Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LNGzo_yns2NGbT_N9OmWMP0uja0.roa
File:                     LNGzo_yns2NGbT_N9OmWMP0uja0.roa (raw, json)
Hash identifier:          Xxjssbxb7Qgo62jScvHUzCrvnzWW01pAIvthEPc1A/I=
Subject key identifier:   2C:D1:B3:A3:FC:A7:B3:63:46:6D:3F:CD:F4:E9:96:30:FD:2E:8D:AD
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       2AA1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LNGzo_yns2NGbT_N9OmWMP0uja0.roa
Signing time:             Fri 01 Sep 2023 10:08:07 +0000
ROA not before:           Fri 01 Sep 2023 10:08:07 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     9924
IP address blocks:        123.192.0.0/14 maxlen: 14

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10913 (0x2aa1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep  1 10:08:07 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=2CD1B3A3FCA7B363466D3FCDF4E99630FD2E8DAD
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:03:e3:b4:a5:f9:d9:82:37:3f:65:37:3f:4a:
                    3e:b0:fb:c1:7a:39:c2:57:39:33:e8:c6:fe:37:84:
                    cd:4c:a3:4c:42:a2:ee:4d:c7:0c:1a:bf:98:c9:7d:
                    f2:8c:57:d3:9d:19:4b:d1:bb:3f:00:4d:62:3d:7e:
                    7e:13:7b:b1:48:bb:4a:3b:73:cc:60:85:aa:d1:a8:
                    7c:d2:e7:ab:4b:a7:42:21:6a:57:85:ba:c4:93:df:
                    46:f9:53:18:ed:ee:37:69:5b:31:be:a4:fd:69:26:
                    57:bc:e8:17:76:82:fd:86:ab:c0:dc:28:8a:7e:c0:
                    72:82:52:bf:d2:79:43:40:7d:f3:8f:40:f0:fd:f0:
                    21:92:68:6d:3b:68:86:ae:3c:79:f4:1d:7b:15:f3:
                    17:17:fa:f1:a7:15:72:a8:13:c1:3a:b6:be:cc:eb:
                    fe:ab:36:25:fc:d2:d0:6d:2e:58:b1:82:72:39:92:
                    80:35:e5:e9:3e:e5:d6:fe:29:62:9d:8f:22:f1:cf:
                    83:f7:ec:0c:00:62:0f:b0:ff:20:91:ab:cc:0e:24:
                    d9:d2:ec:c5:6a:20:fd:4e:e8:a4:90:56:aa:35:21:
                    05:58:d7:52:b0:b1:16:48:23:f5:ee:55:bc:4a:d0:
                    95:f0:6f:89:69:7f:bf:bf:d8:53:69:38:a0:12:9d:
                    96:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:D1:B3:A3:FC:A7:B3:63:46:6D:3F:CD:F4:E9:96:30:FD:2E:8D:AD
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LNGzo_yns2NGbT_N9OmWMP0uja0.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.192.0.0/14

    Signature Algorithm: sha256WithRSAEncryption
         51:98:bb:4b:d2:3d:f5:3c:b4:43:f9:2b:45:2b:bd:ba:8c:b6:
         fc:5b:a0:6b:fe:36:e4:27:c9:e4:02:36:4c:49:12:42:8e:54:
         f7:ef:13:fb:b7:34:bd:98:9c:9b:59:1a:a4:94:54:33:ab:0d:
         7c:40:e8:c3:df:40:e1:2c:ed:e4:3d:7e:0d:12:fb:c5:31:01:
         c5:f0:a0:ca:d4:27:7c:82:cb:21:7d:e4:c6:ef:d8:8a:3e:11:
         9a:09:98:10:10:f6:d9:59:dd:94:8b:7f:13:7a:20:b6:cf:a7:
         28:82:2e:26:2a:59:d7:78:50:a1:68:52:48:22:e3:d4:5f:ba:
         0b:54:ef:9a:8c:43:dc:ae:1b:f5:dc:ee:31:58:4d:42:c0:e7:
         c7:4a:89:e4:af:ad:63:3f:87:e4:3b:57:f1:2a:a4:94:2a:17:
         f5:f3:f2:b6:95:2b:49:ce:30:95:b2:5b:0a:cd:1b:1b:9b:34:
         92:6f:a5:2b:86:a7:42:2d:ef:49:59:94:0b:9f:7e:b5:9c:41:
         55:11:0f:91:77:4d:6b:4b:b1:1d:f7:1f:38:be:4b:a6:60:03:
         37:23:52:8d:95:0f:1d:ff:18:a5:90:a7:7a:05:47:35:08:d5:
         a2:90:03:f7:28:4a:dc:3a:02:08:91:0c:51:98:b0:45:68:9d:
         fe:be:a0:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:18 2024 by rpki-client on console-ams.rpki-client.org