Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vssDWlijf-KCZJ6c_jufPM7izsU.roa
File:                     vssDWlijf-KCZJ6c_jufPM7izsU.roa (raw, json)
Hash identifier:          yOuFSQDedVv1oxAn3cbzb9tNPS+EDziBXNxJEhw6iSs=
Subject key identifier:   BE:CB:03:5A:58:A3:7F:E2:82:64:9E:9C:FE:3B:9F:3C:CE:E2:CE:C5
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       2928
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vssDWlijf-KCZJ6c_jufPM7izsU.roa
Signing time:             Fri 01 Sep 2023 10:06:13 +0000
ROA not before:           Fri 01 Sep 2023 10:06:13 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     9924
IP address blocks:        123.193.96.0/21 maxlen: 21

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10536 (0x2928)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep  1 10:06:13 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=BECB035A58A37FE282649E9CFE3B9F3CCEE2CEC5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:6d:fd:23:dd:69:f7:ab:1e:be:de:a1:b1:7b:
                    f5:65:0a:4f:af:aa:d7:d9:19:5f:a4:5b:00:94:2a:
                    48:5d:b3:38:96:21:78:b5:3c:53:15:4f:f1:bf:a9:
                    4b:36:38:84:ac:30:49:cf:2b:85:be:04:c4:a7:7c:
                    ed:2e:26:ff:e6:af:c0:ef:a4:e9:a0:93:aa:be:8d:
                    ed:37:19:9f:f6:9b:ef:29:d9:f8:4a:26:35:f9:87:
                    a5:bd:90:5e:3e:3a:25:6c:2c:4d:50:04:83:cb:bf:
                    83:49:90:c8:83:95:4a:bf:5e:b4:cd:19:e1:f4:c8:
                    9a:1f:52:92:d0:01:56:03:0e:80:63:15:bb:15:ad:
                    35:56:54:25:b1:de:d4:86:ea:c0:fc:cd:91:63:7d:
                    7a:0e:06:e9:93:66:e2:6b:ce:05:88:85:27:58:e0:
                    ca:de:7b:21:95:d4:69:a8:fe:70:e9:94:2d:e5:82:
                    64:4e:da:97:c0:ee:a4:70:ea:b4:58:29:76:9b:f2:
                    3e:a8:8b:16:96:10:e2:ce:bf:ab:ff:c0:b0:6c:09:
                    72:a8:0f:bf:66:58:3c:70:c4:8d:2b:05:d8:43:ba:
                    7d:6b:a2:c6:48:34:b5:dc:8e:f6:c1:f9:94:cc:42:
                    42:9e:c2:a2:e4:f2:69:a2:6b:ff:25:c4:fe:84:9c:
                    15:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BE:CB:03:5A:58:A3:7F:E2:82:64:9E:9C:FE:3B:9F:3C:CE:E2:CE:C5
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vssDWlijf-KCZJ6c_jufPM7izsU.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.193.96.0/21

    Signature Algorithm: sha256WithRSAEncryption
         6e:15:46:58:e1:84:84:52:48:06:3a:ae:94:ba:a5:0b:1e:d8:
         2e:55:ef:8d:3b:80:85:b0:d3:86:1b:4c:ad:97:b0:ff:b6:6d:
         9d:01:00:e0:71:76:b1:11:89:52:57:ee:89:ac:38:ed:05:09:
         27:d0:2b:17:ce:12:dd:5c:c4:6c:0a:00:1f:c1:a5:83:a5:97:
         e6:cb:65:52:3e:a4:6b:28:8f:bd:9a:13:09:71:58:a5:b5:b5:
         ce:b2:e3:92:4a:ff:63:c0:23:b2:6d:aa:06:16:d1:cc:f2:7f:
         5c:c4:1f:94:ee:ed:5e:c2:5d:9d:ab:d6:95:ad:bc:2d:29:39:
         6d:4f:87:71:23:5d:5a:e0:14:e6:c3:69:88:a2:7b:52:ef:6d:
         51:06:7b:da:cc:c5:07:47:58:44:c8:81:b9:bb:a8:25:b4:4e:
         0a:96:1e:62:c3:ac:0d:95:52:6c:2f:ae:19:f9:04:b4:80:c4:
         23:2c:b1:fc:51:6e:c5:dc:e9:9b:7d:fd:9d:59:e6:43:51:96:
         54:ec:0f:84:04:53:f0:77:c2:6a:3b:04:a0:98:e2:93:9b:e2:
         f7:cb:66:59:e7:1a:52:8d:33:19:04:23:3d:24:a0:d3:76:12:
         19:4f:42:53:6d:a1:eb:08:5e:6a:96:be:aa:8d:20:9d:dd:ff:
         52:69:c4:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org