Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/_DhA5RtNfvY7rinHawe8aU4TUxM.roa
File:                     _DhA5RtNfvY7rinHawe8aU4TUxM.roa (raw, json)
Hash identifier:          P0y5TmR+hnugqPja5zJyoSAZ1LCWgKN/kyXxlIJ38yw=
Subject key identifier:   FC:38:40:E5:1B:4D:7E:F6:3B:AE:29:C7:6B:07:BC:69:4E:13:53:13
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       1026
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_DhA5RtNfvY7rinHawe8aU4TUxM.roa
Signing time:             Tue 16 May 2023 08:35:48 +0000
ROA not before:           Tue 16 May 2023 08:35:48 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     7482
IP address blocks:        218.187.0.0/16 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4134 (0x1026)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: May 16 08:35:48 2023 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=FC3840E51B4D7EF63BAE29C76B07BC694E135313
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:4f:7a:fd:83:fd:58:bf:14:bc:cc:91:dd:45:
                    a3:30:72:39:b7:ef:15:89:f7:21:f2:01:92:16:60:
                    17:e8:2e:4c:f4:b3:7f:12:06:c4:bd:49:2c:70:c2:
                    11:ee:ff:fc:9b:c2:d8:66:f4:d7:03:81:b7:75:9e:
                    e3:5d:70:3f:df:f3:86:17:a3:9e:cd:01:6e:98:41:
                    c3:35:cf:f2:c0:ef:92:07:9b:54:0f:8d:bf:a2:ed:
                    ea:3d:48:8a:07:74:15:c2:fa:ff:f7:01:53:12:f7:
                    6b:9c:04:99:65:29:85:b1:96:63:9d:66:ac:ad:a4:
                    8a:38:91:34:c8:a0:b6:b6:96:53:ea:53:23:60:c8:
                    71:4a:57:dc:11:d3:12:d6:77:88:68:f6:63:65:29:
                    52:f7:e9:b9:0d:64:62:16:09:38:c0:4a:11:58:39:
                    5c:39:b0:b7:4c:06:a8:24:4b:89:18:cd:f2:7c:2d:
                    4c:28:c3:68:dd:52:38:52:a4:a4:d7:a9:47:68:09:
                    3d:ff:66:43:b3:c4:7d:e7:10:53:ad:09:ee:4e:00:
                    e5:c0:98:d7:2c:26:24:4b:3c:9a:b9:9a:be:0f:fa:
                    cc:55:50:1f:3d:4b:4a:2b:b3:1b:73:84:81:d5:d8:
                    b8:9e:93:1b:ab:3a:e1:54:6b:63:01:ec:f3:47:6e:
                    03:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:38:40:E5:1B:4D:7E:F6:3B:AE:29:C7:6B:07:BC:69:4E:13:53:13
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_DhA5RtNfvY7rinHawe8aU4TUxM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  218.187.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         56:d2:e6:33:34:7e:d7:fc:b0:57:5b:05:ec:41:a9:53:9e:a1:
         95:e3:39:eb:b1:9f:29:d3:85:0f:f8:88:96:37:8f:c7:ed:0c:
         f3:84:a8:f0:36:76:35:39:61:9c:f8:bd:d7:3e:39:be:8a:3f:
         ca:f6:00:99:5a:76:7d:71:f3:18:dd:d8:50:67:b8:8c:a9:b2:
         f6:82:60:f1:e6:0e:e4:b6:18:e8:a5:d5:81:58:20:90:f7:5c:
         70:e0:ec:76:47:1b:b7:05:5b:b8:4c:a3:f5:60:be:5b:be:e8:
         9c:64:a5:58:8d:40:bd:1e:2d:48:7a:05:7f:39:bc:71:5a:99:
         db:7d:52:52:85:3c:b0:a5:f6:96:41:59:d5:60:73:93:7a:0f:
         28:bd:4c:49:a8:11:4e:ea:e7:76:8a:4c:05:79:a9:db:bb:92:
         fc:12:e1:60:01:a8:9e:bc:6c:8c:49:9a:0c:cb:94:db:7f:3f:
         0a:93:dc:62:f2:62:32:41:e0:98:cb:ea:39:cc:8d:bf:4e:fa:
         7a:67:c1:10:10:d6:a9:14:90:c6:ac:43:06:91:d5:d8:38:51:
         4c:9b:29:40:80:60:a4:5f:e8:c6:b2:a5:40:06:48:f5:28:30:
         87:af:7e:36:f3:43:c1:dd:ed:8e:11:f6:b8:3d:a3:c6:70:01:
         75:98:9e:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org