:c3:7e:05:b8:7c:
                    0f:9c:2a:ce:ae:81:a5:89:9a:d3:0c:9a:fa:9c:bb:
                    8d:9b:01:da:13:eb:dc:26:45:9d:55:1c:d1:80:ce:
                    50:b1:f0:74:67:ac:d3:67:6c:01:0d:10:ba:ae:79:
                    d2:e7:cc:c7:8b:60:14:eb:55:7f:c6:fd:e3:dc:9a:
                    b6:b2:8d:f1:a5:4e:13:02:a7:d9:58:ae:28:c6:fc:
                    64:0f:24:36:f6:fe:12:b4:57:4f:6e:b2:e0:9f:1f:
                    9c:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                23:B3:FB:51:1D:92:CD:58:33:E5:D2:B2:E6:A5:68:AD:6D:78:E0:6A
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/I7P7UR2SzVgz5dKy5qVorW144Go.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  218.35.64.0/19

    Signature Algorithm: sha256WithRSAEncryption
         35:e7:34:a4:b0:27:43:ae:ff:83:66:a1:d9:8e:32:ba:b2:75:
         7c:ec:b0:5b:e1:8f:b4:8b:0e:9b:2f:cb:ca:63:c3:4f:88:19:
         af:a6:e7:d1:b4:9b:e6:44:9d:a2:37:93:e1:3c:e2:76:73:e9:
         85:b2:8f:99:46:62:8c:54:90:ee:e4:a7:33:a0:1e:b9:07:c2:
         65:8c:27:7a:c6:23:81:17:d9:f4:fe:b1:21:be:7c:a0:85:03:
         02:c9:7b:b4:e3:06:29:26:d9:38:a1:2a:9f:07:10:6b:5f:fb:
         77:d2:47:4a:c2:ae:9e:26:79:0e:f6:b2:4f:d3:e7:fa:cf:f6:
         2e:45:32:35:87:6c:7f:45:d6:c5:17:55:69:67:6e:ba:8b:f5:
         da:61:9b:dd:bd:e1:32:3b:97:f0:fa:2e:fe:5e:1b:6b:4a:44:
         fa:09:2b:eb:dd:fa:c1:33:c5:ba:38:b3:be:50:84:26:e7:53:
         d8:b3:69:e0:0f:92:13:4a:59:cb:13:be:1f:87:4f:00:eb:45:
         87:cc:3b:46:b4:85:92:77:38:67:4d:8c:d8:62:70:3c:a5:8e:
         29:60:bb:c1:ab:0f:34:91:3e:f9:7f:1a:26:f4:01:01:54:2b:
         96:65:b7:3e:c0:72:67:29:76:da:53:a6:38:7e:79:fc:15:bf:
         56:61:4a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org