Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/-TnV1iA7z5J59_AMsTLkrfjjAtU.roa
File:                     -TnV1iA7z5J59_AMsTLkrfjjAtU.roa (raw, json)
Hash identifier:          VL8HiVMGqoAXsgFWG/Psef73BTnm6DpUhyYSNKpmds4=
Subject key identifier:   F9:39:D5:D6:20:3B:CF:92:79:F7:F0:0C:B1:32:E4:AD:F8:E3:02:D5
Certificate issuer:       /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial:       05B3
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/-TnV1iA7z5J59_AMsTLkrfjjAtU.roa
Signing time:             Thu 12 Oct 2023 08:27:00 +0000
ROA not before:           Thu 12 Oct 2023 08:27:00 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     131657
IP address blocks:        103.122.191.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1459 (0x5b3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
        Validity
            Not Before: Oct 12 08:27:00 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=F939D5D6203BCF9279F7F00CB132E4ADF8E302D5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:60:e0:a3:ef:f4:5d:30:e8:3a:a6:a5:fe:a4:
                    a6:f2:d4:f8:0b:db:65:b8:f2:bd:db:24:1b:a3:57:
                    8a:ee:ea:27:4f:1d:13:35:f7:d6:d0:76:b9:c4:64:
                    be:1c:1a:bb:43:46:9a:68:85:53:ca:6f:81:8c:d7:
                    41:16:2a:79:1d:4d:a1:28:e4:3b:2c:6c:c4:31:58:
                    06:d4:f0:b8:07:3b:2a:fd:f7:f7:a6:7e:36:69:41:
                    7a:3f:04:29:61:29:10:41:c5:00:da:46:bb:36:be:
                    23:02:e8:74:d3:95:33:ee:d3:40:45:cb:12:eb:94:
                    9d:1d:3b:e4:dd:eb:aa:99:7e:e9:03:e0:bf:9b:4a:
                    c6:7f:0e:72:55:94:91:cf:bc:54:50:4b:26:9e:43:
                    fd:30:c7:9e:90:d9:f5:7e:a6:5a:42:ec:d7:ff:88:
                    c5:d9:89:a9:63:1f:18:b7:d4:2e:e9:88:bc:be:ec:
                    7c:3c:03:cf:39:b6:56:7d:e5:26:e7:b1:b0:96:10:
                    e0:e3:0e:a3:47:2c:08:0b:f9:52:21:1c:24:d9:02:
                    fd:ae:d4:82:a0:fa:e9:50:5c:27:2b:8c:cc:46:30:
                    53:f4:2b:62:92:3b:b0:c2:9a:97:be:55:30:19:75:
                    8f:d2:70:1b:4f:40:45:86:2c:6e:da:f6:d0:93:25:
                    c7:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F9:39:D5:D6:20:3B:CF:92:79:F7:F0:0C:B1:32:E4:AD:F8:E3:02:D5
            X509v3 Authority Key Identifier:
                keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/-TnV1iA7z5J59_AMsTLkrfjjAtU.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.122.191.0/24

    Signature Algorithm: sha256WithRSAEncryption
         53:a3:bc:0e:4e:25:21:81:ba:0a:23:6b:70:37:35:1f:7a:14:
         46:cc:f0:b7:53:b5:03:b5:09:0f:8b:8a:20:98:45:99:db:ac:
         01:04:76:17:4a:2c:27:0d:b1:a7:b8:de:ae:44:c9:fc:9e:24:
         f2:9a:3a:d8:13:63:fe:6e:ec:f4:74:b4:3c:bd:e2:02:b7:d2:
         60:5b:5c:93:f6:a4:31:74:c6:48:61:d3:79:9e:52:9f:96:a2:
         13:67:a6:6a:c1:6d:05:2f:1e:8e:c3:6d:ca:8b:cd:27:02:88:
         9d:f0:8d:3f:53:8b:e2:62:cf:09:9b:56:c8:77:b0:e0:10:96:
         45:1c:5b:a3:9c:32:34:48:ab:3d:8e:77:e1:8c:7e:63:f8:91:
         2a:6f:11:bf:f0:5d:66:0b:09:50:b0:d0:6d:44:cf:dc:81:ec:
         6b:8a:61:26:b6:48:a1:26:b1:06:cb:a8:2d:4a:53:7f:cf:82:
         dd:51:d7:0b:ab:40:5f:b2:5a:57:0e:03:ad:dd:63:9c:45:a7:
         1d:e2:ca:c3:f4:a7:46:af:e4:79:89:07:03:fb:00:29:36:e7:
         98:80:36:c0:a3:5a:1f:74:a4:20:5b:01:d0:d1:bf:20:4e:30:
         28:f4:69:22:4f:ee:95:ac:a4:53:5c:9e:1f:ed:9d:b8:2a:af:
         73:ed:4a:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org