Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/gywh7RQaLZAQNBab_l4_rV4pwcM.roa
File:                     gywh7RQaLZAQNBab_l4_rV4pwcM.roa (raw, json)
Hash identifier:          8F/uOflEcrUMAzLJuBvu60ah402z/qi0x2pM4ux+6r4=
Subject key identifier:   83:2C:21:ED:14:1A:2D:90:10:34:16:9B:FE:5E:3F:AD:5E:29:C1:C3
Certificate issuer:       /CN=6E181085902F896294602D8B121C1E2E22B58CE7
Certificate serial:       1077
Authority key identifier: 6E:18:10:85:90:2F:89:62:94:60:2D:8B:12:1C:1E:2E:22:B5:8C:E7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/gywh7RQaLZAQNBab_l4_rV4pwcM.roa
Signing time:             Tue 06 Feb 2024 17:56:24 +0000
ROA not before:           Tue 06 Feb 2024 17:56:24 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     16509
IP address blocks:        103.125.225.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4215 (0x1077)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6E181085902F896294602D8B121C1E2E22B58CE7
        Validity
            Not Before: Feb  6 17:56:24 2024 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=832C21ED141A2D901034169BFE5E3FAD5E29C1C3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:ca:bf:30:17:95:11:94:c0:ad:eb:71:f1:a8:
                    03:b1:55:e7:ac:5b:ea:e1:88:04:d9:93:6a:fa:c5:
                    61:20:84:13:f3:5c:d7:6e:47:eb:3e:12:6d:f9:95:
                    70:ae:44:51:c0:43:d7:a9:06:95:fa:d3:b4:34:8a:
                    6e:f8:9e:5c:ce:31:a5:56:60:4e:34:ff:fa:95:a4:
                    05:17:07:69:bb:98:79:19:a2:12:94:0c:94:d0:fd:
                    f5:59:c6:16:32:af:9f:1a:53:5f:f4:7b:81:93:30:
                    05:4f:59:45:92:bf:c7:aa:c9:f4:5e:de:87:f3:5b:
                    d9:c3:48:71:da:0b:c2:56:21:8d:aa:fa:b3:f0:fc:
                    d2:dd:66:8f:70:e7:52:7b:e5:75:9d:6c:b6:c3:f7:
                    69:3c:c8:05:4a:ac:04:89:93:77:c6:24:82:ab:8a:
                    7b:77:8a:44:4f:03:9e:68:99:68:75:7f:39:5f:5d:
                    c5:f8:e3:50:50:46:4e:39:49:67:4c:28:ac:35:70:
                    cf:73:9f:11:bf:d6:9e:06:9b:30:a2:75:6a:d1:29:
                    cc:c4:f9:4a:72:30:94:e9:bd:a8:b7:a0:fc:a7:13:
                    7c:cb:20:60:c7:25:d6:4b:81:60:e7:97:9a:e3:a5:
                    8e:07:4b:52:77:3c:2a:4d:73:71:ed:fc:cb:c5:71:
                    f3:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:2C:21:ED:14:1A:2D:90:10:34:16:9B:FE:5E:3F:AD:5E:29:C1:C3
            X509v3 Authority Key Identifier:
                keyid:6E:18:10:85:90:2F:89:62:94:60:2D:8B:12:1C:1E:2E:22:B5:8C:E7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/gywh7RQaLZAQNBab_l4_rV4pwcM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.125.225.0/24

    Signature Algorithm: sha256WithRSAEncryption
         34:ac:fc:b3:6f:4e:db:e5:ab:8f:90:5d:6d:98:2c:a7:64:c9:
         cb:8f:51:da:7f:aa:3a:0e:21:77:02:4e:a1:d3:00:ce:c6:3c:
         0b:cf:b0:e1:b9:eb:24:9d:0d:6f:3f:26:88:ea:06:c2:80:71:
         4a:06:f7:0a:d5:c0:34:8d:76:be:65:1f:b1:60:3d:dc:16:56:
         67:9a:cd:c4:29:b0:68:5f:a3:ab:43:18:c8:49:94:50:ae:5f:
         84:c0:d6:1d:83:e1:a2:d6:b3:28:9a:a4:81:95:9f:61:c2:86:
         ea:af:0d:45:9a:a6:30:e0:dc:ac:59:02:ae:80:fe:61:5c:0b:
         4b:8f:1e:63:1c:25:de:60:71:83:77:a4:8b:2d:93:57:1b:4f:
         b1:69:0f:a9:7e:eb:8b:94:6d:54:26:5c:22:27:93:58:fc:75:
         7c:8c:04:f5:6e:46:d7:87:6b:be:bc:63:17:2b:05:03:ef:0a:
         8b:76:fd:58:00:5e:8e:20:68:b4:23:93:04:39:d1:b1:bc:3f:
         3a:08:fa:64:8a:82:c8:ad:f1:74:9a:d0:8e:cf:0e:39:6d:cf:
         8c:0f:47:69:9f:10:f2:26:47:19:f3:ba:14:26:00:f2:8d:6e:
         21:c3:63:df:2b:5b:1f:59:fe:fd:65:01:1f:0f:a0:42:c1:01:
         18:94:6f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org