Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/mHibf4xV4iWAn4kLlePElfB1iLw.roa
File:                     mHibf4xV4iWAn4kLlePElfB1iLw.roa (raw, json)
Hash identifier:          eiP+RVPLQFQNrvvRXCarKDB03leL3vYUDqILblIglGY=
Subject key identifier:   98:78:9B:7F:8C:55:E2:25:80:9F:89:0B:95:E3:C4:95:F0:75:88:BC
Certificate issuer:       /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial:       0BD8
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/mHibf4xV4iWAn4kLlePElfB1iLw.roa
Signing time:             Mon 11 Mar 2024 07:49:49 +0000
ROA not before:           Mon 11 Mar 2024 07:49:49 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     138145
IP address blocks:        103.135.19.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3032 (0xbd8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
        Validity
            Not Before: Mar 11 07:49:49 2024 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=98789B7F8C55E225809F890B95E3C495F07588BC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:a8:90:d3:a5:26:d4:25:a9:22:d1:76:ad:13:
                    74:9b:7e:da:20:62:5d:70:f6:dc:3f:e6:b4:0d:cc:
                    85:8b:7f:4f:7b:9c:8a:90:bf:54:44:59:f5:19:4b:
                    f4:0c:20:a1:b5:8a:9f:33:84:4d:85:96:78:75:b2:
                    00:e1:22:e7:05:a8:cd:10:ee:15:a8:59:4f:a4:0a:
                    9a:1f:87:a1:c7:41:a9:d4:88:7b:0d:7b:a1:ea:b2:
                    60:4a:1d:8b:c0:42:2d:46:ab:84:a0:fd:c8:64:81:
                    30:46:f3:b2:08:98:2e:c2:c9:91:f7:17:66:f2:69:
                    12:55:86:6a:6f:f4:e9:de:95:f9:cb:50:8b:9a:19:
                    08:f6:e7:4f:c3:c9:c7:f5:28:ed:1c:ff:59:4f:46:
                    32:e0:e5:e4:9b:0a:8f:7d:54:db:94:57:56:6e:7f:
                    e6:38:65:3d:00:03:c8:cb:3e:bc:ae:82:56:6f:48:
                    2f:bb:39:a4:fa:f4:0b:45:1e:2a:0e:35:d1:6f:66:
                    38:d1:b1:c5:8b:f3:9e:49:24:82:19:b9:d1:0b:73:
                    66:0b:fb:df:47:8f:6b:d4:48:28:b4:f1:79:37:eb:
                    55:49:9e:23:6f:53:ce:72:04:e9:5c:a9:7a:0c:dd:
                    ff:1b:c5:f8:22:88:d0:35:d1:21:c1:52:2d:51:28:
                    cd:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:78:9B:7F:8C:55:E2:25:80:9F:89:0B:95:E3:C4:95:F0:75:88:BC
            X509v3 Authority Key Identifier:
                keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/mHibf4xV4iWAn4kLlePElfB1iLw.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.135.19.0/24

    Signature Algorithm: sha256WithRSAEncryption
         51:68:96:38:fd:3b:dc:65:15:84:f1:98:88:43:7a:96:20:38:
         26:86:86:82:d2:89:53:70:8d:78:12:47:81:ce:e9:66:75:e5:
         08:ad:2e:29:86:b9:ec:2b:0c:fa:75:fb:19:72:33:02:2e:65:
         67:bc:aa:1c:2f:d6:76:4d:61:00:2a:bf:b3:02:0a:46:92:6c:
         75:19:e1:09:68:b4:51:d0:de:51:90:18:74:c0:f3:14:43:9a:
         e3:4c:54:1a:0c:62:2c:94:c4:cd:ed:b0:3a:6f:c4:86:e0:44:
         13:9f:3d:f7:a0:c4:6a:c3:1e:e3:74:77:ba:7d:3d:7e:d9:28:
         da:f5:fd:1e:66:ce:09:f1:c4:3b:84:c1:89:42:73:1a:f5:96:
         7d:4e:a0:ca:20:06:fa:a4:82:5e:9a:eb:41:44:13:e0:b7:03:
         52:c7:e2:06:43:b0:64:5a:08:58:0f:9c:c8:f4:01:96:e9:56:
         2d:19:82:d6:cc:25:8d:e3:fa:d9:53:f4:7b:20:b5:7b:98:e6:
         8c:de:a2:c9:2e:c2:80:9a:e3:24:ea:fb:d3:d4:e3:a6:e8:cc:
         00:f1:18:5b:b9:dd:5f:34:8b:8d:76:63:08:36:b5:1a:2b:ab:
         96:2c:f2:cc:66:cd:df:a4:55:91:26:64:73:92:ba:5b:97:08:
         ff:83:7a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org