Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lLSpsXjCbcp8HEPdvpHTWw3yvrc.roa
File:                     lLSpsXjCbcp8HEPdvpHTWw3yvrc.roa (raw, json)
Hash identifier:          EL1sPlfAKDI0XvGVv7758dyLvGMY6jWZY99W76Cof/w=
Subject key identifier:   94:B4:A9:B1:78:C2:6D:CA:7C:1C:43:DD:BE:91:D3:5B:0D:F2:BE:B7
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       28BE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lLSpsXjCbcp8HEPdvpHTWw3yvrc.roa
Signing time:             Fri 01 Sep 2023 10:05:43 +0000
ROA not before:           Fri 01 Sep 2023 10:05:43 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     38841
IP address blocks:        106.1.128.0/21 maxlen: 21

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10430 (0x28be)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep  1 10:05:43 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=94B4A9B178C26DCA7C1C43DDBE91D35B0DF2BEB7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:ec:d7:15:7e:b1:5f:45:91:4b:4f:ef:90:61:
                    35:69:c2:09:6e:a3:bd:0f:e0:97:94:cf:26:c6:e2:
                    fa:98:07:f0:22:f4:40:76:34:4c:28:69:e7:1b:32:
                    44:43:1d:75:a0:1f:cc:64:9b:98:a6:19:63:97:a4:
                    cb:f0:29:b8:ab:1a:6a:9b:76:84:58:b0:10:9c:9e:
                    83:4e:c3:2f:a6:80:0f:5e:ad:31:f6:f5:7c:9f:9a:
                    93:b3:41:4d:64:fd:7e:de:32:23:fa:2d:7b:d6:99:
                    fc:57:ef:0b:c2:30:bb:e4:d5:6a:68:ba:b9:69:d2:
                    6e:53:c0:2f:d4:c2:4e:f8:7d:8b:48:0f:b0:4b:cc:
                    b8:c6:cf:4f:d8:89:ad:10:bb:2b:31:fa:2a:4a:a4:
                    0b:cb:77:e8:7d:6c:11:04:15:d5:d8:1b:b1:1f:73:
                    a1:1a:5e:48:bb:3f:f4:f8:6c:a4:73:70:5b:f1:0b:
                    4f:c5:fb:1c:39:91:ae:01:b5:56:6d:f5:37:33:d9:
                    78:29:b2:21:6c:24:c0:ee:36:47:a9:b3:1c:a0:98:
                    64:78:3d:c0:30:46:30:1e:4b:ba:18:0a:40:17:a0:
                    19:f6:66:94:8c:2b:fc:f3:d2:2f:53:20:78:85:39:
                    41:e3:b6:14:a8:c0:c1:da:1f:08:87:a9:81:f7:e3:
                    ec:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:B4:A9:B1:78:C2:6D:CA:7C:1C:43:DD:BE:91:D3:5B:0D:F2:BE:B7
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lLSpsXjCbcp8HEPdvpHTWw3yvrc.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  106.1.128.0/21

    Signature Algorithm: sha256WithRSAEncryption
         5b:dd:97:b9:33:01:5b:e7:e5:de:ef:1d:4f:a4:f2:ff:ab:c7:
         ec:50:fa:72:c9:9b:2b:e7:51:85:2c:00:7f:31:b5:f8:1a:2e:
         9e:99:37:8c:6d:88:b3:27:93:28:c0:0e:e2:36:7e:ac:43:48:
         46:0b:ab:d0:a6:7f:51:d7:1c:5d:a3:64:53:de:03:2d:ca:91:
         4a:6f:81:e7:3b:72:d4:10:1b:89:24:c5:e9:b2:94:28:d1:39:
         ef:77:73:d3:55:1a:f0:1d:0f:65:8d:3e:69:e0:20:15:0e:7f:
         32:22:a5:68:8f:f9:a3:56:ad:bf:a0:ad:d6:66:db:e4:9f:ac:
         f0:05:a3:2d:c0:d3:bf:56:3c:00:d2:cd:29:7a:46:ae:35:1a:
         ba:39:e0:b2:fc:43:ce:a8:51:db:72:0c:f1:99:9e:fc:e7:eb:
         de:3a:09:5d:8b:71:ed:c5:47:3f:a0:ec:35:56:c1:9b:32:ea:
         7f:03:75:a3:54:d7:12:76:57:31:3a:8d:47:64:24:54:d9:b4:
         4d:ae:0b:cc:00:7e:90:a3:10:9d:ea:a8:44:42:9e:aa:b8:16:
         ec:db:3a:76:23:b9:33:54:a2:29:8d:51:1a:90:46:d1:5a:b3:
         08:9e:9f:cc:7b:ba:36:41:bc:25:5e:fb:07:4a:e0:dd:57:4b:
         28:55:d0:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org