Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/miDmEfQ-SrCvysjOT0i-dbDEWPc.roa
File:                     miDmEfQ-SrCvysjOT0i-dbDEWPc.roa (raw, json)
Hash identifier:          /qvrDM78gCcLM49x6HClnbMGo99yFj90jbW2nQoOIf8=
Subject key identifier:   9A:20:E6:11:F4:3E:4A:B0:AF:CA:C8:CE:4F:48:BE:75:B0:C4:58:F7
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       0953
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/miDmEfQ-SrCvysjOT0i-dbDEWPc.roa
Signing time:             Tue 29 Sep 2020 10:01:43 +0000
ROA not before:           Tue 29 Sep 2020 10:01:43 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     9311
IP address blocks:        210.200.106.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2387 (0x953)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 29 10:01:43 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=9A20E611F43E4AB0AFCAC8CE4F48BE75B0C458F7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:c2:cb:40:ff:c4:52:dd:90:4b:f0:cb:5c:35:
                    96:12:9f:4b:37:5d:68:2d:41:92:8c:ab:4f:87:68:
                    0d:f8:d2:4d:c9:63:ff:3b:26:f1:30:d3:c0:c3:4c:
                    34:09:ef:a7:6a:f3:bc:ba:d5:d7:3f:e9:c6:8d:f8:
                    18:a5:71:9c:46:2f:3e:76:fe:e1:b1:87:04:3c:49:
                    0a:1d:1c:db:1d:1b:ce:18:0a:6f:0a:eb:88:c3:7f:
                    94:7f:c2:00:7d:8b:80:39:14:b1:ab:8e:09:00:1c:
                    af:fd:27:0c:20:95:81:d8:34:24:75:33:9b:8f:6c:
                    d6:0f:87:98:bb:b5:d2:61:cc:cc:07:64:38:8a:09:
                    e2:4f:ef:74:2c:4b:38:b4:5e:69:17:ec:f7:1a:e2:
                    e6:81:5d:8d:cf:93:21:58:ff:75:29:91:aa:1b:ea:
                    ba:59:4f:f9:eb:9c:0d:92:28:7b:a4:7c:1d:42:57:
                    2e:74:92:a9:c4:9e:ce:9a:ee:a9:f9:44:75:e0:56:
                    85:b0:aa:8c:97:77:d8:31:6d:46:0f:4f:ad:52:fa:
                    71:c5:0b:00:90:7a:ff:9f:18:0d:55:9e:4b:95:4e:
                    d8:34:d5:b6:ca:73:fa:eb:cc:98:b9:16:32:82:d6:
                    2e:37:af:93:d0:cc:8e:18:8c:cd:63:4b:25:4a:90:
                    c3:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9A:20:E6:11:F4:3E:4A:B0:AF:CA:C8:CE:4F:48:BE:75:B0:C4:58:F7
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/miDmEfQ-SrCvysjOT0i-dbDEWPc.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.200.106.0/24

    Signature Algorithm: sha256WithRSAEncryption
         56:4b:e5:28:2e:35:0a:3a:57:60:9d:7f:65:27:fb:8e:4f:b4:
         12:b6:1b:e6:f5:13:86:10:70:4c:09:a0:df:af:db:b4:14:44:
         1f:5d:aa:c9:4e:e4:3a:30:59:25:12:23:76:74:df:e2:b0:95:
         ee:9a:8c:ad:cc:a6:01:e5:7e:03:d2:d3:25:4d:27:c9:18:c8:
         2a:df:f1:4c:c0:c8:5d:48:af:59:aa:5b:49:2c:ae:96:6f:4a:
         ce:fb:3b:c7:28:c2:1e:15:13:d5:bb:9f:c0:fd:b3:97:36:ec:
         82:4a:20:7b:3c:10:70:71:76:7c:96:09:ad:2c:3f:86:ee:a8:
         b7:cb:aa:d6:38:65:53:6c:18:c5:d9:fe:9a:17:d2:7b:ba:b7:
         a9:19:41:d8:e8:17:8a:47:fa:f8:eb:f2:72:1f:4a:76:6a:56:
         e3:62:8a:90:10:01:a6:43:ed:d2:ee:0a:e4:b6:14:6b:28:3f:
         06:6d:e8:cb:94:29:a4:03:a7:b7:7e:4f:95:7b:99:48:7b:04:
         46:76:bb:b5:c9:12:83:c9:9b:ac:24:69:65:c5:f9:8d:fe:19:
         9a:c4:3b:c6:c0:d9:7f:0e:ca:8e:1a:cd:2e:16:54:fa:56:87:
         a6:6c:09:70:ed:7c:a6:16:56:e3:d9:24:8c:78:ed:ac:7a:1d:
         77:4c:e4:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org