Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/srCRsQLlW43O4SWN6hlNSx8MclI.roa
File:                     srCRsQLlW43O4SWN6hlNSx8MclI.roa (raw, json)
Hash identifier:          3N4SSUZuEf3j7KEgxvf2pRyP6c5iJ81d+Xuk4orReIA=
Subject key identifier:   B2:B0:91:B1:02:E5:5B:8D:CE:E1:25:8D:EA:19:4D:4B:1F:0C:72:52
Certificate issuer:       /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Certificate serial:       0B9D
Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/srCRsQLlW43O4SWN6hlNSx8MclI.roa
Signing time:             Fri 01 Sep 2023 09:58:59 +0000
ROA not before:           Fri 01 Sep 2023 09:58:59 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24158
IP address blocks:        124.29.128.0/19 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2973 (0xb9d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
        Validity
            Not Before: Sep  1 09:58:59 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=B2B091B102E55B8DCEE1258DEA194D4B1F0C7252
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:cd:d6:11:7f:3c:03:fe:7a:b2:72:e1:3a:0f:
                    bb:16:2e:83:96:6f:4e:85:cf:a0:4b:1b:0d:cd:02:
                    dd:ac:7d:10:f4:60:c4:fc:49:f9:d0:a7:33:88:dd:
                    ae:2e:0a:65:5d:a9:af:02:5a:8a:75:63:83:e1:07:
                    18:e3:0c:7c:2b:0f:d8:1c:a6:4a:46:99:6f:87:44:
                    e3:c0:37:00:07:84:e2:db:9d:ed:5b:55:63:c1:b9:
                    95:15:b2:69:46:83:f9:a0:35:50:d9:19:6b:09:37:
                    01:bd:ea:9d:90:51:0e:da:80:bc:49:c6:95:23:37:
                    cf:dd:74:a4:fb:18:fb:60:d5:94:5d:98:1b:51:4b:
                    13:b4:03:76:ed:44:4d:a2:db:a3:fa:bd:4f:68:26:
                    03:83:b2:f6:12:18:ad:fd:53:bd:4b:f0:33:02:70:
                    74:34:4d:ce:aa:f1:c4:5f:78:89:3d:2d:6c:c5:7b:
                    e4:ee:a9:01:47:06:6e:5e:83:3d:bf:8a:0b:32:05:
                    d0:64:6a:c3:f7:b6:37:b8:96:75:f8:fa:98:b0:02:
                    08:e1:8c:66:fa:9a:12:7e:35:f3:56:fe:66:0c:96:
                    ce:1f:39:45:6c:39:93:b4:6b:10:a5:dc:bc:67:00:
                    39:34:cf:fe:2a:08:d3:2e:bc:e2:8c:80:17:32:1d:
                    7d:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:B0:91:B1:02:E5:5B:8D:CE:E1:25:8D:EA:19:4D:4B:1F:0C:72:52
            X509v3 Authority Key Identifier:
                keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/srCRsQLlW43O4SWN6hlNSx8MclI.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  124.29.128.0/19

    Signature Algorithm: sha256WithRSAEncryption
         ba:dd:38:e2:2b:39:4e:e3:4b:e7:7e:53:ec:64:30:4f:4d:c1:
         ee:7a:45:8f:0d:96:de:f2:3c:c2:11:33:d4:25:64:9a:f4:a3:
         dd:b9:df:31:d8:61:2d:34:d9:61:7d:80:90:e8:e2:e8:27:ef:
         cc:97:ed:3f:ee:06:cd:f5:28:81:98:f3:1a:86:be:32:48:40:
         63:35:99:6c:e2:4c:58:3c:7f:90:53:04:21:b0:14:5b:f1:07:
         e8:12:fc:5a:b0:33:80:69:95:7f:87:8d:47:1c:96:13:9c:43:
         88:07:60:47:8b:f4:22:22:15:7d:f1:4e:55:8b:3e:0b:4f:dd:
         fa:8a:07:5d:3d:89:4b:75:ec:8f:ac:32:a2:84:9f:50:a0:3d:
         57:f6:14:38:bb:4d:30:df:df:81:57:20:39:13:25:80:ce:43:
         06:59:a4:ae:14:d9:8f:65:fe:79:de:89:6d:04:80:ac:77:ac:
         63:77:ca:fd:83:7f:f9:f7:e3:24:7a:de:f2:4b:8e:cd:47:d1:
         dd:1e:09:d7:4a:59:03:c3:af:01:c3:36:77:cd:ea:7d:a8:69:
         ea:d4:37:98:99:27:7a:78:2f:45:eb:31:66:bb:af:36:02:01:
         8f:5b:31:7c:99:36:df:ec:e5:74:8e:24:d7:1a:51:6a:60:37:
         55:c7:a7:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org