Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/J7e2TFohzivMC3pamKqjPkIDVvQ.roa
File:                     J7e2TFohzivMC3pamKqjPkIDVvQ.roa (raw, json)
Hash identifier:          BQIqhGygW3G1lvqM+cLKkEW5pJLbeY6Yh+weeR31YjE=
Subject key identifier:   27:B7:B6:4C:5A:21:CE:2B:CC:0B:7A:5A:98:AA:A3:3E:42:03:56:F4
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       28D3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/J7e2TFohzivMC3pamKqjPkIDVvQ.roa
Signing time:             Fri 01 Sep 2023 10:05:49 +0000
ROA not before:           Fri 01 Sep 2023 10:05:49 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     38841
IP address blocks:        123.192.0.0/17 maxlen: 21

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10451 (0x28d3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep  1 10:05:49 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=27B7B64C5A21CE2BCC0B7A5A98AAA33E420356F4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:ca:02:09:9f:6c:40:78:2a:1c:83:73:6d:2b:
                    ed:4d:24:af:c4:93:6f:68:11:4e:33:40:c9:55:64:
                    50:90:ee:b2:a1:0e:94:03:d6:cb:2f:8c:5c:91:56:
                    84:ff:82:5b:ba:d4:53:f0:d8:f7:bc:4e:0b:1f:44:
                    c4:b3:42:5e:76:cc:d0:50:92:37:d2:89:c3:fa:24:
                    aa:15:36:14:f6:da:e4:bb:91:86:d9:d4:02:08:aa:
                    7f:e7:a0:84:1a:bd:bd:cd:06:b8:23:de:6c:53:f4:
                    4d:83:82:2b:52:f0:41:97:eb:ea:83:c7:48:64:7a:
                    c7:70:57:5e:53:9f:55:1b:cf:dc:20:f4:64:af:7d:
                    24:ea:79:f8:07:46:62:7c:c3:16:08:cb:a6:dc:3f:
                    ba:a4:18:09:0b:54:2e:28:ee:0b:d2:25:72:97:a2:
                    55:00:ea:18:da:e8:5f:5b:42:f1:78:6c:af:fe:74:
                    b1:50:80:c7:81:f9:a8:ac:bc:cb:ce:fd:11:8b:73:
                    fd:9d:c8:cf:e4:68:a5:4a:38:ac:66:9f:37:3e:1e:
                    53:8e:ca:09:1f:5d:b8:41:1d:79:6c:78:4f:99:55:
                    29:ab:f1:87:27:5c:ea:58:72:20:1d:b3:ac:a7:49:
                    07:bf:31:d4:4d:1a:f9:8f:f7:90:65:f9:e9:4e:ed:
                    88:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:B7:B6:4C:5A:21:CE:2B:CC:0B:7A:5A:98:AA:A3:3E:42:03:56:F4
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/J7e2TFohzivMC3pamKqjPkIDVvQ.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.192.0.0/17

    Signature Algorithm: sha256WithRSAEncryption
         af:88:d2:1e:12:17:ce:b9:df:7a:89:93:36:c3:87:dc:63:4c:
         9d:9e:f4:ca:94:d2:57:5d:69:63:2a:01:1e:04:8b:a3:02:c3:
         79:36:1c:7d:44:98:96:33:c1:ec:6a:53:c4:bd:3e:ee:82:94:
         78:bd:7e:a8:3b:d5:ff:f6:6d:07:07:53:7f:85:19:12:d7:de:
         bb:46:4f:60:cb:e9:27:e6:d2:1f:4a:0d:a9:7e:c1:e4:74:a7:
         18:59:f9:69:18:47:c7:93:17:10:df:f1:1d:f4:27:a8:89:6b:
         1d:95:0a:ac:4a:88:c3:11:ad:29:3c:cf:0b:99:a4:7a:a2:9a:
         93:eb:04:4c:fa:7d:38:20:f0:fe:65:08:79:e4:9b:24:f5:b3:
         f8:81:5c:ce:ad:a9:2d:37:fa:b4:91:39:c9:fc:b6:55:66:14:
         68:d6:e7:25:87:1c:06:89:7a:d1:06:fd:b5:09:42:4e:d5:eb:
         a4:77:4f:22:ef:db:da:3e:03:98:ed:60:1b:68:32:75:b9:8f:
         47:ab:18:bf:9f:04:05:ee:88:95:79:e3:ee:83:ff:a1:8b:9f:
         b3:9a:45:da:07:e7:99:e9:91:3c:3a:4a:f8:d6:9f:3d:c9:d7:
         2f:72:cc:3a:22:00:69:e7:cf:9b:5d:ac:75:e8:0e:a3:6c:84:
         94:15:a4:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org