Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/M17C0t3Wc0c8LU6wZBJTvzksvqM.roa
File:                     M17C0t3Wc0c8LU6wZBJTvzksvqM.roa (raw, json)
Hash identifier:          +l35EuSHVGvQkHYI4V2gMuv8mceki+LaRE898weBp1E=
Subject key identifier:   33:5E:C2:D2:DD:D6:73:47:3C:2D:4E:B0:64:12:53:BF:39:2C:BE:A3
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       0E18
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/M17C0t3Wc0c8LU6wZBJTvzksvqM.roa
Signing time:             Wed 29 Sep 2021 02:39:58 +0000
ROA not before:           Wed 29 Sep 2021 02:39:58 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     24154
IP address blocks:        60.244.64.0/18 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3608 (0xe18)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 29 02:39:58 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=335EC2D2DDD673473C2D4EB0641253BF392CBEA3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:47:23:90:a0:09:a7:28:73:ea:6b:5a:49:db:
                    e3:7a:ea:af:2b:2d:74:b8:97:30:b3:fd:0e:5d:f1:
                    c4:9a:a9:9e:ac:17:1e:48:3e:12:98:23:bd:1f:eb:
                    7b:2a:a2:ce:8e:35:42:c6:22:a0:7f:6e:82:8c:70:
                    96:48:72:ef:e5:ae:80:30:0e:11:21:cc:24:8a:46:
                    e2:aa:1a:20:d9:04:c4:60:ef:94:23:b1:6c:f3:c9:
                    74:44:4c:12:29:77:e9:3f:5d:ef:32:00:a0:8c:a1:
                    8e:53:82:0f:29:02:f3:b6:78:86:81:00:fe:24:6a:
                    26:59:85:bb:ad:87:d5:ff:e0:4f:b8:e3:b2:fb:29:
                    cd:d9:44:05:b8:b5:20:e5:29:22:2e:aa:a2:db:fd:
                    32:be:9a:87:9c:2b:6a:2d:70:09:ac:7a:80:2e:b8:
                    ca:0c:0d:ed:48:d5:40:ce:9b:89:20:e5:e4:65:9a:
                    21:5d:a5:e7:ed:6f:59:a3:b5:8f:ae:68:f9:03:8d:
                    0b:1a:53:bb:ef:24:26:ed:c4:c9:22:32:6f:e6:96:
                    b5:c4:23:ae:09:c5:66:a7:dc:cd:2a:da:bd:20:de:
                    e5:f4:32:3f:92:97:b0:02:55:9b:7e:a3:c7:6b:d9:
                    d7:49:39:b1:88:c3:72:dd:33:81:30:1c:fc:5f:51:
                    69:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                33:5E:C2:D2:DD:D6:73:47:3C:2D:4E:B0:64:12:53:BF:39:2C:BE:A3
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/M17C0t3Wc0c8LU6wZBJTvzksvqM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  60.244.64.0/18

    Signature Algorithm: sha256WithRSAEncryption
         b1:a5:46:b6:ad:07:e2:b0:78:59:2e:b1:bd:3b:0a:fd:ec:9d:
         00:98:05:97:29:e2:71:3e:46:78:ed:49:84:7e:05:95:0e:5a:
         fd:71:e9:75:db:74:79:35:99:f0:29:28:6c:41:11:37:73:53:
         10:b4:a2:88:12:83:4d:e6:95:41:3b:dc:e9:c6:c0:dd:ac:db:
         80:85:32:57:ed:48:fd:f0:cf:8f:3f:da:06:8b:a4:fc:0e:97:
         5b:aa:8b:b2:e8:56:ff:89:87:a2:f4:03:30:6f:90:c5:38:48:
         07:70:25:65:48:c8:08:76:78:48:f9:41:50:54:d6:c8:45:24:
         0d:00:e1:a1:83:8f:bb:d6:76:47:de:21:58:4c:96:da:6d:0a:
         84:25:e0:3d:6e:a7:83:66:27:ea:10:c0:df:93:34:8c:28:6c:
         c7:62:b4:0b:81:52:d6:34:03:80:eb:93:f1:b6:ae:d5:0a:6e:
         ed:aa:29:b1:37:fb:e9:ba:39:c3:0d:7b:35:c3:f6:09:99:7c:
         f3:e4:31:b4:21:db:7f:99:39:8d:8e:23:92:f6:e9:dd:e9:03:
         c1:dc:3d:68:11:a5:fe:23:fe:68:5b:9e:1d:98:dc:32:8f:92:
         4a:00:ad:55:a3:3c:2e:3a:47:59:93:f5:93:40:8a:0f:a0:b6:
         4a:0c:72:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org