Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/AI8DCJYrygDHvSuYWNDQm7Pac2c.roa
File:                     AI8DCJYrygDHvSuYWNDQm7Pac2c.roa (raw, json)
Hash identifier:          dEXdtk3/DvxmW34Wr7TNW1IWtpuLx01dPC3wwZoYar4=
Subject key identifier:   00:8F:03:08:96:2B:CA:00:C7:BD:2B:98:58:D0:D0:9B:B3:DA:73:67
Certificate issuer:       /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial:       05A1
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/AI8DCJYrygDHvSuYWNDQm7Pac2c.roa
Signing time:             Thu 12 Oct 2023 08:21:22 +0000
ROA not before:           Thu 12 Oct 2023 08:21:22 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     20473
IP address blocks:        103.122.188.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1441 (0x5a1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
        Validity
            Not Before: Oct 12 08:21:22 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=008F0308962BCA00C7BD2B9858D0D09BB3DA7367
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:4a:c6:8c:7f:6a:9c:dd:05:d6:37:b2:28:c7:
                    a2:d3:d4:79:1e:02:dc:1e:a0:9a:05:68:1f:e5:03:
                    d9:8f:6a:e0:df:01:47:54:9f:26:51:48:e7:17:57:
                    16:a9:fb:74:14:12:26:ef:e3:6a:50:f1:6e:db:89:
                    0b:9d:01:7f:d8:a7:1b:55:71:0c:cd:39:6c:c6:99:
                    ac:2a:59:99:37:6d:d0:06:12:5f:a9:9d:2f:8b:d3:
                    06:12:59:7d:67:af:4b:3d:ce:9e:3d:6c:7b:b5:30:
                    cf:06:b0:fc:6a:2e:14:17:99:db:a7:8f:c0:07:c5:
                    67:02:5b:e9:e4:89:6e:c2:c5:08:73:c5:66:42:d7:
                    d8:f6:04:66:4f:41:14:c3:74:29:e8:62:96:58:02:
                    4c:a8:cf:4c:c7:9e:95:cb:d0:9d:e3:3c:2d:c4:cc:
                    0e:0c:61:da:f5:55:e9:0e:ce:a4:28:cd:4a:ef:ca:
                    1a:55:22:67:cb:b8:4c:18:c7:d2:d5:a5:63:af:85:
                    3d:49:20:40:bb:ee:0c:16:7e:fc:91:25:71:a1:ad:
                    81:08:da:3e:21:3c:18:04:60:af:34:87:97:5d:9f:
                    42:9e:02:16:3e:62:21:93:ab:8f:3c:72:8e:ec:64:
                    59:a6:3d:85:7b:ea:9a:88:db:b1:20:cf:5e:2d:8a:
                    f0:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:8F:03:08:96:2B:CA:00:C7:BD:2B:98:58:D0:D0:9B:B3:DA:73:67
            X509v3 Authority Key Identifier:
                keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/AI8DCJYrygDHvSuYWNDQm7Pac2c.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.122.188.0/22

    Signature Algorithm: sha256WithRSAEncryption
         ba:3f:32:90:f2:5c:7e:0d:e2:99:d8:f7:88:90:27:58:d7:02:
         de:c5:7f:13:35:f9:39:0b:f2:17:49:29:9d:65:5e:bd:73:37:
         d9:55:cc:53:11:c2:0d:02:3b:27:35:0f:02:be:2a:9e:08:80:
         41:59:98:99:52:d2:7f:7c:92:6c:5e:7b:c7:d6:ce:b0:6f:66:
         73:d1:1c:bd:bf:69:a3:37:eb:c0:71:d6:69:d8:86:fc:8d:25:
         e4:39:0c:b3:dd:f9:36:15:04:a3:33:f3:3c:f9:47:bf:8b:66:
         7a:b4:c9:b0:67:e6:46:23:14:b2:12:c3:4e:a0:b1:43:4b:d2:
         0c:10:ea:0d:6e:9b:fc:89:8c:bb:74:18:ad:ff:33:9e:d0:b9:
         35:5e:12:25:46:96:93:79:b3:b6:5a:71:47:cc:f0:3a:a0:8b:
         1c:13:69:ec:dc:8a:aa:5d:93:f0:09:fe:08:72:31:59:08:a7:
         c2:81:43:6c:10:1f:e8:08:81:ba:b6:84:af:9f:ab:ef:36:dd:
         2f:b1:4d:e1:fe:93:d9:05:d7:be:ec:a1:2e:f5:2d:be:8c:2c:
         5e:40:eb:d2:5c:4e:d6:e0:4c:1f:4f:69:84:9d:58:2b:29:25:
         79:c1:41:10:81:32:3c:93:10:a5:a9:58:f0:18:7f:90:b2:6a:
         ce:2a:b1:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org