Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/hDJE878OQq2YaCGWgIiHb4p1Ch4.roa
File:                     hDJE878OQq2YaCGWgIiHb4p1Ch4.roa (raw, json)
Hash identifier:          cGEsf6L0iT3oi73mnc6zypcVOcIEyWcRWyFy6dQeZbg=
Subject key identifier:   84:32:44:F3:BF:0E:42:AD:98:68:21:96:80:88:87:6F:8A:75:0A:1E
Certificate issuer:       /CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
Certificate serial:       09FE
Authority key identifier: 4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/hDJE878OQq2YaCGWgIiHb4p1Ch4.roa
Signing time:             Thu 15 Sep 2022 02:50:25 +0000
ROA not before:           Thu 15 Sep 2022 02:50:25 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     131149
IP address blocks:        103.129.168.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2558 (0x9fe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
        Validity
            Not Before: Sep 15 02:50:25 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=843244F3BF0E42AD986821968088876F8A750A1E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:c6:32:75:9e:26:62:43:74:c9:f6:0c:ce:cc:
                    fb:5b:27:fc:e5:48:f9:31:b3:95:ab:9d:1e:a0:84:
                    e6:d6:6d:ca:55:51:48:6f:81:8c:23:1f:26:b6:2b:
                    e1:41:28:a4:e7:28:dd:ae:59:87:1d:1f:75:ce:cc:
                    cd:fc:94:d3:9f:23:dd:2f:29:d5:ab:bb:2b:6e:5c:
                    f6:df:6a:5c:c4:55:63:23:61:bc:fd:3f:5b:aa:71:
                    c2:87:86:91:70:03:94:f5:62:d9:67:dc:b3:af:77:
                    18:86:bf:4b:27:a6:f8:b9:33:d4:4f:ec:20:5b:fa:
                    d4:c5:bd:e3:3e:a8:df:aa:cc:4d:75:c3:38:95:c4:
                    c4:c2:39:20:63:7f:63:bd:5f:11:3f:07:ca:3f:da:
                    95:4e:0a:ca:65:fc:32:98:a8:d3:55:95:c6:07:80:
                    13:37:f2:f3:00:e0:cd:3e:78:4e:b2:68:aa:c7:7e:
                    e3:1f:a0:70:c8:16:66:95:a0:12:35:3b:72:88:c2:
                    ff:70:b8:a8:5a:ed:2b:aa:bc:05:46:3f:7d:56:bc:
                    63:fc:2d:fd:0d:73:0f:31:73:9c:c2:b4:ec:6d:51:
                    06:5c:ef:55:71:1f:cd:5b:f2:fb:bf:75:66:34:34:
                    1f:06:41:e6:9b:07:36:aa:7a:1c:a4:67:b9:bd:e8:
                    63:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                84:32:44:F3:BF:0E:42:AD:98:68:21:96:80:88:87:6F:8A:75:0A:1E
            X509v3 Authority Key Identifier:
                keyid:4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/TmCbp0GG0LDjoanAENod8FWaGYI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/hDJE878OQq2YaCGWgIiHb4p1Ch4.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.129.168.0/22

    Signature Algorithm: sha256WithRSAEncryption
         5c:3f:33:80:86:c1:68:d6:3c:5d:de:a0:05:fa:f9:98:fd:2c:
         60:7f:c4:fd:e0:cd:12:ba:32:15:98:8a:c1:b9:3a:47:39:9b:
         32:1d:41:c6:4a:e6:e9:54:f9:82:6d:4c:b7:44:56:7f:9d:9c:
         47:11:5f:5d:7a:a1:6a:c4:94:d6:47:ec:fe:bf:6c:5f:84:92:
         05:b7:88:dd:18:ba:44:4b:ac:a8:b3:07:58:b7:66:90:ac:60:
         9b:20:f6:aa:48:d6:0e:6f:66:22:fc:cf:86:25:4b:5a:6f:a1:
         e0:1a:f0:79:8d:56:67:33:de:17:3b:23:63:40:81:7e:33:67:
         59:2b:66:d1:01:76:7d:d5:a5:c4:fc:2d:68:7b:0c:fc:55:28:
         50:ee:20:0a:84:d2:12:72:87:f0:bd:a0:3e:93:0b:e9:5b:0f:
         33:14:52:6a:44:72:c1:12:bf:07:6e:9d:1f:be:6f:a0:3c:27:
         92:bc:a1:77:0a:ea:8f:d4:c4:18:fb:5e:4b:04:7f:71:50:9c:
         e0:5b:8f:61:f2:1e:40:6c:e5:70:a9:ca:49:d2:6a:25:75:b2:
         d4:49:6c:7a:c2:4a:c2:d2:41:41:64:06:2f:9f:6c:e4:c2:07:
         16:b9:de:17:e0:b3:90:af:6d:3f:7c:5a:bf:23:4d:97:22:52:
         95:dd:d6:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org