Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/iN2EG367WHo2ecbhaQnwPNDqIlM.roa
File:                     iN2EG367WHo2ecbhaQnwPNDqIlM.roa (raw, json)
Hash identifier:          p7d9QHsJnxc2pter+4Xsqjx3yNHia/2DqlxEHQRN3Yo=
Subject key identifier:   88:DD:84:1B:7E:BB:58:7A:36:79:C6:E1:69:09:F0:3C:D0:EA:22:53
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       0A67
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/iN2EG367WHo2ecbhaQnwPNDqIlM.roa
Signing time:             Mon 09 Nov 2020 23:59:25 +0000
ROA not before:           Mon 09 Nov 2020 23:59:25 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     17709
IP address blocks:        210.201.32.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2663 (0xa67)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Nov  9 23:59:25 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=88DD841B7EBB587A3679C6E16909F03CD0EA2253
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:32:cb:cd:79:81:81:ee:3f:de:8c:dd:3a:3d:
                    1e:a3:d7:a2:89:1a:75:63:42:5f:ad:c7:4c:53:08:
                    95:71:d8:14:b8:8c:ca:73:be:dd:3a:5a:13:d6:a9:
                    d9:10:48:ad:d4:2c:1f:8d:fb:f2:80:d2:fb:bf:92:
                    cb:ad:a8:9c:74:6f:65:29:a4:af:55:25:c8:4f:a6:
                    34:a1:7e:dc:3b:81:7c:f1:01:7a:cf:0a:63:42:9a:
                    6a:6f:89:36:c5:39:f9:50:37:c2:11:6b:e6:36:f9:
                    16:16:7f:af:5d:4f:6b:33:83:be:8a:00:df:7d:18:
                    8c:09:a1:97:a5:00:48:8e:79:6d:83:62:5a:e5:6a:
                    93:87:e6:ac:39:b2:22:92:b2:5d:6d:c9:54:c9:e7:
                    0f:77:d0:de:59:a8:67:76:1e:b7:ab:9d:03:16:0a:
                    7b:7d:e1:1b:bd:60:8e:f3:c7:bf:e8:4b:c0:32:9d:
                    5d:af:df:3f:ee:e8:5b:58:d0:a1:8d:00:e7:38:0c:
                    c3:70:0d:fa:4b:eb:23:c8:42:a5:f8:c0:c3:02:61:
                    33:e6:a2:6b:25:d7:45:fa:c3:2b:20:64:ca:fd:13:
                    ae:92:74:c2:39:a5:6e:96:af:51:e3:2e:99:b2:a0:
                    31:b2:23:91:22:f5:4e:ad:57:44:c5:93:d9:52:db:
                    f7:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:DD:84:1B:7E:BB:58:7A:36:79:C6:E1:69:09:F0:3C:D0:EA:22:53
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/iN2EG367WHo2ecbhaQnwPNDqIlM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.201.32.0/22

    Signature Algorithm: sha256WithRSAEncryption
         15:84:f4:1d:7f:67:74:3a:24:58:e6:b9:a3:9f:c3:12:3b:82:
         a2:f2:2c:c6:03:be:e6:b9:a4:3e:37:bf:7e:87:ba:d4:4f:77:
         81:67:c0:9f:e1:64:51:30:5a:1a:d2:f8:f8:bc:e3:18:2a:a3:
         b6:6e:b7:c3:42:92:36:19:ce:92:57:04:6e:72:f7:fc:a3:03:
         3b:48:72:a8:51:fb:55:f3:81:ad:57:74:01:be:e5:4f:cc:53:
         5d:b6:26:61:68:25:bf:f6:cb:e2:f7:c6:52:8a:b8:8b:45:c0:
         0d:4b:5e:de:97:a3:12:db:10:98:00:c1:46:3d:07:50:1c:fd:
         cb:34:72:ab:e3:b8:9f:37:44:6e:9e:6b:04:0a:de:fa:69:ea:
         b7:c4:45:55:4d:17:4d:3e:5d:b6:8f:4e:be:fa:e4:d2:23:39:
         a0:20:20:89:57:a9:3a:a6:7b:94:67:82:2f:8d:42:c7:07:d9:
         a5:d6:5e:ee:52:fb:f5:7b:37:80:a5:8a:97:4d:7c:0d:90:1e:
         69:bf:28:73:cf:3b:53:ac:05:93:d9:17:0d:52:27:df:8b:fc:
         05:28:a7:9f:08:e3:b9:6a:db:ad:0a:f1:7a:2b:e0:a5:8f:52:
         1a:d6:e4:00:10:47:45:e7:a0:5a:df:f8:d0:2f:cb:f4:f4:e5:
         f8:e2:b1:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org