Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Xn38OFdcMGI8O5wZi6q-Tw7psXk.roa
File:                     Xn38OFdcMGI8O5wZi6q-Tw7psXk.roa (raw, json)
Hash identifier:          xjM1IyH/xKPvuVOANn13lz18fvMGutYLRcZF5VW1j5E=
Subject key identifier:   5E:7D:FC:38:57:5C:30:62:3C:3B:9C:19:8B:AA:BE:4F:0E:E9:B1:79
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       2824
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Xn38OFdcMGI8O5wZi6q-Tw7psXk.roa
Signing time:             Fri 01 Sep 2023 10:05:00 +0000
ROA not before:           Fri 01 Sep 2023 10:05:00 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     38841
IP address blocks:        118.232.48.0/22 maxlen: 22

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10276 (0x2824)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep  1 10:05:00 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=5E7DFC38575C30623C3B9C198BAABE4F0EE9B179
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:22:ab:88:d1:73:45:08:05:2e:ad:08:01:04:
                    d7:82:bb:4f:d0:9d:a5:8a:8f:c9:5a:f1:7a:94:8c:
                    2f:04:e6:11:f2:c8:57:cb:3d:f4:61:6a:43:77:26:
                    c0:86:83:b8:b7:70:e3:7a:00:d0:fe:5b:c7:e6:33:
                    0a:1a:97:34:64:91:a2:7b:7e:71:4c:39:be:73:59:
                    40:6c:a7:50:f5:53:e7:b7:70:87:02:f4:92:50:32:
                    73:6f:18:52:d9:76:60:8e:9e:d8:f7:ec:e4:e4:db:
                    98:b7:f6:5d:2d:99:4a:5c:19:cc:3e:a5:37:c0:92:
                    98:22:63:8b:ad:e8:97:0e:2a:12:a2:48:a8:69:ff:
                    05:ef:ec:26:22:d4:81:87:08:0a:63:0b:a6:72:c5:
                    9a:4d:1d:0b:4f:ed:3c:dd:de:3c:d0:75:cf:11:3c:
                    74:b1:05:ac:4e:83:c2:b0:3a:d0:fc:39:03:85:e6:
                    a9:a7:ec:2a:48:64:c3:d8:eb:61:fa:98:5e:93:60:
                    16:66:c0:2e:e8:39:ca:27:75:2f:6e:e2:80:c9:df:
                    ce:57:36:56:5d:2d:28:59:e8:ba:7b:a3:d2:34:41:
                    6d:47:18:d5:cb:13:52:6b:a6:53:4c:a5:1e:7f:f5:
                    bb:24:84:94:43:fd:d1:06:79:0d:93:59:d3:b8:47:
                    94:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:7D:FC:38:57:5C:30:62:3C:3B:9C:19:8B:AA:BE:4F:0E:E9:B1:79
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Xn38OFdcMGI8O5wZi6q-Tw7psXk.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  118.232.48.0/22

    Signature Algorithm: sha256WithRSAEncryption
         8a:3a:93:ba:30:ac:b6:b6:ef:6d:d0:a0:ee:2a:de:45:bb:02:
         e2:03:cd:3f:62:d2:fd:63:14:f8:bf:da:47:42:af:c6:24:e4:
         c1:c2:47:3b:f0:be:55:79:f0:e3:86:50:d4:f8:44:d8:a4:a8:
         48:74:23:1b:e7:4c:be:1e:7e:9c:3e:55:a8:9e:4f:bf:d8:78:
         57:64:7a:3a:12:eb:a0:da:ea:f0:71:44:35:ad:b3:cd:8d:11:
         13:da:26:12:27:b5:57:0c:ac:8b:03:36:f0:c1:25:88:df:02:
         1f:27:18:de:6c:a3:39:d3:c6:60:e0:38:52:39:9e:12:67:da:
         cc:20:0c:4f:74:fc:20:d9:83:9c:c4:f3:b8:6d:69:b0:22:77:
         0c:e7:a8:e3:ec:62:f7:84:04:09:0f:4a:45:0f:34:23:28:65:
         a1:db:16:30:73:5d:8a:4a:34:96:f0:32:df:8d:6b:2c:3d:99:
         da:25:79:e5:1a:92:2d:f8:1b:71:10:ec:02:f2:90:6d:23:46:
         83:f2:10:ab:76:ed:f7:78:a1:64:69:4d:f6:bf:35:6b:70:88:
         a1:dc:25:8c:b8:07:2d:38:d4:92:23:30:4b:54:9f:68:60:80:
         a3:24:80:39:28:f7:14:90:4b:59:74:17:44:e5:fb:bc:9e:f2:
         54:21:87:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:18 2024 by rpki-client on console-ams.rpki-client.org