Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/x5FVjSMXeQ_SU0NWfyJKAQr0SBY.roa
File:                     x5FVjSMXeQ_SU0NWfyJKAQr0SBY.roa (raw, json)
Hash identifier:          JlHqjy/vk5nqbOJh7MH+70nKGR+3kz5niT0d0LuOvMI=
Subject key identifier:   C7:91:55:8D:23:17:79:0F:D2:53:43:56:7F:22:4A:01:0A:F4:48:16
Certificate issuer:       /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
Certificate serial:       8B
Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/x5FVjSMXeQ_SU0NWfyJKAQr0SBY.roa
Signing time:             Fri 13 Oct 2023 22:10:29 +0000
ROA not before:           Fri 13 Oct 2023 22:10:29 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     63910
IP address blocks:        103.130.237.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 139 (0x8b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
        Validity
            Not Before: Oct 13 22:10:29 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=C791558D2317790FD25343567F224A010AF44816
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:a9:4d:b8:c7:9b:0e:bc:df:a7:1b:db:dd:94:
                    48:2d:13:69:cd:94:40:f5:af:ed:39:a9:05:68:92:
                    46:34:b6:89:f6:e5:f3:d5:d3:4c:98:77:d3:38:82:
                    6f:f6:2c:d9:95:3e:5e:37:51:42:86:8e:3f:2f:16:
                    37:5d:e9:2f:9c:a5:c8:dd:4e:e5:1f:fb:76:1a:b2:
                    86:25:40:1c:36:79:56:3d:50:dc:8e:a3:e2:8e:25:
                    a3:60:9d:b7:d8:f1:ec:fa:53:60:e5:dd:31:e2:c4:
                    47:40:19:14:2f:2b:1a:ee:a4:8f:81:a7:fc:0b:47:
                    c3:41:f6:a7:97:51:1e:9d:29:ec:1b:fc:42:50:86:
                    9d:b2:96:b6:87:74:e1:e4:ae:35:61:fb:cb:0d:f1:
                    5d:ef:eb:89:88:a7:70:04:a3:09:54:53:1e:93:19:
                    be:9c:df:a8:b6:bc:ed:2e:3c:42:6a:6e:36:41:96:
                    d2:53:ee:83:63:6a:9a:98:3b:17:7c:ab:03:e8:6d:
                    f4:13:8d:78:cd:a6:a4:7a:b2:9c:d8:4c:1e:c5:5a:
                    77:f4:03:57:a6:40:15:11:ea:b4:68:4d:2f:1a:cf:
                    04:17:b3:9a:05:82:5b:47:cd:58:d9:6e:e9:5c:bc:
                    77:d4:94:1f:ad:5e:22:77:ba:04:88:b7:be:32:f7:
                    cb:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C7:91:55:8D:23:17:79:0F:D2:53:43:56:7F:22:4A:01:0A:F4:48:16
            X509v3 Authority Key Identifier:
                keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/x5FVjSMXeQ_SU0NWfyJKAQr0SBY.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.130.237.0/24

    Signature Algorithm: sha256WithRSAEncryption
         31:5a:0d:e9:b1:a2:55:39:5f:20:88:b7:4a:be:3f:ef:6b:8d:
         4e:47:17:bd:d0:00:ae:ba:12:24:b9:13:97:63:95:b1:11:dd:
         4f:07:f7:ab:13:44:55:f9:01:fe:ba:c6:99:c3:ba:4f:14:78:
         fd:92:75:38:f2:9c:0c:0a:9d:5a:3c:47:0d:57:ce:9c:bb:a6:
         12:61:ae:4b:a4:96:a3:36:f9:7a:d4:4a:d5:40:3d:d7:6c:0e:
         bb:0e:54:f8:05:42:00:32:cc:8e:65:61:f3:bf:33:78:7e:2c:
         88:d7:9e:15:41:15:d9:6a:80:eb:28:5f:63:9e:55:34:82:d8:
         37:f4:82:1a:9e:ff:80:05:ee:fc:e9:05:42:9d:b4:97:bb:d2:
         3c:cc:02:5b:80:bf:46:f4:de:55:74:20:bb:d4:3a:7d:3e:6f:
         d1:e4:85:70:ba:33:01:e5:14:36:08:2c:5e:f7:da:72:2b:5f:
         db:a6:8e:df:d7:03:6d:af:51:c5:96:da:d1:76:9d:8a:55:f2:
         3c:21:3d:54:2d:84:41:22:e0:d1:33:37:24:48:fb:28:24:a4:
         d5:a3:cc:16:f6:1a:6d:c2:31:5b:77:7e:bd:3c:04:20:5f:a2:
         4b:a5:74:75:40:aa:ba:5e:68:13:f0:a8:9c:89:3a:82:15:69:
         26:b8:84:d5
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICAIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRB
RjA0MDJGRUY1NkMzNEExOTJEMUQyMTg1RTZGQjU0NkFBNzAyQzAeFw0yMzEwMTMy
MjEwMjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM3OTE1NThEMjMxNzc5
MEZEMjUzNDM1NjdGMjI0QTAxMEFGNDQ4MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVqU24x5sOvN+nG9vdlEgtE2nNlED1r+05qQVokkY0ton25fPV
00yYd9M4gm/2LNmVPl43UUKGjj8vFjdd6S+cpcjdTuUf+3YasoYlQBw2eVY9UNyO
o+KOJaNgnbfY8ez6U2Dl3THixEdAGRQvKxrupI+Bp/wLR8NB9qeXUR6dKewb/EJQ
hp2ylraHdOHkrjVh+8sN8V3v64mIp3AEowlUUx6TGb6c36i2vO0uPEJqbjZBltJT
7oNjapqYOxd8qwPobfQTjXjNpqR6spzYTB7FWnf0A1emQBUR6rRoTS8azwQXs5oF
gltHzVjZbulcvHfUlB+tXiJ3ugSIt74y98tLAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUx5FVjSMXeQ/SU0NWfyJKAQr0SBYwHwYDVR0jBBgwFoAUdK8EAv71bDShktHS
GF5vtUaqcCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xBUksv
ZEs4RUF2NzFiRFNoa3RIU0dGNXZ0VWFxY0N3LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9kSzhFQXY3MWJEU2hrdEhTR0Y1dnRVYXFjQ3cuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTEFSSy94NUZWalNNWGVRX1NVME5XZnlK
S0FRcjBTQlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4Lt
MA0GCSqGSIb3DQEBCwUAA4IBAQAxWg3psaJVOV8giLdKvj/va41ORxe90ACuuhIk
uROXY5WxEd1PB/erE0RV+QH+usaZw7pPFHj9knU48pwMCp1aPEcNV86cu6YSYa5L
pJajNvl61ErVQD3XbA67DlT4BUIAMsyOZWHzvzN4fiyI154VQRXZaoDrKF9jnlU0
gtg39IIanv+ABe786QVCnbSXu9I8zAJbgL9G9N5VdCC71Dp9Pm/R5IVwujMB5RQ2
CCxe99pyK1/bpo7f1wNtr1HFltrRdp2KVfI8IT1ULYRBIuDRMzckSPsoJKTVo8wW
9hptwjFbd369PAQgX6JLpXR1QKq6XmgT8KiciTqCFWkmuITV
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org