Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5ubv1l3QnRjjjjV-4Kb9zcVCX-A.roa
File:                     5ubv1l3QnRjjjjV-4Kb9zcVCX-A.roa (raw, json)
Hash identifier:          PoifSM0zFxNqca124RfrTVYLsVmFrs00HCk3jK7ioT4=
Subject key identifier:   E6:E6:EF:D6:5D:D0:9D:18:E3:8E:35:7E:E0:A6:FD:CD:C5:42:5F:E0
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       2941
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5ubv1l3QnRjjjjV-4Kb9zcVCX-A.roa
Signing time:             Fri 01 Sep 2023 10:06:19 +0000
ROA not before:           Fri 01 Sep 2023 10:06:19 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     38841
IP address blocks:        106.1.204.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10561 (0x2941)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep  1 10:06:19 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=E6E6EFD65DD09D18E38E357EE0A6FDCDC5425FE0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:d8:14:2a:d6:db:b7:a9:33:74:2a:f4:f3:46:
                    41:1e:40:74:61:81:a9:65:21:eb:af:28:d1:ea:78:
                    b6:8d:ca:f5:3b:1b:c2:63:28:21:04:58:98:c2:c6:
                    ef:93:3e:28:ae:02:5a:c7:54:b4:43:c2:60:1b:df:
                    88:35:5d:c2:0d:12:93:30:c9:c1:3b:34:eb:f8:10:
                    7f:49:9e:2e:40:06:3f:76:90:d8:79:08:07:1d:be:
                    71:ec:49:bb:51:e1:47:1b:c1:6f:84:c7:10:33:82:
                    12:09:30:47:17:43:67:6c:32:83:6e:82:96:e7:2a:
                    15:7a:56:b6:a8:25:2c:73:6f:aa:41:13:b8:43:aa:
                    d4:95:8e:0a:60:c7:96:08:98:76:7f:a3:11:db:dc:
                    3d:89:87:fe:92:5b:35:b5:ac:2c:8b:82:43:e6:cf:
                    84:fa:42:6c:83:8f:63:76:ae:88:4c:3f:13:07:93:
                    6a:60:fb:05:37:3b:4a:7f:8a:12:d0:48:05:93:68:
                    72:e7:47:80:ee:57:18:dc:0a:24:c3:d1:1d:53:b0:
                    3e:86:7d:38:fe:0d:67:c4:00:58:9d:b6:85:14:0d:
                    d3:53:6a:04:29:77:a1:72:98:d8:9a:cd:f0:18:99:
                    57:1d:a7:b1:c6:55:89:3f:c9:1a:e8:36:bc:51:d8:
                    7c:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:E6:EF:D6:5D:D0:9D:18:E3:8E:35:7E:E0:A6:FD:CD:C5:42:5F:E0
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5ubv1l3QnRjjjjV-4Kb9zcVCX-A.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  106.1.204.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a3:98:b3:a2:91:b5:88:d8:39:9c:69:eb:7d:f6:d9:de:4c:75:
         98:b9:64:56:0e:70:e2:58:6e:61:5e:d1:3d:e8:f0:f0:21:81:
         19:19:d4:61:e1:03:49:a3:65:85:4f:8b:ab:34:35:48:ca:46:
         48:74:b5:88:46:3e:a9:11:3a:6a:f3:fb:55:e3:90:93:ea:37:
         a4:a2:81:f2:7f:76:42:cb:3e:1c:bb:8e:b3:2b:60:e5:01:6e:
         1e:93:96:dd:66:1f:bf:9f:fe:6a:d8:d5:50:2f:9d:10:36:bc:
         ee:b7:3e:3b:58:e2:64:b0:1b:9d:b4:2e:ad:aa:2b:8c:9a:04:
         dd:79:ac:3b:39:45:81:7e:bb:00:f3:cb:04:31:ff:5d:2b:8f:
         dd:c0:66:3d:84:22:c9:33:58:e4:e6:cc:65:80:70:fe:92:59:
         ba:58:e2:b3:26:e7:28:34:46:09:2d:61:9a:57:e6:03:6d:ba:
         0f:46:a9:9f:f2:ae:70:3a:66:a4:e6:8e:19:8f:40:5d:fc:8c:
         34:12:f0:57:4a:ad:47:d3:e5:79:28:ec:c3:f8:b8:14:33:86:
         7a:fd:72:f5:54:8c:11:d1:6e:58:54:4f:81:96:0c:61:e5:9e:
         f8:f8:78:b3:23:52:4b:f0:42:87:e8:45:b0:42:91:b1:21:ba:
         dd:a6:b8:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org