Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DGYPgha7qcVzKP6fv0fPvLxNrCo.roa
File:                     DGYPgha7qcVzKP6fv0fPvLxNrCo.roa (raw, json)
Hash identifier:          w6UEjowF67fUV2scb6QMcdm+zh1kDkccork7byPMLe4=
Subject key identifier:   0C:66:0F:82:16:BB:A9:C5:73:28:FE:9F:BF:47:CF:BC:BC:4D:AC:2A
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       284F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DGYPgha7qcVzKP6fv0fPvLxNrCo.roa
Signing time:             Fri 01 Sep 2023 10:05:11 +0000
ROA not before:           Fri 01 Sep 2023 10:05:11 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     38841
IP address blocks:        123.192.64.0/21 maxlen: 21

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10319 (0x284f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep  1 10:05:11 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=0C660F8216BBA9C57328FE9FBF47CFBCBC4DAC2A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:b2:f2:aa:d9:11:81:05:94:15:06:5e:92:97:
                    f6:6b:c1:aa:25:04:84:f5:5b:03:fc:04:b5:98:7f:
                    54:4a:d9:24:39:15:b0:ee:df:96:6d:69:74:c0:5d:
                    ac:10:a1:56:0c:20:0e:6b:25:24:ba:29:5d:b4:66:
                    53:9e:d6:10:00:ef:a3:61:f5:01:c8:6d:01:60:e3:
                    ac:54:6d:de:41:cc:5e:38:2b:dc:d2:92:7e:e4:75:
                    ac:cf:76:f3:5b:b8:bf:25:c5:e8:9f:71:03:f8:4f:
                    60:37:8d:37:a5:49:4e:2f:fb:15:0d:66:55:3d:a3:
                    2c:b6:d9:e8:83:de:18:3d:6b:92:c1:b7:0f:c3:c2:
                    7d:23:b6:1b:26:18:5e:d2:44:a0:7c:a3:b7:36:89:
                    3e:72:46:2e:2a:21:86:25:a4:e5:38:d7:7d:2b:75:
                    15:54:06:c1:3f:8a:b4:78:f3:9e:ff:bf:70:83:db:
                    a7:34:a1:2a:2e:d7:5c:51:ad:64:5a:22:f6:67:4c:
                    32:c8:b4:31:4d:dd:98:22:d4:1d:d9:b7:09:44:23:
                    88:74:8c:4c:f1:12:f7:67:d6:31:3a:19:c8:a7:09:
                    a9:94:c9:5e:23:00:3d:6a:2b:b8:a8:74:40:8d:0e:
                    0c:dc:58:ef:7d:12:23:98:f5:93:e5:25:15:9a:ca:
                    1e:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0C:66:0F:82:16:BB:A9:C5:73:28:FE:9F:BF:47:CF:BC:BC:4D:AC:2A
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DGYPgha7qcVzKP6fv0fPvLxNrCo.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.192.64.0/21

    Signature Algorithm: sha256WithRSAEncryption
         8d:54:31:47:d8:79:4f:3d:80:96:b3:ae:b1:7b:de:bd:33:40:
         5d:3d:f0:ba:e9:dd:0d:0e:9f:da:f5:77:2c:c1:9e:f5:77:fd:
         b2:ce:b6:59:23:76:b3:cb:b1:47:1c:b0:2c:60:2b:45:fa:51:
         d3:c9:bf:3d:47:69:27:e4:25:55:ca:30:08:7d:d4:eb:40:db:
         24:29:02:27:97:b7:03:c3:ec:0d:5b:5d:40:05:5a:77:09:3f:
         c6:80:bf:0e:4a:cb:f5:a6:74:15:4a:29:98:66:28:da:64:d2:
         66:da:a1:1c:45:93:9c:4d:7e:e0:e1:aa:eb:7e:03:aa:c2:7c:
         27:5b:23:52:7f:19:65:52:b9:35:d7:f8:44:90:23:f9:4f:7e:
         94:db:7c:e1:75:77:9a:9d:9b:68:10:9f:81:48:0d:95:eb:76:
         e4:ed:82:90:c8:cf:4b:d9:94:61:83:59:1c:d5:37:5f:2d:53:
         4e:cc:92:d6:7a:4a:72:6f:f7:69:c5:90:58:23:2f:29:0c:9f:
         4a:43:7f:fc:e7:4f:d3:b6:51:26:96:04:7b:69:a6:43:97:6f:
         92:19:37:4d:c9:34:c6:fc:4d:2c:ea:c9:a5:be:22:ca:3c:c8:
         11:71:d8:04:5e:35:ed:a1:7f:44:d5:95:41:19:0b:cd:93:ad:
         10:71:dc:ef
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKE8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA1MTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBDNjYwRjgyMTZCQkE5
QzU3MzI4RkU5RkJGNDdDRkJDQkM0REFDMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2svKq2RGBBZQVBl6Sl/ZrwaolBIT1WwP8BLWYf1RK2SQ5FbDu
35ZtaXTAXawQoVYMIA5rJSS6KV20ZlOe1hAA76Nh9QHIbQFg46xUbd5BzF44K9zS
kn7kdazPdvNbuL8lxeifcQP4T2A3jTelSU4v+xUNZlU9oyy22eiD3hg9a5LBtw/D
wn0jthsmGF7SRKB8o7c2iT5yRi4qIYYlpOU4130rdRVUBsE/irR4857/v3CD26c0
oSou11xRrWRaIvZnTDLItDFN3Zgi1B3ZtwlEI4h0jEzxEvdn1jE6GcinCamUyV4j
AD1qK7iodECNDgzcWO99EiOY9ZPlJRWayh6VAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUDGYPgha7qcVzKP6fv0fPvLxNrCowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0RHWVBnaGE3cWNWektQNmZ2
MGZQdkx4TnJDby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wEAwDQYJKoZIhvcNAQELBQADggEBAI1UMUfYeU89gJazrrF73r0zQF098Lrp3Q0O
n9r1dyzBnvV3/bLOtlkjdrPLsUccsCxgK0X6UdPJvz1HaSfkJVXKMAh91OtA2yQp
AieXtwPD7A1bXUAFWncJP8aAvw5Ky/WmdBVKKZhmKNpk0mbaoRxFk5xNfuDhqut+
A6rCfCdbI1J/GWVSuTXX+ESQI/lPfpTbfOF1d5qdm2gQn4FIDZXrduTtgpDIz0vZ
lGGDWRzVN18tU07MktZ6SnJv92nFkFgjLykMn0pDf/znT9O2USaWBHtppkOXb5IZ
N03JNMb8TSzqyaW+Iso8yBFx2AReNe2hf0TVlUEZC82TrRBx3O8=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org