Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wI2G7P0jZgZJvksMjUMgTgvuM6Y.roa
File:                     wI2G7P0jZgZJvksMjUMgTgvuM6Y.roa (raw, json)
Hash identifier:          pVGH34zxFZMgW5Zjv0C6NiIs5MZUxc8D5Ifi/qsvnUA=
Subject key identifier:   C0:8D:86:EC:FD:23:66:06:49:BE:4B:0C:8D:43:20:4E:0B:EE:33:A6
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       28FC
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wI2G7P0jZgZJvksMjUMgTgvuM6Y.roa
Signing time:             Fri 01 Sep 2023 10:06:01 +0000
ROA not before:           Fri 01 Sep 2023 10:06:01 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     38841
IP address blocks:        123.195.8.0/26 maxlen: 26

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10492 (0x28fc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep  1 10:06:01 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=C08D86ECFD23660649BE4B0C8D43204E0BEE33A6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:3a:36:63:92:3a:8b:4e:ee:2c:24:2c:d1:dd:
                    af:12:bf:84:fc:c8:b2:7e:9d:df:af:ec:3d:44:f3:
                    f6:8c:5e:43:e4:c3:48:54:c2:da:62:1d:92:0d:58:
                    b4:4f:df:93:09:7d:2d:fe:d8:62:67:68:04:89:61:
                    c8:9c:15:b2:8e:0a:d1:97:f5:22:91:1d:d2:4b:a1:
                    5a:3b:17:29:38:bc:9b:af:80:ff:d9:5f:59:49:b6:
                    8c:5a:d5:28:6a:0a:48:bd:fd:11:19:fb:32:6c:2c:
                    4d:12:e9:71:31:5b:02:95:03:35:a4:6c:83:c2:74:
                    3e:ed:84:33:55:48:fe:a2:1f:47:af:b5:36:a6:8c:
                    a0:ae:7b:a3:b6:35:77:2c:60:62:bf:1a:1b:08:89:
                    fd:74:8c:7b:ec:05:48:ac:5c:d3:57:34:e5:23:67:
                    2e:d7:0c:a4:71:3b:35:7e:39:ea:4e:d1:28:25:b8:
                    cd:a2:06:24:bd:42:ca:f6:82:d3:d4:67:64:7d:3d:
                    76:09:ae:dd:9f:ab:59:48:10:cf:92:10:fb:94:02:
                    69:7f:53:be:bd:be:f7:96:07:63:69:e0:f3:73:66:
                    fe:73:b2:98:c9:ce:55:80:b3:c2:02:22:cb:cf:48:
                    e7:a9:1a:ef:22:e1:4a:c7:a0:63:a7:bc:86:9a:e2:
                    92:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C0:8D:86:EC:FD:23:66:06:49:BE:4B:0C:8D:43:20:4E:0B:EE:33:A6
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wI2G7P0jZgZJvksMjUMgTgvuM6Y.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.195.8.0/26

    Signature Algorithm: sha256WithRSAEncryption
         3f:70:d0:54:d3:b1:c6:cb:30:54:d3:3e:a3:61:aa:c8:ec:4b:
         7d:20:be:19:54:bb:d5:59:88:41:c0:09:23:6b:a6:e2:2d:c3:
         0e:fb:ad:4b:25:e8:85:f2:2d:90:92:29:bc:a9:1a:28:6a:d0:
         a0:1d:dd:32:39:4e:b0:ca:5f:d6:8d:3d:6b:e9:cb:79:9c:c9:
         93:98:1e:60:24:3e:a3:fd:23:7d:07:e1:ab:2d:c1:d4:04:af:
         dd:ad:cb:22:35:c2:48:57:23:89:c7:40:12:cc:ca:cc:1a:e2:
         6e:df:54:64:61:6b:78:d3:26:ec:c5:1a:a0:a0:3b:fe:dc:c7:
         65:4a:7f:e2:43:a7:4a:00:bc:8a:84:7f:74:f2:ce:2a:b2:ac:
         2a:2e:80:83:86:dc:44:26:79:43:60:b6:83:32:ee:32:fd:8f:
         35:d6:f8:22:8e:31:a7:0d:1c:69:92:a3:08:9b:75:61:aa:95:
         74:7a:25:80:f7:94:cc:ed:e3:4a:2e:10:7a:26:61:5c:15:08:
         47:74:1b:d8:91:95:1d:c2:08:a7:c1:74:a4:e0:9a:89:93:a1:
         ba:8e:f5:19:db:a3:22:b4:c0:6e:a4:49:11:b3:52:f0:d1:00:
         7b:5c:6d:ec:fb:ae:08:62:8a:ce:b0:51:e8:1d:21:95:8a:7d:
         cd:77:db:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org