Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/VbURj2fZNqVZ4b8a1yj7_BuhW80.roa
File:                     VbURj2fZNqVZ4b8a1yj7_BuhW80.roa (raw, json)
Hash identifier:          4Hz0Hgiu5iyM+RF89CO+VRObS1iuzr2PvJjTO86/83I=
Subject key identifier:   55:B5:11:8F:67:D9:36:A5:59:E1:BF:1A:D7:28:FB:FC:1B:A1:5B:CD
Certificate issuer:       /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial:       0FC6
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/VbURj2fZNqVZ4b8a1yj7_BuhW80.roa
Signing time:             Fri 01 Sep 2023 09:37:15 +0000
ROA not before:           Fri 01 Sep 2023 09:37:15 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     4662
IP address blocks:        203.105.224.0/19 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4038 (0xfc6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
        Validity
            Not Before: Sep  1 09:37:15 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=55B5118F67D936A559E1BF1AD728FBFC1BA15BCD
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:93:9c:6e:6e:e9:bc:4f:71:c6:fe:53:19:13:
                    8e:69:23:67:86:05:3d:4b:4b:ad:24:97:1e:25:3a:
                    84:0d:ae:a1:dc:ab:e5:e7:0c:fa:3e:10:69:e8:e5:
                    25:9b:6f:36:e4:f5:35:b8:55:06:02:29:1f:aa:73:
                    13:6d:17:5c:1b:d3:b4:f8:01:01:b2:01:f1:5a:06:
                    f1:4a:3a:80:9d:b4:6d:e7:81:3e:3d:d9:3e:49:00:
                    a9:07:0f:44:8d:8c:53:88:70:bc:fc:73:8d:e2:b8:
                    f9:0a:3e:61:fb:40:80:1c:9b:ee:e9:0a:e2:69:dc:
                    be:ce:d5:5f:66:f6:5b:28:de:5e:b5:b2:13:f7:fb:
                    e9:c6:86:b9:32:90:a8:af:17:49:59:32:ca:78:87:
                    48:b6:ae:73:8c:3f:52:1b:62:7c:64:83:4f:ba:c1:
                    e4:b4:f2:bf:95:21:78:15:1c:53:7f:ef:00:ea:ef:
                    e4:96:6f:2d:63:f9:ea:6a:fa:5f:f8:00:c5:a9:70:
                    33:cb:7e:e4:ae:a7:66:3a:6c:1e:9b:a2:98:0f:ba:
                    fb:ba:84:3b:c2:6e:81:5f:19:05:07:0a:55:5c:64:
                    03:ca:8c:69:dc:e6:d4:67:33:1f:f3:46:2b:ba:50:
                    6c:c0:93:22:df:f1:7c:88:f0:f0:ff:8d:b4:b2:5a:
                    96:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:B5:11:8F:67:D9:36:A5:59:E1:BF:1A:D7:28:FB:FC:1B:A1:5B:CD
            X509v3 Authority Key Identifier:
                keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/VbURj2fZNqVZ4b8a1yj7_BuhW80.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  203.105.224.0/19

    Signature Algorithm: sha256WithRSAEncryption
         12:c9:f6:98:2a:c9:63:f8:15:f1:fe:ac:d9:bc:65:83:3c:4d:
         09:81:14:8c:9f:2c:1e:6b:ab:f2:9f:49:29:04:54:6f:39:e2:
         28:3d:73:65:ea:8a:bc:87:22:8c:03:bc:fc:71:fe:54:30:73:
         ac:eb:6d:8a:14:c5:01:65:18:2b:f1:f1:27:25:ac:74:a8:a4:
         f2:6d:e1:6b:72:c1:29:f9:25:1d:db:36:12:bc:e4:d2:c5:b7:
         0b:f4:40:73:ba:a0:8c:48:3a:a7:19:65:6e:e5:20:64:b8:d8:
         b8:ab:18:73:3f:f3:e1:53:58:01:90:ae:30:d3:9e:f1:8d:3b:
         5e:34:e6:f1:53:cc:75:d0:7a:74:01:bc:80:c1:0a:cb:fc:36:
         57:7c:3b:b0:da:80:52:42:04:95:a0:54:ab:c6:24:fb:29:14:
         8d:30:ab:4c:9c:58:08:e1:d2:0e:35:b8:52:45:6b:10:39:72:
         2b:ca:e9:0f:bd:07:7c:47:53:4d:61:4a:ca:65:cf:50:6f:55:
         f3:81:ad:81:5c:8c:3f:4d:33:ab:72:c8:ab:3f:99:12:1e:7f:
         42:5d:38:52:b7:67:0d:1f:c8:c4:14:ec:c0:ed:c7:9d:cd:82:
         a4:c6:7e:44:79:37:f5:e0:23:c6:69:2d:44:bc:a8:ee:6b:de:
         69:e2:cb:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org