Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aomSLQzP1XLzzZ_UbNiL3vAJzQs.roa
File:                     aomSLQzP1XLzzZ_UbNiL3vAJzQs.roa (raw, json)
Hash identifier:          Tu2gLmr2BDLH1kfz3cSehVzAervMMdVbeizGDqzlQIE=
Subject key identifier:   6A:89:92:2D:0C:CF:D5:72:F3:CD:9F:D4:6C:D8:8B:DE:F0:09:CD:0B
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       29BB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aomSLQzP1XLzzZ_UbNiL3vAJzQs.roa
Signing time:             Fri 01 Sep 2023 10:07:00 +0000
ROA not before:           Fri 01 Sep 2023 10:07:00 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     38841
IP address blocks:        123.195.149.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10683 (0x29bb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep  1 10:07:00 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=6A89922D0CCFD572F3CD9FD46CD88BDEF009CD0B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:14:19:e3:65:39:66:01:62:73:df:af:84:62:
                    23:fc:e7:cd:cf:22:14:dd:14:6e:33:c9:8b:ec:98:
                    de:fe:e2:a0:a2:af:71:6f:b2:65:f1:e2:20:7e:18:
                    30:8d:c2:7d:fc:98:ef:0f:da:96:78:30:03:44:91:
                    57:97:b7:bc:81:7b:ab:0f:c2:1c:1b:aa:86:e7:2a:
                    09:e7:22:07:5e:bc:ce:a1:b6:3d:00:f1:2a:32:15:
                    a3:94:9c:a4:92:3c:7f:a2:ec:f9:7b:e5:5b:b1:78:
                    4b:78:53:c9:2c:25:05:1e:3c:59:1a:a5:c1:90:d8:
                    71:6b:09:cc:45:4d:c8:43:37:7d:15:f8:e4:ab:cf:
                    7e:5a:22:2f:ed:26:0a:26:24:ba:b3:dd:e6:68:0e:
                    79:75:d5:0b:c1:85:ac:72:e6:21:74:5f:c1:db:d0:
                    44:3e:c8:7c:c9:9c:58:3c:4a:87:dd:3e:22:cc:21:
                    cc:73:99:b2:56:0b:8a:50:86:29:5b:a8:7c:82:e7:
                    37:eb:5d:ab:7a:d7:e2:73:ad:8d:bb:d5:74:90:67:
                    08:5a:a8:81:26:4b:46:58:0d:5f:04:99:91:8e:40:
                    0b:32:b8:41:07:e5:11:99:79:6b:22:5d:9d:43:6f:
                    50:09:4e:e3:22:41:fc:5e:b9:23:c5:91:b2:c6:9e:
                    14:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:89:92:2D:0C:CF:D5:72:F3:CD:9F:D4:6C:D8:8B:DE:F0:09:CD:0B
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aomSLQzP1XLzzZ_UbNiL3vAJzQs.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.195.149.0/24

    Signature Algorithm: sha256WithRSAEncryption
         42:cf:05:0c:e5:f5:f6:e9:d7:ee:0b:d7:93:48:fe:60:cc:22:
         20:84:bb:09:67:f7:41:f2:28:4e:df:42:24:06:6a:36:d8:fd:
         3c:fc:7c:f7:ce:b1:ae:f9:fd:da:65:84:07:a7:28:11:5a:8b:
         24:aa:fe:d5:a2:80:1d:ed:6f:eb:aa:51:4e:55:91:23:e4:a2:
         9e:be:77:73:55:a7:74:d7:5f:36:50:5a:f9:49:3c:af:20:3b:
         09:76:ec:6d:e4:47:42:31:44:5d:e0:70:c2:1c:f0:1b:3b:82:
         5b:d7:9b:04:8f:89:94:4e:7a:3c:6f:d0:74:b4:88:f1:a2:99:
         80:6f:0d:01:75:a6:04:29:82:16:23:fc:c5:a9:c2:0e:74:8f:
         d0:9f:b7:cd:bf:e2:28:0c:50:6d:a9:f7:2f:75:6e:56:fa:2b:
         17:1f:27:83:4b:8f:aa:8f:02:a1:4c:4c:8f:5f:69:2a:09:44:
         b7:54:a4:09:04:7b:11:cd:d0:66:d6:9a:34:ce:d8:80:03:c1:
         85:7c:d0:c5:85:f7:94:2b:5d:ca:30:3e:12:59:fc:b5:0f:07:
         29:6f:b1:09:8b:e2:b4:7f:be:df:23:5e:57:7e:9a:44:af:e4:
         e3:39:47:50:69:ce:cc:d9:2c:58:d7:7c:79:a7:bc:0f:05:a9:
         23:22:6e:b0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKbswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA3MDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZBODk5MjJEMENDRkQ1
NzJGM0NEOUZENDZDRDg4QkRFRjAwOUNEMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1FBnjZTlmAWJz36+EYiP8583PIhTdFG4zyYvsmN7+4qCir3Fv
smXx4iB+GDCNwn38mO8P2pZ4MANEkVeXt7yBe6sPwhwbqobnKgnnIgdevM6htj0A
8SoyFaOUnKSSPH+i7Pl75VuxeEt4U8ksJQUePFkapcGQ2HFrCcxFTchDN30V+OSr
z35aIi/tJgomJLqz3eZoDnl11QvBhaxy5iF0X8Hb0EQ+yHzJnFg8SofdPiLMIcxz
mbJWC4pQhilbqHyC5zfrXat61+JzrY271XSQZwhaqIEmS0ZYDV8EmZGOQAsyuEEH
5RGZeWsiXZ1Db1AJTuMiQfxeuSPFkbLGnhRxAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUaomSLQzP1XLzzZ/UbNiL3vAJzQswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2FvbVNMUXpQMVhMenpaX1Vi
TmlMM3ZBSnpRcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7
w5UwDQYJKoZIhvcNAQELBQADggEBAELPBQzl9fbp1+4L15NI/mDMIiCEuwln90Hy
KE7fQiQGajbY/Tz8fPfOsa75/dplhAenKBFaiySq/tWigB3tb+uqUU5VkSPkop6+
d3NVp3TXXzZQWvlJPK8gOwl27G3kR0IxRF3gcMIc8Bs7glvXmwSPiZROejxv0HS0
iPGimYBvDQF1pgQpghYj/MWpwg50j9Cft82/4igMUG2p9y91blb6KxcfJ4NLj6qP
AqFMTI9faSoJRLdUpAkEexHN0GbWmjTO2IADwYV80MWF95QrXcowPhJZ/LUPBylv
sQmL4rR/vt8jXld+mkSv5OM5R1BpzszZLFjXfHmnvA8FqSMibrA=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:19 2024 by rpki-client on console-ams.rpki-client.org