Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/e1PdPmAt0R9SxL-Y2KkmexFWhHU.roa
File:                     e1PdPmAt0R9SxL-Y2KkmexFWhHU.roa (raw, json)
Hash identifier:          eq77YMKNi0uKf6G9z32rL1V5lVUuhONKv4OQFtKrHgY=
Subject key identifier:   7B:53:DD:3E:60:2D:D1:1F:52:C4:BF:98:D8:A9:26:7B:11:56:84:75
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       10EF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/e1PdPmAt0R9SxL-Y2KkmexFWhHU.roa
Signing time:             Tue 16 May 2023 08:36:50 +0000
ROA not before:           Tue 16 May 2023 08:36:50 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     17709
IP address blocks:        210.201.72.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4335 (0x10ef)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: May 16 08:36:50 2023 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=7B53DD3E602DD11F52C4BF98D8A9267B11568475
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:8f:49:30:a6:36:2c:b8:d8:00:e0:33:07:6a:
                    af:75:73:79:e3:ef:63:ce:ac:af:0f:1b:91:d6:2b:
                    15:3b:95:0c:9a:71:5c:19:c4:c3:15:98:14:f1:45:
                    b1:2c:c2:d4:36:be:08:eb:55:d1:57:93:37:b1:fb:
                    47:13:73:dc:62:99:5e:e9:20:e7:df:8c:92:5f:3e:
                    88:46:5f:89:a3:bf:48:43:fc:67:f6:d8:d0:d0:e8:
                    d6:5a:c0:4d:db:96:b8:c0:af:ed:25:3f:5e:2a:fa:
                    ec:08:c7:f8:91:a2:83:1f:bb:e1:f9:e2:06:01:ab:
                    3d:7a:87:70:b6:5a:9c:31:1c:7f:15:80:98:57:42:
                    d5:aa:3e:41:be:ca:bb:b1:86:74:21:67:1a:fa:02:
                    80:06:ac:dd:67:dd:c4:b7:61:d1:b3:44:2a:8c:58:
                    d6:67:87:52:79:d7:83:5f:2f:9b:a7:28:53:fa:c2:
                    71:d0:80:91:f6:4d:52:71:9b:b0:13:53:ae:ad:8c:
                    9e:9a:9c:42:61:b7:3a:f3:84:c5:ba:5c:d9:d8:9f:
                    d0:0a:2a:cb:bf:76:52:9e:c1:78:db:19:61:36:42:
                    8d:86:00:83:44:f4:09:21:fa:e3:33:4e:09:96:35:
                    23:f6:15:f4:8c:0c:75:fc:6c:8c:25:ef:6f:98:6d:
                    2e:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:53:DD:3E:60:2D:D1:1F:52:C4:BF:98:D8:A9:26:7B:11:56:84:75
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/e1PdPmAt0R9SxL-Y2KkmexFWhHU.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.201.72.0/24

    Signature Algorithm: sha256WithRSAEncryption
         16:21:6d:d0:a0:cd:59:5b:2a:b0:1e:86:3d:65:94:c7:ea:15:
         6b:51:ee:a7:98:c2:65:56:2b:d8:be:51:a2:08:b3:2c:7b:22:
         fe:9c:e3:4f:d9:7b:c6:d6:6c:ca:1d:49:e5:d8:33:9e:68:c8:
         2c:2e:c9:3f:58:e1:6b:e1:eb:82:7b:03:be:64:c8:5d:55:51:
         e5:2b:40:23:4a:57:22:c6:92:9e:ed:fb:d4:ed:0e:82:3f:c6:
         7e:9a:51:9c:2b:9c:b5:61:8f:3b:94:d5:3b:95:c5:1f:69:64:
         e8:a6:4f:4e:e4:84:85:6a:71:16:1f:ba:54:0f:09:ac:40:18:
         45:01:8f:0f:04:aa:fa:25:eb:78:83:cc:ed:83:81:c2:7f:f5:
         bf:36:f5:cb:43:63:25:0b:56:36:3e:49:cf:67:5f:a0:f9:5e:
         25:c6:c7:29:ab:13:fc:7c:99:2b:52:0a:f2:f0:4d:04:eb:3b:
         3b:a3:ca:47:23:12:67:a2:47:d5:85:33:a1:e3:2c:eb:c1:80:
         3c:ce:9b:74:45:69:46:8a:e7:0a:7d:96:24:47:10:5e:2d:ec:
         6d:d9:cc:b4:fc:1b:4b:2e:ed:9a:b0:26:5f:22:ef:54:f1:9e:
         32:f5:9e:19:47:bf:fe:72:75:e4:ff:ae:d5:88:9f:d4:41:5a:
         27:5b:aa:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org