Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/RmihJAnxEBlPSrZn6AVtJfy8FaY.roa
File:                     RmihJAnxEBlPSrZn6AVtJfy8FaY.roa (raw, json)
Hash identifier:          5RreaAir90fLv6Gm8429ehoevoM/bQPypq6U6+yOFXY=
Subject key identifier:   46:68:A1:24:09:F1:10:19:4F:4A:B6:67:E8:05:6D:25:FC:BC:15:A6
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       0E21
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/RmihJAnxEBlPSrZn6AVtJfy8FaY.roa
Signing time:             Wed 29 Sep 2021 02:40:00 +0000
ROA not before:           Wed 29 Sep 2021 02:40:00 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     7482
IP address blocks:        210.202.64.0/18 maxlen: 18

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3617 (0xe21)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 29 02:40:00 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=4668A12409F110194F4AB667E8056D25FCBC15A6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:33:fd:5a:be:61:5e:4d:7d:c7:77:69:28:fe:
                    36:fe:fa:09:72:ed:a7:f3:78:75:b4:20:b2:62:aa:
                    d3:61:77:c6:18:86:d1:7a:58:a2:f1:7b:68:7a:16:
                    b5:eb:25:1d:9d:8e:83:c3:82:1e:b2:5c:b3:40:86:
                    a6:bb:0c:d9:dc:16:a6:b1:22:8f:02:90:0d:16:50:
                    76:92:00:c3:81:7e:30:7a:11:b9:55:4c:d0:36:5e:
                    46:bc:4e:c8:04:ff:d6:98:e9:1f:6d:33:df:f9:db:
                    9a:96:a8:da:09:3e:b3:1c:7c:12:65:0a:7f:97:b8:
                    c5:58:b7:41:1b:e4:d1:73:cd:b2:16:fb:4a:20:67:
                    7b:45:0f:94:b3:2d:ef:c7:70:58:ba:ef:38:4c:14:
                    9b:9b:39:a2:9d:22:05:4f:73:4d:69:04:4c:54:23:
                    f7:52:f1:30:79:29:0d:cf:71:67:b1:3c:50:2b:bd:
                    fd:eb:cc:84:d0:f5:4c:6a:b9:8d:e9:fe:70:c9:32:
                    0a:b4:31:4b:0c:ae:3e:ea:d9:ed:72:52:7e:dc:74:
                    4c:0a:d2:9d:82:bf:8d:d5:6c:10:b8:00:57:dd:e4:
                    90:6f:b6:f2:e9:6d:99:31:a1:0f:9b:06:ed:ff:99:
                    2a:ba:9f:82:1d:86:24:36:54:62:b7:9c:7f:97:83:
                    bd:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:68:A1:24:09:F1:10:19:4F:4A:B6:67:E8:05:6D:25:FC:BC:15:A6
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/RmihJAnxEBlPSrZn6AVtJfy8FaY.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.202.64.0/18

    Signature Algorithm: sha256WithRSAEncryption
         38:c1:8a:54:fd:ea:68:99:b8:c4:4c:89:fe:74:2d:86:aa:e3:
         9a:04:f8:cf:b8:58:76:97:9b:dd:6f:d8:78:ce:1a:38:1a:07:
         84:c0:2d:cb:9f:f6:19:84:76:2c:04:fa:98:34:3f:0f:3e:ea:
         cc:00:f8:9d:a9:8d:b1:98:ec:b5:75:67:c3:65:e7:21:f1:9f:
         88:48:b0:62:cd:ac:2f:e1:7e:47:d6:72:3f:81:5e:0e:e7:11:
         74:59:b3:11:a5:94:b6:0f:71:44:0d:86:13:db:a3:fb:d5:b1:
         ef:5c:b9:f9:f2:b8:d5:a8:4f:a5:2c:a5:c2:7d:44:17:fd:fe:
         56:a1:6c:3e:53:de:46:d2:52:0b:fe:6a:76:0f:a2:14:fb:a1:
         09:41:4d:1f:60:cc:81:a3:26:b3:81:57:f9:b5:f3:49:9d:ed:
         a1:da:e8:c1:b8:f1:86:df:69:3f:88:35:c4:cb:98:34:cd:95:
         91:5a:a1:5e:2b:73:a4:fb:5f:10:0e:cc:3c:c5:47:4b:73:69:
         9a:40:8c:1f:06:89:02:f4:df:2d:70:05:d7:8c:58:16:32:37:
         c2:a6:d5:21:66:a4:1f:af:f8:5d:a6:ad:bc:4e:74:0c:c6:43:
         54:d6:58:35:9f:b1:ae:cb:7b:c5:ae:b0:8e:d3:70:8a:1b:4f:
         4d:65:a8:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org