Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/YoYoE11xI9vneHSJMzQTpMpUZo0.roa
File:                     YoYoE11xI9vneHSJMzQTpMpUZo0.roa (raw, json)
Hash identifier:          iTuLyQfL/ATM2KlYMWuRXqSluv2dnXUvXEorRzuWdjg=
Subject key identifier:   62:86:28:13:5D:71:23:DB:E7:78:74:89:33:34:13:A4:CA:54:66:8D
Certificate issuer:       /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial:       0B64
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/YoYoE11xI9vneHSJMzQTpMpUZo0.roa
Signing time:             Fri 01 Sep 2023 09:45:55 +0000
ROA not before:           Fri 01 Sep 2023 09:45:55 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     18182
IP address blocks:        27.105.0.0/16 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2916 (0xb64)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
        Validity
            Not Before: Sep  1 09:45:55 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=628628135D7123DBE7787489333413A4CA54668D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:9b:8e:2a:cc:ef:db:31:3c:55:1c:5c:a7:52:
                    f0:26:6b:b0:a6:96:17:04:f9:1f:39:58:bf:64:af:
                    cb:2b:99:73:e6:65:9c:d3:89:b8:a9:80:d6:59:de:
                    d7:7b:75:a4:c3:f8:56:12:82:84:b5:13:78:f4:0f:
                    43:d5:6d:53:d5:45:9e:12:6a:54:66:fa:93:21:33:
                    b0:23:2c:e9:7c:01:c8:46:42:c9:cf:d4:71:75:1f:
                    14:c2:20:a3:58:a6:32:06:37:0e:7f:a4:14:17:32:
                    42:a1:c2:c3:88:d1:8d:b7:89:71:93:6b:25:b9:d4:
                    4d:41:a2:db:20:3a:87:9f:e8:a9:b3:f4:06:30:8d:
                    c2:de:7a:e5:5d:81:71:36:94:0d:98:7b:6b:ab:9b:
                    aa:c2:ef:08:e0:85:f4:90:ce:a7:3a:7f:78:05:64:
                    21:c4:53:00:f4:8a:0a:65:c7:1a:20:28:d4:27:3c:
                    9e:37:b0:87:fd:29:5e:83:73:cd:27:64:1a:a9:31:
                    d7:83:ef:f5:28:d6:c3:da:2b:2c:3d:f4:cf:21:24:
                    45:28:d2:9b:16:25:8f:3d:25:47:9c:8b:c5:fa:7a:
                    a8:37:33:f4:f3:eb:75:b0:c4:bc:7f:70:61:5b:8f:
                    ed:69:54:df:1d:18:79:55:ad:af:25:ef:b4:8e:e5:
                    ec:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:86:28:13:5D:71:23:DB:E7:78:74:89:33:34:13:A4:CA:54:66:8D
            X509v3 Authority Key Identifier:
                keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/YoYoE11xI9vneHSJMzQTpMpUZo0.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  27.105.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         60:cc:a2:c2:21:82:fe:3b:61:72:2b:36:15:82:15:e1:94:ff:
         cc:4c:c0:f3:d2:79:ad:c8:54:66:de:ee:62:81:09:77:32:ca:
         d0:17:91:dd:02:46:9c:49:70:66:94:be:b1:e3:0b:3e:49:f0:
         f6:43:78:33:5e:98:9f:d6:19:b6:7d:07:7c:52:cd:e5:da:2e:
         53:42:fb:59:7a:81:62:71:21:6d:8b:84:af:c7:59:92:67:ae:
         7e:e0:88:60:22:f9:22:34:eb:a5:71:41:c9:c3:53:c9:22:5c:
         b7:0c:38:8f:df:25:cb:7f:42:da:c3:9f:62:b8:77:35:eb:98:
         53:c4:6f:7c:fe:75:7e:5c:cb:c2:ea:da:09:88:47:d7:c0:ce:
         16:44:91:07:63:2f:49:6f:66:ee:2b:3d:24:b8:50:6c:07:d5:
         6c:be:78:aa:c0:fb:c7:a1:f9:9e:2a:1e:88:93:62:36:a6:00:
         cf:68:63:ce:b4:92:21:77:89:e4:f4:7a:a4:d1:9e:32:58:d8:
         59:b5:96:33:f0:54:3d:76:62:0c:ca:ab:9a:b8:30:2e:54:fe:
         02:4c:ac:e2:d3:8e:f3:aa:8c:d4:b9:bd:82:93:78:d7:fa:77:
         8a:0d:32:7a:b8:0b:11:8f:76:35:4c:ed:e5:37:5a:70:13:c6:
         20:4c:a0:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org