Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/fu4t5ddBHrgasEC7gWY4MNmZhVM.roa
File:                     fu4t5ddBHrgasEC7gWY4MNmZhVM.roa (raw, json)
Hash identifier:          rqQYdVRb+yOI+uy7hrS64IXJPN1sl45i75y3cH7nyPQ=
Subject key identifier:   7E:EE:2D:E5:D7:41:1E:B8:1A:B0:40:BB:81:66:38:30:D9:99:85:53
Certificate issuer:       /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial:       0CE2
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fu4t5ddBHrgasEC7gWY4MNmZhVM.roa
Signing time:             Mon 15 Jan 2024 21:23:36 +0000
ROA not before:           Mon 15 Jan 2024 21:23:36 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     9311
IP address blocks:        210.63.253.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3298 (0xce2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
        Validity
            Not Before: Jan 15 21:23:36 2024 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=7EEE2DE5D7411EB81AB040BB81663830D9998553
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:9f:4f:0a:6c:8a:69:e4:3f:0f:c0:b5:bf:e0:
                    24:16:d3:ad:c8:eb:7d:ab:6f:03:69:9b:e7:6d:a1:
                    4e:c4:e0:eb:7e:5b:02:af:e1:5e:a3:c4:4d:c8:65:
                    0d:c4:07:88:60:65:fa:45:52:25:39:ee:57:54:61:
                    25:06:89:8a:c5:fe:b4:2b:9d:c8:05:50:8f:b2:75:
                    c3:29:67:38:70:50:f3:61:3a:d2:46:d9:5e:0b:bb:
                    27:fc:e3:c9:da:db:f9:16:b6:cb:c4:7b:15:b6:ea:
                    c2:94:5c:8f:ee:38:e0:00:2a:9b:74:b5:48:31:a7:
                    63:42:2e:cc:e3:a7:24:a3:ea:8f:46:8b:51:4d:61:
                    d4:c5:25:f6:ef:c4:3c:5d:67:a5:95:8d:ae:08:ed:
                    40:d0:bb:0d:97:cf:10:6b:2d:5c:ba:23:b7:4c:a4:
                    09:17:61:54:6f:65:f2:1e:10:a0:c3:23:7d:eb:5e:
                    a1:a7:e6:f3:b0:10:61:97:05:81:8e:e1:23:e9:d7:
                    97:e3:ad:63:35:a8:5c:b1:2e:89:fc:d2:cb:22:91:
                    b3:ca:df:85:59:1c:7d:d7:f0:21:3b:e5:9e:d7:37:
                    3c:a6:a2:43:ee:b9:57:f9:b1:52:8a:d0:51:eb:65:
                    6d:2e:ab:42:a6:4a:85:e4:48:c1:d5:ee:c4:f1:43:
                    2a:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:EE:2D:E5:D7:41:1E:B8:1A:B0:40:BB:81:66:38:30:D9:99:85:53
            X509v3 Authority Key Identifier:
                keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fu4t5ddBHrgasEC7gWY4MNmZhVM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.63.253.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0a:c8:26:c8:45:87:02:81:f2:9b:29:ce:e8:e0:8d:80:4d:d9:
         67:d8:4e:2d:fb:4d:a1:7e:20:06:f7:b7:38:b8:21:d7:55:4e:
         f2:b0:45:e9:c7:18:5b:b1:2d:4c:d4:dd:b1:a8:9e:8d:dd:34:
         f0:ad:38:ce:7a:86:b8:05:06:30:e7:3b:fc:f5:1c:8e:d4:50:
         6b:4b:5c:47:ed:e1:12:84:58:c0:8f:f6:13:d5:83:db:84:f9:
         65:47:e9:40:4c:8a:94:f0:b7:1e:18:3e:a0:63:40:ca:4a:df:
         0d:45:c7:0e:76:e0:f2:ce:02:85:92:31:4f:19:91:9d:e2:d2:
         27:88:ec:17:86:08:14:a9:e7:98:7d:9f:5f:e9:e9:ee:d7:c5:
         1b:62:a0:de:fb:7e:f5:1f:65:16:02:96:1c:23:e6:f2:77:b7:
         5d:60:48:9f:fe:24:39:07:2d:85:b1:8c:a2:b4:ce:d1:e2:d9:
         fa:ec:b4:12:20:8e:ca:0f:e8:ff:48:d5:4d:85:b3:98:d3:ed:
         30:cb:c0:16:c0:cf:d9:1c:ed:14:7b:11:c9:ac:a2:76:6d:fa:
         90:b6:86:02:91:4b:cf:ea:0e:a6:4f:b4:a9:55:fe:13:01:8b:
         ca:49:a3:b3:4f:38:79:2c:55:13:da:f0:08:a9:d9:bd:39:8b:
         02:a9:bd:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org