Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/a-zBxz1_L_QeJLwuK5wgDJe5dys.roa
File:                     a-zBxz1_L_QeJLwuK5wgDJe5dys.roa (raw, json)
Hash identifier:          0hIquxBofFB8Nu+lMWR/nvLWCFM150su9KL7pmuBW/0=
Subject key identifier:   6B:EC:C1:C7:3D:7F:2F:F4:1E:24:BC:2E:2B:9C:20:0C:97:B9:77:2B
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       0956
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/a-zBxz1_L_QeJLwuK5wgDJe5dys.roa
Signing time:             Tue 29 Sep 2020 10:01:43 +0000
ROA not before:           Tue 29 Sep 2020 10:01:43 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     9311
IP address blocks:        210.63.239.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2390 (0x956)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 29 10:01:43 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=6BECC1C73D7F2FF41E24BC2E2B9C200C97B9772B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:94:b1:e6:75:cc:ff:4e:08:bd:be:38:38:5f:
                    2c:8d:fe:37:0d:d6:5e:fe:5b:dc:11:c6:c7:94:9a:
                    52:a3:1f:6c:4f:a3:15:8a:a8:75:b9:9a:55:18:12:
                    64:60:d1:96:c6:e2:6d:27:16:b4:3d:e8:6c:89:19:
                    38:6b:3a:33:e1:bb:77:c8:8b:34:2d:b0:34:e8:bb:
                    03:13:da:de:8a:c6:25:97:2f:78:83:aa:f4:c5:c4:
                    b1:4b:70:89:c7:df:e3:2a:e2:be:e4:be:e7:81:02:
                    d4:d0:ec:0c:a2:f1:c2:45:db:33:26:a6:51:e7:75:
                    48:04:56:5e:d6:11:3a:35:72:ae:65:00:19:0c:59:
                    d4:3d:50:29:86:ca:8e:2e:3e:5c:42:ea:08:d0:61:
                    10:7b:d1:98:82:80:ed:4c:9a:d7:04:ab:92:c0:b3:
                    90:17:32:82:cf:de:31:dc:13:e0:fc:c3:b2:ee:32:
                    95:1e:27:82:f5:fc:b8:29:ee:59:23:66:32:bd:18:
                    42:19:96:4f:ed:e5:ab:3d:d1:e0:55:40:8e:89:37:
                    b7:42:9c:d5:50:36:be:7f:03:9e:a7:47:45:58:86:
                    4a:b5:5f:62:74:d0:13:31:83:b9:96:81:6a:e4:31:
                    14:16:2b:e8:98:2a:0c:53:26:48:9a:18:bc:c8:8a:
                    4d:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:EC:C1:C7:3D:7F:2F:F4:1E:24:BC:2E:2B:9C:20:0C:97:B9:77:2B
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/a-zBxz1_L_QeJLwuK5wgDJe5dys.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.63.239.0/24

    Signature Algorithm: sha256WithRSAEncryption
         56:df:a2:78:24:10:72:9b:ef:f2:33:62:d7:63:5c:4a:53:d5:
         7b:e7:8a:7e:8e:fb:17:8f:3f:41:f6:ed:36:95:29:29:5d:59:
         30:65:da:48:ab:b8:c5:b8:3b:37:fc:15:e5:d0:e9:66:41:85:
         64:3a:fd:75:53:7f:4b:fc:4b:5f:8c:6e:69:db:32:40:91:d9:
         e4:d8:e3:ac:6e:d1:69:2a:41:90:b7:a5:6d:e4:37:79:af:29:
         e1:d6:78:f6:17:97:5f:e5:8b:ee:db:71:fd:19:da:3f:3b:8d:
         76:64:b9:12:9c:7f:98:66:0b:14:df:e9:14:0d:de:16:9d:ff:
         b0:ce:c3:92:dd:fa:f9:e1:34:67:7b:d8:3f:f4:a6:9e:07:cd:
         26:93:42:e7:6e:25:c9:59:9e:c7:e5:0d:47:43:6d:24:d8:16:
         0c:74:7d:65:ee:bd:98:1c:11:41:ac:2b:6c:dd:72:9a:42:f1:
         9a:26:4d:65:3e:f3:e4:4d:29:3d:45:cf:cd:70:b4:73:bf:3c:
         da:8a:3f:f9:7a:a9:cd:63:10:95:3a:d5:4e:0e:be:30:24:46:
         9a:10:1f:cf:36:1e:f4:92:14:df:bd:53:27:a9:19:ae:24:c4:
         a3:ee:bd:c1:e0:d1:b9:9f:26:42:e8:66:04:f8:43:22:26:2e:
         27:d7:14:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org