Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/tvcX9OK2q7qvfR9RJXYTGX-xHmk.roa
File:                     tvcX9OK2q7qvfR9RJXYTGX-xHmk.roa (raw, json)
Hash identifier:          N0MLCKKk7O3JkRGIdtqhYk7AjIOXK6BrYtoRPSTtaAk=
Subject key identifier:   B6:F7:17:F4:E2:B6:AB:BA:AF:7D:1F:51:25:76:13:19:7F:B1:1E:69
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/tvcX9OK2q7qvfR9RJXYTGX-xHmk.roa
Signing time:             Thu 15 Sep 2022 02:39:51 +0000
ROA not before:           Thu 15 Sep 2022 02:39:51 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     18419
IP address blocks:        124.218.0.0/18 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3939 (0xf63)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 15 02:39:51 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=B6F717F4E2B6ABBAAF7D1F51257613197FB11E69
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:73:29:d5:68:0b:01:c3:af:08:de:84:03:bc:
                    ba:21:b6:47:f5:5a:01:07:66:f7:d0:97:02:2e:02:
                    ad:50:fc:20:b0:c7:68:f1:13:d0:0e:b3:23:5f:47:
                    bc:a9:bb:b0:1e:ae:72:aa:47:8d:de:d8:61:bf:72:
                    98:af:3b:76:0d:f8:72:12:1d:f0:60:96:33:dc:8b:
                    48:58:84:07:68:09:68:96:f4:e3:34:4b:cd:6b:59:
                    e7:7f:37:0c:19:75:dd:a3:c8:cf:fd:97:fe:59:71:
                    12:e9:07:d2:9f:2a:1e:aa:10:a2:fa:ae:c3:77:ce:
                    dd:8e:0f:de:7c:59:3d:ff:4e:de:a8:ce:93:f1:d7:
                    8a:e7:5c:7a:20:f4:50:42:8e:aa:0a:47:e4:60:82:
                    88:f4:15:b8:79:9f:97:dc:68:9e:34:31:4d:f7:64:
                    33:39:f7:9c:66:0a:eb:cd:27:a3:3e:e8:af:b5:00:
                    74:87:63:ec:71:a1:76:92:bf:b3:0e:e6:00:f8:ce:
                    57:86:8a:96:22:72:11:4f:77:09:18:77:2a:dd:d4:
                    a3:de:01:8f:e1:b2:ce:a3:9d:69:8b:43:a7:44:e6:
                    12:7a:6d:81:5d:e1:8d:ed:7d:9c:32:fb:b3:8d:e8:
                    ff:71:46:6c:96:a6:fb:4f:13:d9:22:f7:a7:0b:51:
                    fb:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:F7:17:F4:E2:B6:AB:BA:AF:7D:1F:51:25:76:13:19:7F:B1:1E:69
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/tvcX9OK2q7qvfR9RJXYTGX-xHmk.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  124.218.0.0/18

    Signature Algorithm: sha256WithRSAEncryption
         07:84:da:b6:27:7d:a7:c0:0a:4b:db:ea:f0:09:f5:e2:ac:34:
         4c:37:e1:a3:28:c2:73:81:62:72:77:b7:d4:07:72:79:6d:c1:
         f6:58:b3:fd:91:01:af:68:a5:ec:a6:98:cb:7a:6f:3d:93:41:
         97:7d:ef:84:43:2e:72:1b:35:f7:98:72:47:0f:46:97:04:8d:
         7b:f7:8d:c9:52:9f:ed:ea:75:dc:5c:28:94:65:27:82:89:f8:
         fd:f8:8f:af:8a:2e:9f:f4:be:e3:40:d6:01:f3:30:b9:e5:6d:
         aa:93:55:cc:cf:34:92:2d:18:c0:3f:1a:32:2b:f9:ac:0c:13:
         b0:27:7b:4d:1f:53:50:16:9f:2d:72:1b:a1:42:55:14:39:bf:
         08:21:d7:52:ac:19:5a:9c:06:fd:cb:36:79:a5:d3:9a:1f:62:
         e6:6f:34:b3:49:9b:19:ac:8f:4b:04:a7:54:13:b2:75:ae:d4:
         19:63:be:a2:f8:c2:29:df:95:b0:4d:d8:88:d4:62:2c:26:65:
         b9:21:19:81:55:7e:4c:83:3c:cb:bb:44:ba:f4:98:1a:44:24:
         b6:f9:14:9f:bc:0f:02:1b:49:b9:42:d2:f7:e5:7c:23:1b:7d:
         9d:2a:4a:38:64:ef:67:9e:17:3f:44:a5:4b:31:2c:01:ca:3f:
         99:0b:50:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org