Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QlLilFiNi8oLnDsuomt-ei02f0U.roa
File:                     QlLilFiNi8oLnDsuomt-ei02f0U.roa (raw, json)
Hash identifier:          3cf0eb1tPbmjM7INFb8cEGyE/HLvHZfgySRu+3uQcX4=
Subject key identifier:   42:52:E2:94:58:8D:8B:CA:0B:9C:3B:2E:A2:6B:7E:7A:2D:36:7F:45
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       29B1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QlLilFiNi8oLnDsuomt-ei02f0U.roa
Signing time:             Fri 01 Sep 2023 10:06:56 +0000
ROA not before:           Fri 01 Sep 2023 10:06:56 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     38841
IP address blocks:        118.232.248.0/22 maxlen: 22

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10673 (0x29b1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep  1 10:06:56 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=4252E294588D8BCA0B9C3B2EA26B7E7A2D367F45
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:5b:82:ef:f9:a6:ea:21:c8:7e:f6:55:72:7a:
                    34:f3:35:f5:d0:39:34:16:b9:c6:fc:45:3f:6a:4f:
                    5f:7f:2f:76:8f:80:9e:ee:39:5f:0f:32:16:e4:c3:
                    7d:0d:aa:0c:90:59:d6:87:63:03:43:be:a2:a7:81:
                    71:58:3b:bc:36:1d:48:80:f2:89:ad:32:9e:f5:ec:
                    2b:02:88:8c:10:10:c0:22:fc:e7:33:f6:6c:2b:66:
                    7f:9e:51:31:76:90:39:14:91:6a:55:e4:00:aa:c2:
                    3a:15:ca:dd:9d:c0:53:9d:78:9e:bb:c4:05:c4:a6:
                    89:bb:75:19:8c:b3:2a:c3:33:09:b9:0f:d0:43:16:
                    c8:b6:02:51:9c:94:ac:39:14:96:45:47:d9:e4:d9:
                    f3:88:9d:2a:43:5d:5c:cc:6a:4c:03:eb:8b:af:38:
                    d2:dd:17:5a:28:c1:f6:ff:1d:03:eb:f6:5c:b4:71:
                    bb:eb:68:1d:fa:6f:d1:ec:5a:40:c0:3b:9d:35:9a:
                    d9:ce:f6:b0:79:92:20:54:37:c1:b8:0d:d5:71:58:
                    61:3e:79:1e:56:a7:13:2b:28:22:a4:b0:bb:12:d0:
                    52:b2:04:f1:a0:08:da:28:dd:8a:cc:74:14:cc:26:
                    96:c2:31:ba:c8:86:8d:99:57:fc:c6:dd:7a:13:a5:
                    32:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:52:E2:94:58:8D:8B:CA:0B:9C:3B:2E:A2:6B:7E:7A:2D:36:7F:45
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QlLilFiNi8oLnDsuomt-ei02f0U.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  118.232.248.0/22

    Signature Algorithm: sha256WithRSAEncryption
         93:0c:a4:24:43:95:e2:28:1e:af:a7:39:18:cb:53:eb:cf:16:
         8d:79:af:dc:66:c3:2a:30:ae:18:6b:60:6a:c5:12:c0:7c:62:
         af:f3:d6:5a:4d:e6:da:0f:70:53:61:10:f4:ec:86:83:53:a9:
         a8:3e:d9:86:ce:f0:9d:eb:bf:95:d1:81:76:c7:27:f7:a9:49:
         e6:2f:89:27:78:3f:16:6d:e7:14:82:e7:fb:88:0f:85:ce:b2:
         25:7c:d7:57:c5:ed:e6:5a:b9:6d:74:bb:d2:2c:bb:1d:c9:0c:
         84:12:17:e8:cc:8e:41:b5:17:4d:e4:b7:37:d1:9b:ff:60:73:
         de:50:7d:61:ae:af:f3:a5:9b:c3:24:c1:2f:ac:7e:db:fc:fe:
         b2:0e:f3:2e:a6:73:9a:e2:e3:6f:d8:e2:95:71:e1:8e:07:3f:
         a0:6d:d9:25:69:c9:f2:88:7a:7a:96:40:c1:b4:e2:e3:b6:11:
         0a:68:8c:6c:05:f9:01:f0:61:eb:61:ad:79:48:4a:24:86:5b:
         33:ef:cb:72:82:40:a4:4d:71:d4:5a:20:c1:30:21:3d:8c:94:
         2a:4a:2b:d3:ad:45:12:dd:1b:cf:98:68:37:b2:21:fe:6e:9c:
         a5:69:41:ba:d6:9f:b2:da:49:ba:84:d0:06:7c:a3:59:ed:d9:
         d7:df:39:34
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKbEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA2NTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQyNTJFMjk0NTg4RDhC
Q0EwQjlDM0IyRUEyNkI3RTdBMkQzNjdGNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPW4Lv+abqIch+9lVyejTzNfXQOTQWucb8RT9qT19/L3aPgJ7u
OV8PMhbkw30NqgyQWdaHYwNDvqKngXFYO7w2HUiA8omtMp717CsCiIwQEMAi/Ocz
9mwrZn+eUTF2kDkUkWpV5ACqwjoVyt2dwFOdeJ67xAXEpom7dRmMsyrDMwm5D9BD
Fsi2AlGclKw5FJZFR9nk2fOInSpDXVzMakwD64uvONLdF1oowfb/HQPr9ly0cbvr
aB36b9HsWkDAO501mtnO9rB5kiBUN8G4DdVxWGE+eR5WpxMrKCKksLsS0FKyBPGg
CNoo3YrMdBTMJpbCMbrIho2ZV/zG3XoTpTIvAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUQlLilFiNi8oLnDsuomt+ei02f0UwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1FsTGlsRmlOaThvTG5Ec3Vv
bXQtZWkwMmYwVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6PgwDQYJKoZIhvcNAQELBQADggEBAJMMpCRDleIoHq+nORjLU+vPFo15r9xmwyow
rhhrYGrFEsB8Yq/z1lpN5toPcFNhEPTshoNTqag+2YbO8J3rv5XRgXbHJ/epSeYv
iSd4PxZt5xSC5/uID4XOsiV811fF7eZauW10u9Isux3JDIQSF+jMjkG1F03ktzfR
m/9gc95QfWGur/Olm8MkwS+sftv8/rIO8y6mc5ri42/Y4pVx4Y4HP6Bt2SVpyfKI
enqWQMG04uO2EQpojGwF+QHwYethrXlISiSGWzPvy3KCQKRNcdRaIMEwIT2MlCpK
K9OtRRLdG8+YaDeyIf5unKVpQbrWn7LaSbqE0AZ8o1nt2dffOTQ=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:18 2024 by rpki-client on console-ams.rpki-client.org