Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-982c-bJYGP98HGE1TPQSgdjwVY.roa
File:                     -982c-bJYGP98HGE1TPQSgdjwVY.roa (raw, json)
Hash identifier:          Al7fvwx1wh0BVNE9ciZJdq7E7xB6G92cBDBYBuBOQKA=
Subject key identifier:   FB:DF:36:73:E6:C9:60:63:FD:F0:71:84:D5:33:D0:4A:07:63:C1:56
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1D65
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-982c-bJYGP98HGE1TPQSgdjwVY.roa
Signing time:             Fri 01 Sep 2023 10:14:45 +0000
ROA not before:           Fri 01 Sep 2023 10:14:45 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24164
IP address blocks:        115.165.248.0/21 maxlen: 21

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7525 (0x1d65)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep  1 10:14:45 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=FBDF3673E6C96063FDF07184D533D04A0763C156
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:3a:6a:99:98:84:96:d7:e9:0d:ed:c4:94:20:
                    9b:6a:aa:86:da:87:7e:00:98:b1:39:ba:f2:ae:48:
                    78:14:3e:75:d2:3a:25:fc:5e:e5:ff:00:46:e9:6a:
                    51:67:5f:63:88:e2:a0:7a:90:e1:97:72:1e:90:78:
                    b0:f8:0d:b4:40:5b:4d:ea:72:ea:f2:24:d5:b2:f8:
                    99:31:d1:ac:62:2b:ab:15:29:c6:65:e5:c6:d1:bd:
                    62:d4:20:ea:78:a8:2d:8b:de:8c:19:e9:8b:eb:75:
                    32:54:c5:da:71:6f:29:03:ca:24:c3:db:e3:91:20:
                    fe:7b:8e:81:59:a0:cf:d3:40:c4:ee:23:c3:80:16:
                    d1:f1:0c:c8:1e:97:e1:7a:47:a0:e9:59:1f:6e:e8:
                    51:35:ef:e1:b8:53:9c:40:c5:40:ca:36:31:1d:f9:
                    ae:1b:d2:3b:1c:8e:ef:0e:ad:9a:a8:a7:26:8c:7a:
                    f7:0c:d9:1e:35:8e:f2:bb:49:02:bf:fd:06:71:b5:
                    8f:ed:8f:69:96:9c:1f:a2:1e:30:a3:10:51:46:b4:
                    de:60:42:f8:4b:d2:16:56:27:a7:d7:0f:a1:59:2c:
                    38:7a:2a:42:48:68:e5:fb:31:0e:45:0c:b0:87:22:
                    9c:53:45:13:fd:a6:6d:40:3e:33:32:cc:85:11:4b:
                    e1:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FB:DF:36:73:E6:C9:60:63:FD:F0:71:84:D5:33:D0:4A:07:63:C1:56
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-982c-bJYGP98HGE1TPQSgdjwVY.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  115.165.248.0/21

    Signature Algorithm: sha256WithRSAEncryption
         4c:80:9d:6a:02:65:2d:6c:19:45:f2:64:71:d4:d2:85:8a:20:
         e8:88:5f:df:42:bd:cf:ed:b6:78:39:58:77:fc:3c:e8:a4:dc:
         d2:fc:53:4f:5c:06:ed:32:08:dc:38:24:b5:f6:9f:1f:69:93:
         97:51:8b:ae:04:5a:8f:18:4e:62:f7:be:fa:3f:91:6f:9f:08:
         5a:8c:96:91:4b:fd:a0:06:18:ac:0f:bd:78:07:a0:8b:36:db:
         01:3a:82:c2:e1:2b:0c:19:2f:a4:e0:a8:b0:d1:e5:e3:1f:6a:
         7e:bb:df:e8:d4:9a:05:6b:37:be:a6:3e:88:42:e0:73:4a:22:
         88:43:ff:6f:38:44:e9:a7:78:33:76:20:d0:44:b1:18:a7:9d:
         b2:a3:e2:8d:39:0d:7e:7f:6c:29:92:78:31:10:41:ef:06:47:
         8b:af:f0:59:90:45:c4:af:35:b0:c6:79:ee:88:7b:6c:86:0a:
         f1:0e:00:5b:66:95:ce:d9:8f:b1:fe:69:e7:72:20:d9:66:f4:
         26:e1:b2:33:90:b1:f6:74:dd:9e:f7:19:e2:68:a8:26:de:4b:
         88:49:35:43:d7:c2:c7:b5:62:ba:0b:17:de:f8:16:50:cb:d4:
         bb:33:8b:aa:28:ab:94:7c:c4:74:32:81:7d:4f:fa:34:66:40:
         52:21:67:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org