Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NGV6Gd0welHH6uRL_VVdZoVowTE.roa
File:                     NGV6Gd0welHH6uRL_VVdZoVowTE.roa (raw, json)
Hash identifier:          YcGHWvI9P9963chY38lf0urCyMz8RUkYG7BTiobYoK4=
Subject key identifier:   34:65:7A:19:DD:30:7A:51:C7:EA:E4:4B:FD:55:5D:66:85:68:C1:31
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       2AE8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NGV6Gd0welHH6uRL_VVdZoVowTE.roa
Signing time:             Fri 01 Sep 2023 10:08:26 +0000
ROA not before:           Fri 01 Sep 2023 10:08:26 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     38841
IP address blocks:        118.233.132.0/22 maxlen: 22

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10984 (0x2ae8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep  1 10:08:26 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=34657A19DD307A51C7EAE44BFD555D668568C131
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:83:5c:3f:eb:d3:d0:53:dc:2c:e7:69:79:98:
                    2f:c1:db:e5:5a:31:b0:17:cb:f8:d1:e2:40:0f:91:
                    74:e5:26:41:c3:ca:23:80:81:fc:14:cb:58:98:61:
                    d9:da:48:26:f4:9e:c9:3e:8c:10:f3:24:d1:3d:91:
                    40:74:d2:53:2d:d5:0e:6e:f0:f7:f9:6e:40:49:ff:
                    ef:c0:c7:0a:37:1f:79:14:94:83:c4:77:cd:fe:57:
                    8d:26:8d:d7:30:26:fd:e7:14:fe:ef:b9:db:2b:81:
                    f2:d9:d6:05:1b:d7:7c:10:c9:40:f3:2c:da:f0:9d:
                    1a:15:43:c9:7b:ec:ff:e5:7a:29:43:36:9f:96:08:
                    82:c0:a3:21:9a:cc:c1:fb:98:94:c4:18:99:a6:98:
                    b8:63:b4:5d:e3:27:0f:71:6c:61:88:bd:f8:0a:e9:
                    54:38:5e:99:94:73:85:43:f2:fe:8d:e1:b3:90:bf:
                    72:db:56:84:84:8c:c7:f0:aa:de:f7:3d:74:74:73:
                    69:88:bd:0c:7e:d9:78:4e:1b:b1:9e:c1:a3:07:88:
                    18:67:36:8e:33:a9:37:61:24:69:10:31:77:78:90:
                    f9:9f:5e:62:8d:3a:71:36:aa:53:7a:d9:3a:2a:44:
                    db:d4:ef:fa:51:cd:fe:86:20:55:59:28:3f:7c:88:
                    5e:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                34:65:7A:19:DD:30:7A:51:C7:EA:E4:4B:FD:55:5D:66:85:68:C1:31
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NGV6Gd0welHH6uRL_VVdZoVowTE.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  118.233.132.0/22

    Signature Algorithm: sha256WithRSAEncryption
         a0:53:d3:63:9b:bf:26:20:15:aa:f9:60:90:ed:21:1d:ad:40:
         48:f9:aa:ae:22:f1:53:db:6b:92:b8:32:6d:94:44:33:42:17:
         f2:32:db:46:37:67:6b:f0:c4:c3:81:c1:2b:ce:8f:07:ec:f1:
         8a:04:ea:5a:7f:e1:13:75:e8:f2:ec:4a:e6:3a:11:25:1c:53:
         5f:64:f3:b2:8f:ca:01:e8:e0:ce:e1:5c:a7:69:b3:38:77:11:
         5f:83:ba:d4:39:d4:a8:58:bd:ef:a9:ee:23:01:53:2d:8c:63:
         bb:55:c9:8e:89:bb:a9:1a:f2:a9:b2:6c:3d:c8:ba:77:86:5d:
         cd:cc:0b:6f:f4:36:11:a1:9a:fd:65:2a:07:a9:5f:fc:b7:4e:
         15:66:2a:b5:01:46:2f:4e:e7:58:66:31:b9:40:77:18:3a:18:
         ed:3a:00:73:7a:49:c1:e8:55:ef:63:cb:89:ca:b0:9a:49:e2:
         ab:35:90:1d:d7:83:4e:87:dd:d3:35:98:3d:93:29:0e:8c:e2:
         d8:72:8c:b9:8a:e4:4c:ad:e4:22:5d:b6:3f:ff:f5:16:de:8d:
         ee:4f:16:47:24:5c:75:9d:42:57:db:f9:47:c3:df:88:51:f8:
         57:2b:bf:89:a7:be:81:22:b9:17:55:4b:21:13:41:cc:75:91:
         bd:3e:94:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:18 2024 by rpki-client on console-ams.rpki-client.org