Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/UA8BtC016ABZu8kbCsHf_-Rjsxs.roa
File:                     UA8BtC016ABZu8kbCsHf_-Rjsxs.roa (raw, json)
Hash identifier:          Edb2t+wSi55cVWBD5fig+z/BsjM516YnVNmAqmahsRo=
Subject key identifier:   50:0F:01:B4:2D:35:E8:00:59:BB:C9:1B:0A:C1:DF:FF:E4:63:B3:1B
Certificate issuer:       /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial:       0572
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/UA8BtC016ABZu8kbCsHf_-Rjsxs.roa
Signing time:             Fri 01 Sep 2023 08:59:49 +0000
ROA not before:           Fri 01 Sep 2023 08:59:49 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     17418
IP address blocks:        103.153.176.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1394 (0x572)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
        Validity
            Not Before: Sep  1 08:59:49 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=500F01B42D35E80059BBC91B0AC1DFFFE463B31B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:82:a0:ff:e9:d9:1c:d4:83:38:2b:cd:63:8b:
                    fc:2d:3e:9f:57:b6:b2:df:b9:58:c2:e6:53:37:0c:
                    e2:13:3b:de:61:64:7e:8a:6d:b3:3d:84:8a:15:4f:
                    fb:7d:58:1f:a1:50:bf:d2:5f:5b:66:1f:93:03:45:
                    ad:8f:f4:65:36:ae:63:b5:07:1a:56:db:09:f5:73:
                    87:81:9a:99:f7:b8:53:01:90:b2:ea:48:76:af:75:
                    19:fe:6c:5f:70:4b:96:e0:27:a7:78:91:aa:86:c6:
                    bd:30:26:75:f1:06:94:61:ee:8b:dd:3d:2b:a7:12:
                    89:c5:1b:15:0b:b9:93:b1:fa:7f:0b:df:c5:ee:bc:
                    e9:ab:d5:30:bd:8c:1e:af:1b:4c:8a:c6:e1:c6:36:
                    59:46:71:48:61:07:2a:34:ae:b2:a5:fb:26:86:eb:
                    71:c2:43:c0:2b:04:87:8d:06:b3:d4:2f:63:c9:6c:
                    ff:8d:0f:bd:12:ba:4e:6a:45:de:02:ce:4a:d3:be:
                    ea:94:a7:3c:22:4f:6d:50:4d:8c:2e:07:d7:9f:c9:
                    fb:42:91:7e:e3:b4:49:32:a9:72:f4:9a:4a:38:a0:
                    66:39:27:04:b3:cb:62:27:7c:98:7a:63:31:f5:3d:
                    87:40:06:56:f5:f6:b2:b0:10:99:3b:56:94:f2:ef:
                    6d:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:0F:01:B4:2D:35:E8:00:59:BB:C9:1B:0A:C1:DF:FF:E4:63:B3:1B
            X509v3 Authority Key Identifier:
                keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/UA8BtC016ABZu8kbCsHf_-Rjsxs.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.153.176.0/24

    Signature Algorithm: sha256WithRSAEncryption
         13:6e:53:48:8d:f0:0f:2c:de:f9:e0:5e:37:7e:92:ef:fd:14:
         ef:c5:65:fa:c4:13:7e:ba:18:fa:51:9f:de:d2:bb:4b:66:5b:
         92:94:4e:ef:0b:70:62:02:69:ef:64:c6:e8:72:ae:e4:80:75:
         1f:86:c2:fc:8f:b8:48:22:e8:1e:01:9c:7b:86:e1:9a:9f:65:
         8d:0a:54:da:a2:76:10:c0:e3:34:b3:50:41:4a:bd:0f:47:05:
         1e:bc:2e:f9:d4:2a:12:8a:d0:82:ac:fc:42:e1:fd:05:16:0b:
         c6:69:42:67:b7:a0:f8:77:cf:54:14:55:e2:86:4d:90:7b:f2:
         46:9b:ad:03:d0:75:21:06:8f:7e:62:39:c4:1f:2c:38:88:21:
         31:95:9d:fb:b1:f0:c4:6d:64:4d:52:3a:4d:c6:3d:29:99:e9:
         4a:be:87:ea:3c:48:23:5a:18:8e:a7:25:5b:b7:ae:6e:d0:5d:
         3c:85:55:4f:a6:d5:7f:f8:2f:63:fe:54:32:f3:47:a4:85:bc:
         26:d8:6d:0b:4b:c1:65:b4:d1:af:d7:f6:d8:6e:3c:32:33:26:
         1c:df:12:95:50:5d:79:02:2b:a5:07:84:fa:86:be:0c:3c:64:
         68:10:c8:a5:84:65:d4:6e:1a:65:77:da:e1:d0:1b:8d:97:bd:
         6f:50:ca:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org