Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ZAKGw8d6S2wvygZz1HFnn53Qfzk.roa
File:                     ZAKGw8d6S2wvygZz1HFnn53Qfzk.roa (raw, json)
Hash identifier:          FFTornuVSwtaxFahMjKHaeQwU6Va1Vako1xk350BpK4=
Subject key identifier:   64:02:86:C3:C7:7A:4B:6C:2F:CA:06:73:D4:71:67:9F:9D:D0:7F:39
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       0DE2
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ZAKGw8d6S2wvygZz1HFnn53Qfzk.roa
Signing time:             Wed 29 Sep 2021 02:39:40 +0000
ROA not before:           Wed 29 Sep 2021 02:39:40 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     9311
IP address blocks:        210.201.80.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3554 (0xde2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 29 02:39:40 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=640286C3C77A4B6C2FCA0673D471679F9DD07F39
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:0e:5e:4a:19:d6:5b:2d:ff:ef:54:20:d3:86:
                    43:33:6d:3c:d4:d5:db:6a:13:84:ca:41:7e:47:87:
                    fa:ee:cb:7b:06:ad:bd:f6:2d:b3:24:2a:2a:11:04:
                    de:13:e5:3b:ca:f4:d4:47:f5:8a:be:f0:1f:52:7e:
                    5d:4f:3e:8d:dd:5b:02:68:35:9a:7a:d1:67:d3:d0:
                    14:11:65:c0:a7:15:32:b3:71:93:3f:a8:8b:4a:9d:
                    5d:1c:05:39:37:80:59:6f:9d:51:eb:17:ca:95:29:
                    39:89:84:53:03:ae:89:8f:67:48:3d:42:ea:cd:fc:
                    32:03:40:f7:dd:5c:73:04:0e:0b:35:87:8b:7c:4e:
                    70:6a:00:62:b7:01:74:bf:53:2b:b1:3d:bc:6b:28:
                    4d:19:a6:c2:b0:fa:3a:d3:35:fd:7a:71:b7:b4:df:
                    98:93:23:b1:8a:17:59:97:c6:70:cc:1e:98:0c:be:
                    0d:76:23:a5:45:4d:67:c4:21:e1:90:40:f0:e9:41:
                    23:a6:f3:54:08:2d:2a:9e:19:1f:21:c3:90:bf:26:
                    bd:90:3b:d4:61:f8:0a:bb:3b:0f:80:96:9f:38:9c:
                    8f:f0:d9:e1:62:de:5b:63:43:d5:55:c8:13:a5:b8:
                    c4:0e:1c:d7:be:dc:d9:d6:ac:b4:72:5b:d6:79:39:
                    3a:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:02:86:C3:C7:7A:4B:6C:2F:CA:06:73:D4:71:67:9F:9D:D0:7F:39
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ZAKGw8d6S2wvygZz1HFnn53Qfzk.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.201.80.0/22

    Signature Algorithm: sha256WithRSAEncryption
         b4:3d:ea:df:65:08:9a:9c:50:9c:35:89:c0:e6:13:e2:49:2d:
         0f:e5:cb:0b:cf:09:6d:ab:e8:da:0a:08:c4:d2:55:09:f9:9d:
         5b:37:ae:c6:18:55:76:b6:05:62:ca:dd:b2:6e:df:80:d6:d4:
         d3:63:37:0b:a8:ab:aa:76:48:d3:b5:d1:8e:e2:6c:21:21:16:
         4e:1f:ea:33:e3:ab:23:b7:2f:c9:ca:cb:6c:53:30:da:b3:47:
         12:19:7a:d0:50:70:28:46:d5:ca:73:78:b7:6d:0e:d3:86:7c:
         7b:b2:81:4c:5d:02:25:2e:86:1e:b9:f4:66:db:81:d4:65:d7:
         66:c2:94:12:06:08:4a:45:85:91:73:c6:9a:91:fe:d5:57:29:
         48:8a:a7:62:d4:42:d0:dd:3f:fc:88:0b:44:02:74:c3:f2:b3:
         2c:90:74:a8:0d:e5:f6:fc:f0:0a:75:69:8a:01:78:7e:f3:78:
         5a:d0:f3:6b:27:5e:f1:55:a1:13:71:72:a6:4a:05:3a:9d:f4:
         1b:cd:00:ca:84:16:7e:1f:1b:6f:a0:56:ae:55:38:06:5a:d4:
         67:81:ab:a2:b2:34:2c:4a:d0:3a:13:3f:72:73:31:cd:d4:51:
         6e:95:4d:99:88:78:7b:74:1b:98:bc:c0:fc:fc:47:b1:ff:4c:
         3f:86:70:12
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDeIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjM5NDBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDY0MDI4NkMzQzc3QTRC
NkMyRkNBMDY3M0Q0NzE2NzlGOUREMDdGMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCDl5KGdZbLf/vVCDThkMzbTzU1dtqE4TKQX5Hh/ruy3sGrb32
LbMkKioRBN4T5TvK9NRH9Yq+8B9Sfl1PPo3dWwJoNZp60WfT0BQRZcCnFTKzcZM/
qItKnV0cBTk3gFlvnVHrF8qVKTmJhFMDromPZ0g9QurN/DIDQPfdXHMEDgs1h4t8
TnBqAGK3AXS/UyuxPbxrKE0ZpsKw+jrTNf16cbe035iTI7GKF1mXxnDMHpgMvg12
I6VFTWfEIeGQQPDpQSOm81QILSqeGR8hw5C/Jr2QO9Rh+Aq7Ow+Alp84nI/w2eFi
3ltjQ9VVyBOluMQOHNe+3NnWrLRyW9Z5OTqxAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUZAKGw8d6S2wvygZz1HFnn53QfzkwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvWkFLR3c4ZDZTMnd2eWdaejFIRm5u
NTNRZnprLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtLJUDAN
BgkqhkiG9w0BAQsFAAOCAQEAtD3q32UImpxQnDWJwOYT4kktD+XLC88Jbavo2goI
xNJVCfmdWzeuxhhVdrYFYsrdsm7fgNbU02M3C6irqnZI07XRjuJsISEWTh/qM+Or
I7cvycrLbFMw2rNHEhl60FBwKEbVynN4t20O04Z8e7KBTF0CJS6GHrn0ZtuB1GXX
ZsKUEgYISkWFkXPGmpH+1VcpSIqnYtRC0N0//IgLRAJ0w/KzLJB0qA3l9vzwCnVp
igF4fvN4WtDzayde8VWhE3FypkoFOp30G80AyoQWfh8bb6BWrlU4BlrUZ4GrorI0
LErQOhM/cnMxzdRRbpVNmYh4e3QbmLzA/PxHsf9MP4ZwEg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org