Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ImooNkSIL_4UixqSb3FKSS__cvs.roa
File:                     ImooNkSIL_4UixqSb3FKSS__cvs.roa (raw, json)
Hash identifier:          7jPJGHo1SF46ij8OywPmjdaYCtaGdvRxOalT96aEa5Y=
Subject key identifier:   22:6A:28:36:44:88:2F:FE:14:8B:1A:92:6F:71:4A:49:2F:FF:72:FB
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       0E55
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ImooNkSIL_4UixqSb3FKSS__cvs.roa
Signing time:             Wed 29 Sep 2021 02:40:15 +0000
ROA not before:           Wed 29 Sep 2021 02:40:15 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     17709
IP address blocks:        210.58.120.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3669 (0xe55)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 29 02:40:15 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=226A283644882FFE148B1A926F714A492FFF72FB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:31:e9:f0:e9:30:39:20:7a:30:07:2e:2e:75:
                    f7:a4:c3:10:a5:01:be:03:a8:78:08:ff:73:15:62:
                    d2:c1:5b:1c:95:8d:4a:0d:82:09:58:1d:fb:71:dd:
                    58:01:79:60:73:5d:02:51:e6:95:7b:fa:57:d5:4a:
                    22:e0:11:d4:b3:85:44:af:59:e4:21:88:fe:62:6f:
                    df:c6:8b:08:66:13:e5:86:e6:d8:37:90:43:5e:89:
                    47:64:4f:ad:64:13:49:a3:51:9b:b6:5e:12:54:98:
                    a7:fc:42:eb:0e:d4:e2:c2:27:9a:0d:c3:7f:fe:57:
                    e5:43:4d:0d:f0:7b:aa:a0:3e:86:d9:cb:b0:8b:a4:
                    a4:b8:1c:68:fe:9a:7c:ac:9d:f5:de:77:ed:6a:1c:
                    61:cf:83:c7:a7:92:7f:6b:3a:4f:36:ed:eb:e4:6f:
                    e5:86:34:6c:cb:46:92:cb:79:d8:78:40:c5:57:f4:
                    66:4d:6c:99:87:17:e4:e8:bb:ff:d6:bd:06:73:d9:
                    e6:ec:31:5b:15:93:91:74:6d:34:e2:39:31:b8:ba:
                    d6:a5:fa:bd:29:d6:ea:74:aa:5d:e1:2e:dc:69:02:
                    cc:9d:7a:fa:1d:57:4d:ee:fb:c2:c5:22:82:42:ac:
                    43:91:9b:87:41:6d:23:d1:84:06:0e:cc:29:1e:64:
                    ee:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                22:6A:28:36:44:88:2F:FE:14:8B:1A:92:6F:71:4A:49:2F:FF:72:FB
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ImooNkSIL_4UixqSb3FKSS__cvs.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.58.120.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a3:f7:a9:0e:2e:94:b7:15:2c:6d:9b:c1:57:0e:a5:ab:cd:a6:
         8a:89:f9:97:c4:2a:94:b1:c4:c7:28:4b:e8:20:38:ea:c9:2d:
         33:4d:21:88:fe:3c:1b:72:78:31:9b:27:0c:86:2e:50:c0:b0:
         89:e4:06:c7:98:30:a5:af:18:9f:35:53:b5:bf:99:82:8c:6a:
         3f:fa:72:38:a2:b1:7a:a6:4f:73:4d:54:bf:32:27:59:2d:a0:
         fc:b9:01:f2:73:6c:a9:a9:58:40:06:90:a9:37:dc:30:a1:75:
         9f:1b:8b:06:2e:a5:b0:69:5a:a8:32:f1:1c:af:e3:c3:f4:52:
         64:58:37:b2:5a:d2:85:b0:0b:4d:46:b5:bd:14:80:3c:ec:1a:
         e0:2a:8d:96:d1:74:f6:66:39:1a:47:44:d6:d6:f2:46:17:51:
         93:3e:a5:9c:38:5b:58:9e:a3:7f:9a:e8:be:4e:f9:b5:11:39:
         9d:4a:c9:46:04:29:2d:4e:15:82:62:fc:98:df:ad:05:f1:1a:
         6f:c3:33:dc:cc:73:e2:57:d2:00:b7:43:66:9d:82:24:1b:d1:
         09:6a:b3:77:c2:d9:62:9a:8b:20:f5:b2:a1:b1:52:19:19:67:
         88:de:c8:55:5a:d8:69:63:e4:ff:6c:d5:e0:a4:eb:de:9a:8c:
         9f:51:97:14
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDlUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjQwMTVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDIyNkEyODM2NDQ4ODJG
RkUxNDhCMUE5MjZGNzE0QTQ5MkZGRjcyRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDgMenw6TA5IHowBy4udfekwxClAb4DqHgI/3MVYtLBWxyVjUoN
gglYHftx3VgBeWBzXQJR5pV7+lfVSiLgEdSzhUSvWeQhiP5ib9/GiwhmE+WG5tg3
kENeiUdkT61kE0mjUZu2XhJUmKf8QusO1OLCJ5oNw3/+V+VDTQ3we6qgPobZy7CL
pKS4HGj+mnysnfXed+1qHGHPg8enkn9rOk827evkb+WGNGzLRpLLedh4QMVX9GZN
bJmHF+Tou//WvQZz2ebsMVsVk5F0bTTiOTG4utal+r0p1up0ql3hLtxpAsydevod
V03u+8LFIoJCrEORm4dBbSPRhAYOzCkeZO6rAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUImooNkSIL/4UixqSb3FKSS//cvswHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvSW1vb05rU0lMXzRVaXhxU2IzRktT
U19fY3ZzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI6eDAN
BgkqhkiG9w0BAQsFAAOCAQEAo/epDi6UtxUsbZvBVw6lq82mion5l8QqlLHExyhL
6CA46sktM00hiP48G3J4MZsnDIYuUMCwieQGx5gwpa8YnzVTtb+ZgoxqP/pyOKKx
eqZPc01UvzInWS2g/LkB8nNsqalYQAaQqTfcMKF1nxuLBi6lsGlaqDLxHK/jw/RS
ZFg3slrShbALTUa1vRSAPOwa4CqNltF09mY5GkdE1tbyRhdRkz6lnDhbWJ6jf5ro
vk75tRE5nUrJRgQpLU4VgmL8mN+tBfEab8Mz3Mxz4lfSALdDZp2CJBvRCWqzd8LZ
YpqLIPWyobFSGRlniN7IVVrYaWPk/2zV4KTr3pqMn1GXFA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org