Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/abm6tnWjU0hioaXp18hmZJGfMTw.roa
File:                     abm6tnWjU0hioaXp18hmZJGfMTw.roa (raw, json)
Hash identifier:          QCftpdP9ndNHTZlMiOlWSqUG47GWIzj3bN7moB5a/rc=
Subject key identifier:   69:B9:BA:B6:75:A3:53:48:62:A1:A5:E9:D7:C8:66:64:91:9F:31:3C
Certificate issuer:       /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial:       0FCD
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/abm6tnWjU0hioaXp18hmZJGfMTw.roa
Signing time:             Fri 01 Sep 2023 08:29:35 +0000
ROA not before:           Fri 01 Sep 2023 08:29:35 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     38851
IP address blocks:        103.5.100.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4045 (0xfcd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
        Validity
            Not Before: Sep  1 08:29:35 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=69B9BAB675A3534862A1A5E9D7C86664919F313C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:4d:cd:3e:73:a7:49:de:e0:bd:71:7e:11:5f:
                    51:f4:82:f2:f6:7c:41:34:38:f4:c6:9e:56:dc:35:
                    71:ec:ea:cb:0f:94:d9:8e:46:03:6c:21:cd:6c:8e:
                    81:7d:31:ad:1a:ef:82:9b:17:e9:2e:2c:25:07:33:
                    5f:17:68:4d:5f:0b:ac:05:8b:18:bb:e9:5b:87:56:
                    74:be:82:23:3d:a5:9f:92:e1:36:39:9a:61:22:ef:
                    25:49:b1:c8:0a:6a:67:a6:ba:d8:b5:c1:75:f7:52:
                    84:fe:bb:da:54:19:46:12:c4:f3:59:35:c6:b0:93:
                    c2:f2:33:19:f8:03:53:88:68:a6:bd:96:34:11:01:
                    04:27:43:70:24:52:ee:79:12:8a:1b:9b:25:15:dc:
                    bd:e8:81:2c:4c:a3:4d:f9:f4:38:cc:21:e6:86:5c:
                    be:c7:6f:2d:92:5e:d8:84:ba:9e:7c:08:91:ce:c3:
                    20:7d:75:a4:48:7a:a6:ae:fd:58:2e:8f:6a:0f:a9:
                    6b:f1:e3:92:bd:1c:c5:d9:18:52:57:7d:18:dd:91:
                    46:0c:dd:29:12:14:cd:d9:db:2a:61:54:d6:8c:67:
                    a2:b7:3e:bf:51:75:67:de:b6:e2:10:7a:56:ce:35:
                    0c:08:f5:79:63:1b:07:7e:5f:d0:56:eb:15:8b:3a:
                    0c:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:B9:BA:B6:75:A3:53:48:62:A1:A5:E9:D7:C8:66:64:91:9F:31:3C
            X509v3 Authority Key Identifier:
                keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/abm6tnWjU0hioaXp18hmZJGfMTw.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.5.100.0/22

    Signature Algorithm: sha256WithRSAEncryption
         b8:b0:c9:7a:c2:02:76:79:a5:92:7b:9c:21:2f:59:f7:15:63:
         ae:c2:df:64:68:dc:61:f3:43:16:7b:ac:46:6d:8b:5e:d3:d7:
         99:36:12:fb:72:38:78:68:63:d5:73:0e:6e:f3:3f:be:68:d8:
         b0:5d:13:93:7e:cd:94:12:8b:7a:59:75:28:2e:d8:e9:68:7c:
         54:77:18:5c:5f:96:24:b2:22:52:15:4b:b2:c3:56:69:f3:8e:
         8b:2e:d9:86:2c:91:72:4c:52:14:6e:83:d5:45:ca:97:92:06:
         10:db:2b:75:b6:ae:01:46:35:16:70:6e:56:e5:a0:3e:50:59:
         58:20:07:5e:bf:65:2c:69:4c:50:10:3a:d2:64:6b:52:a1:07:
         89:fe:35:5a:20:93:ea:d2:62:34:78:99:5c:af:7b:43:21:03:
         69:b1:24:9b:5b:63:c2:7a:e3:12:5e:26:fe:81:60:57:e7:a2:
         a5:f3:ef:eb:b1:19:ec:86:51:be:56:7a:06:34:3c:3e:e6:cc:
         95:c2:6d:bb:5c:4b:f9:0e:50:c2:59:56:3f:48:dd:6d:54:94:
         fb:e1:21:51:a6:b6:9d:83:c0:05:8b:ae:4a:3d:51:26:10:2a:
         d1:18:95:34:ce:04:d8:07:d0:9b:83:61:12:f7:1b:46:70:5f:
         10:bb:96:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org