Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rEq7gtryo9CmhNAGVSYfSZQbQmA.roa
File:                     rEq7gtryo9CmhNAGVSYfSZQbQmA.roa (raw, json)
Hash identifier:          +V1/ZI097vDFdeBDJ021UoEQawqcldDNhP2D8As0ahw=
Subject key identifier:   AC:4A:BB:82:DA:F2:A3:D0:A6:84:D0:06:55:26:1F:49:94:1B:42:60
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       2AE7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rEq7gtryo9CmhNAGVSYfSZQbQmA.roa
Signing time:             Fri 01 Sep 2023 10:08:25 +0000
ROA not before:           Fri 01 Sep 2023 10:08:25 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     38841
IP address blocks:        180.176.136.0/21 maxlen: 21

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10983 (0x2ae7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep  1 10:08:25 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=AC4ABB82DAF2A3D0A684D00655261F49941B4260
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:b0:dd:1d:23:8a:19:73:a5:48:2f:8e:1f:46:
                    cf:41:57:6b:a5:13:eb:2e:62:ba:75:19:38:1f:25:
                    ec:a2:5a:ee:51:04:e4:fb:19:90:9d:51:e8:40:ba:
                    4a:3a:99:5a:17:7d:0c:c0:3c:5a:18:d0:27:6d:d3:
                    50:ea:ee:27:2c:da:66:52:b5:3c:90:e5:01:8f:e5:
                    f3:fa:d2:c7:92:a1:c5:12:30:ee:d9:9c:cd:f8:d7:
                    3c:95:e0:19:a1:ba:3d:7d:b4:2e:53:c1:63:e4:43:
                    26:bd:9b:3d:72:27:22:3d:ae:26:fc:33:74:96:d9:
                    ee:d4:1e:bf:ac:0c:5f:d0:fe:40:c8:91:75:9d:7b:
                    5a:7b:99:8a:f4:4c:97:e6:dd:c8:8a:32:d7:57:ed:
                    37:fa:a3:9e:b2:1c:a6:ad:89:ab:0b:fe:f9:46:ea:
                    7e:ea:3a:a7:0f:16:71:b8:9b:a6:f3:5b:c9:43:72:
                    f0:b2:ac:29:d4:59:34:35:6c:f7:37:03:c0:af:48:
                    2a:ef:ff:4a:2a:6c:2c:f4:a8:66:6a:49:c4:4f:89:
                    51:52:e8:5f:61:2e:95:f9:26:11:8e:ce:c1:a3:c4:
                    06:ea:d4:9e:14:3c:4d:ee:b0:cf:9f:31:a5:1d:3c:
                    f6:50:b1:b2:55:e0:e4:32:2f:b9:43:f1:c1:6f:09:
                    47:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:4A:BB:82:DA:F2:A3:D0:A6:84:D0:06:55:26:1F:49:94:1B:42:60
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rEq7gtryo9CmhNAGVSYfSZQbQmA.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.176.136.0/21

    Signature Algorithm: sha256WithRSAEncryption
         91:bd:08:da:8c:c8:d1:fa:e6:6d:6d:63:c2:aa:2b:98:dd:f3:
         bf:85:09:3f:f2:ce:5a:72:7d:0d:dd:ab:ce:b6:96:95:d4:bf:
         d1:76:c3:ef:49:3f:94:d2:51:49:40:2a:19:99:97:41:1b:98:
         96:87:a9:a8:9d:cc:23:5e:24:57:70:07:9a:aa:97:7f:dd:1f:
         a9:20:af:e8:43:3d:99:be:ce:18:8b:64:87:12:ab:04:c0:77:
         94:ee:c1:c5:b3:b0:aa:f8:39:57:06:0e:6f:f4:9b:80:11:d0:
         48:df:7b:b3:60:80:5f:1b:fa:00:4d:65:89:f3:56:67:73:74:
         9b:22:11:11:1e:00:89:89:cb:22:6c:b2:a7:c3:77:44:e0:1e:
         7a:6b:c2:98:d2:13:84:42:e3:8e:78:6d:f2:ba:1c:51:cb:c9:
         dd:a5:38:c6:ac:72:bb:63:28:7b:06:b2:c4:0d:4d:9c:9a:2d:
         8a:0c:35:93:ae:81:c3:34:66:f4:bb:80:de:7a:8b:35:74:9a:
         56:32:0e:37:88:a3:f7:be:03:91:2a:6e:60:fe:c9:e9:fe:38:
         d4:ff:3f:4b:4d:36:5f:4d:34:95:c6:8c:46:99:b1:23:0e:ff:
         38:c7:25:77:6d:5a:77:1b:05:55:61:11:4e:8d:a8:4d:1f:9b:
         53:91:4f:24
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKucwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA4MjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFDNEFCQjgyREFGMkEz
RDBBNjg0RDAwNjU1MjYxRjQ5OTQxQjQyNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDjsN0dI4oZc6VIL44fRs9BV2ulE+suYrp1GTgfJeyiWu5RBOT7
GZCdUehAuko6mVoXfQzAPFoY0Cdt01Dq7ics2mZStTyQ5QGP5fP60seSocUSMO7Z
nM341zyV4Bmhuj19tC5TwWPkQya9mz1yJyI9rib8M3SW2e7UHr+sDF/Q/kDIkXWd
e1p7mYr0TJfm3ciKMtdX7Tf6o56yHKatiasL/vlG6n7qOqcPFnG4m6bzW8lDcvCy
rCnUWTQ1bPc3A8CvSCrv/0oqbCz0qGZqScRPiVFS6F9hLpX5JhGOzsGjxAbq1J4U
PE3usM+fMaUdPPZQsbJV4OQyL7lD8cFvCUftAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUrEq7gtryo9CmhNAGVSYfSZQbQmAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3JFcTdndHJ5bzlDbWhOQUdW
U1lmU1pRYlFtQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
sIgwDQYJKoZIhvcNAQELBQADggEBAJG9CNqMyNH65m1tY8KqK5jd87+FCT/yzlpy
fQ3dq862lpXUv9F2w+9JP5TSUUlAKhmZl0EbmJaHqaidzCNeJFdwB5qql3/dH6kg
r+hDPZm+zhiLZIcSqwTAd5TuwcWzsKr4OVcGDm/0m4AR0Ejfe7NggF8b+gBNZYnz
VmdzdJsiEREeAImJyyJssqfDd0TgHnprwpjSE4RC4454bfK6HFHLyd2lOMascrtj
KHsGssQNTZyaLYoMNZOugcM0ZvS7gN56izV0mlYyDjeIo/e+A5EqbmD+yen+ONT/
P0tNNl9NNJXGjEaZsSMO/zjHJXdtWncbBVVhEU6NqE0fm1ORTyQ=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org