Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/xivjnbfe1ufkZzQQ54xiA33JDXs.roa
File:                     xivjnbfe1ufkZzQQ54xiA33JDXs.roa (raw, json)
Hash identifier:          z33Y5hwyFtuoq7Gmbl6cf4w4Yzsf+1eHnB9u+MdfTww=
Subject key identifier:   C6:2B:E3:9D:B7:DE:D6:E7:E4:67:34:10:E7:8C:62:03:7D:C9:0D:7B
Certificate issuer:       /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial:       091C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xivjnbfe1ufkZzQQ54xiA33JDXs.roa
Signing time:             Tue 29 Sep 2020 10:01:29 +0000
ROA not before:           Tue 29 Sep 2020 10:01:29 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     7482
IP address blocks:        210.201.0.0/18 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2332 (0x91c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
        Validity
            Not Before: Sep 29 10:01:29 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=C62BE39DB7DED6E7E4673410E78C62037DC90D7B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:70:01:9f:fb:65:2f:97:e9:12:0c:53:da:9e:
                    06:c2:14:f3:e6:48:98:7a:9d:8b:82:96:26:01:e2:
                    81:83:98:6a:10:1b:28:9e:c0:8a:50:3a:91:ec:74:
                    a4:5f:4b:a8:ec:4d:23:41:9a:eb:14:cd:fe:77:3d:
                    c9:d9:84:83:05:eb:04:0a:1b:8f:7f:b9:9d:9f:db:
                    f7:1d:7a:7f:5a:b6:80:c1:eb:15:3a:74:07:06:39:
                    23:a2:01:60:21:95:48:0f:b5:3c:58:83:e1:8a:a7:
                    d3:f5:65:85:ef:1d:11:7d:b6:14:ec:7f:be:4a:78:
                    7b:cf:df:30:31:99:8f:53:26:2a:81:e5:2b:2b:f6:
                    4d:70:2a:81:8b:76:75:73:0c:92:76:05:ef:69:11:
                    9e:97:25:ad:79:03:41:fa:ee:ea:4e:5e:0c:5e:00:
                    2f:16:1b:da:35:b6:d8:ee:73:c3:dc:ff:51:fd:e2:
                    3d:33:a9:59:fd:a5:6c:ef:3e:12:df:fd:80:d8:38:
                    44:2d:98:bb:d4:a7:72:a8:78:e8:4e:89:f1:b2:c7:
                    a4:f7:f6:13:d8:a4:06:51:5d:1f:6e:ec:52:6d:92:
                    2f:c1:10:be:8c:4d:1e:95:63:b8:b2:d7:9f:9c:df:
                    2a:06:c7:ea:a0:c0:4b:af:c7:a0:b2:ba:e1:f3:17:
                    bb:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:2B:E3:9D:B7:DE:D6:E7:E4:67:34:10:E7:8C:62:03:7D:C9:0D:7B
            X509v3 Authority Key Identifier:
                keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xivjnbfe1ufkZzQQ54xiA33JDXs.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.201.0.0/18

    Signature Algorithm: sha256WithRSAEncryption
         ae:6e:23:41:42:54:45:7a:99:69:8e:9f:9b:2a:f7:4e:0c:c4:
         e7:83:f7:8a:68:32:22:f8:2f:05:5a:63:31:b8:c5:79:05:e7:
         ed:f1:73:20:b3:d9:28:7d:21:86:db:84:31:b0:21:5b:dc:fc:
         a0:22:8c:68:9c:bc:06:67:98:20:90:42:f3:02:59:0d:73:0b:
         24:62:86:d2:9c:dd:7e:ce:79:2a:bf:fb:93:71:84:59:46:56:
         39:50:c3:e2:90:db:60:94:c3:07:2c:c5:2b:f1:c2:0b:60:df:
         a9:f4:b0:c0:d2:2c:9c:ae:4d:a1:11:04:31:02:6e:06:27:cf:
         39:91:7c:c8:30:57:37:64:69:85:d7:08:fd:c8:18:f0:9d:4c:
         89:3a:32:47:63:0e:2b:39:f3:29:1d:2c:64:96:21:db:b8:6c:
         aa:90:fd:a7:1b:13:16:5c:58:83:1f:34:4d:a8:e8:77:c5:7f:
         f1:0d:29:8f:61:6f:90:1b:ae:da:12:16:9e:9b:68:6b:ff:fb:
         fe:08:f3:cf:b0:3c:3c:f5:8b:4e:ae:59:74:01:6e:6d:9a:ed:
         54:ee:97:4b:ed:44:06:48:9c:95:2d:b6:1a:00:5b:66:94:cc:
         64:27:f8:91:c4:1e:8e:05:94:f5:3b:45:0b:3a:ca:29:91:d0:
         c2:c9:4c:af
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCRwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxMjlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEM2MkJFMzlEQjdERUQ2
RTdFNDY3MzQxMEU3OEM2MjAzN0RDOTBEN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUcAGf+2Uvl+kSDFPangbCFPPmSJh6nYuCliYB4oGDmGoQGyie
wIpQOpHsdKRfS6jsTSNBmusUzf53PcnZhIMF6wQKG49/uZ2f2/cden9atoDB6xU6
dAcGOSOiAWAhlUgPtTxYg+GKp9P1ZYXvHRF9thTsf75KeHvP3zAxmY9TJiqB5Ssr
9k1wKoGLdnVzDJJ2Be9pEZ6XJa15A0H67upOXgxeAC8WG9o1ttjuc8Pc/1H94j0z
qVn9pWzvPhLf/YDYOEQtmLvUp3KoeOhOifGyx6T39hPYpAZRXR9u7FJtki/BEL6M
TR6VY7iy15+c3yoGx+qgwEuvx6CyuuHzF7vdAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUxivjnbfe1ufkZzQQ54xiA33JDXswHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wveGl2am5iZmUxdWZrWnpRUTU0eGlB
MzNKRFhzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLJADAN
BgkqhkiG9w0BAQsFAAOCAQEArm4jQUJURXqZaY6fmyr3TgzE54P3imgyIvgvBVpj
MbjFeQXn7fFzILPZKH0hhtuEMbAhW9z8oCKMaJy8BmeYIJBC8wJZDXMLJGKG0pzd
fs55Kr/7k3GEWUZWOVDD4pDbYJTDByzFK/HCC2DfqfSwwNIsnK5NoREEMQJuBifP
OZF8yDBXN2RphdcI/cgY8J1MiToyR2MOKznzKR0sZJYh27hsqpD9pxsTFlxYgx80
Tajod8V/8Q0pj2FvkBuu2hIWnptoa//7/gjzz7A8PPWLTq5ZdAFubZrtVO6XS+1E
BkiclS22GgBbZpTMZCf4kcQejgWU9TtFCzrKKZHQwslMrw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org