Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4mDutvrNlAhBQnl8oQQL36X_ObA.roa
File:                     4mDutvrNlAhBQnl8oQQL36X_ObA.roa (raw, json)
Hash identifier:          OifqUvP8+itLlQ4i7yqL3SDAFsZ406AHY8NGcMVoj3E=
Subject key identifier:   E2:60:EE:B6:FA:CD:94:08:41:42:79:7C:A1:04:0B:DF:A5:FF:39:B0
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1EDF
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4mDutvrNlAhBQnl8oQQL36X_ObA.roa
Signing time:             Fri 13 Oct 2023 03:07:16 +0000
ROA not before:           Fri 13 Oct 2023 03:07:16 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24164
IP address blocks:        180.218.0.0/16 maxlen: 17

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7903 (0x1edf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Oct 13 03:07:16 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=E260EEB6FACD94084142797CA1040BDFA5FF39B0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:0e:37:7b:b2:01:fb:01:16:42:ca:4d:77:32:
                    69:bb:2c:72:b1:6d:70:5a:1d:2b:8c:98:d3:2a:5e:
                    01:5d:84:3c:47:66:0b:db:0a:b5:ba:77:63:cf:4f:
                    0a:48:a0:03:5a:18:ae:1a:7e:15:0a:a4:f7:43:6e:
                    3c:5c:0a:d7:64:72:35:f2:93:a4:18:79:52:c9:ab:
                    2d:3b:fd:c2:03:39:5f:5c:6d:ba:35:08:3a:5f:a9:
                    91:86:fc:22:b0:ce:90:19:ee:ae:07:21:c3:7b:a1:
                    ef:16:2b:d5:59:30:a2:92:9c:2f:0e:af:e7:be:f4:
                    25:49:85:f8:25:69:fa:37:a2:43:8a:ff:b1:28:9b:
                    33:f6:13:cf:e4:6d:d8:81:33:f9:e5:e2:ce:6e:00:
                    70:5e:ec:a2:07:8c:89:3a:62:9b:6f:a3:1e:57:82:
                    9c:34:0d:73:cb:8b:77:fb:98:d8:34:b8:44:6e:a2:
                    60:ef:0e:8e:8f:49:30:61:e6:27:00:15:ec:d3:2b:
                    eb:0a:3b:4d:1e:a5:56:83:83:00:38:ff:9d:d2:6f:
                    ae:fc:ae:56:53:4d:c9:1d:61:9e:8e:47:1b:79:52:
                    90:77:98:d0:7e:07:1a:cd:b3:00:7f:4b:95:ee:a9:
                    b1:89:5c:55:8e:03:96:54:8e:16:72:51:ba:fe:c0:
                    68:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:60:EE:B6:FA:CD:94:08:41:42:79:7C:A1:04:0B:DF:A5:FF:39:B0
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4mDutvrNlAhBQnl8oQQL36X_ObA.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.218.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         4c:60:5b:e7:d2:87:e0:09:80:0b:0e:fa:ef:2c:de:62:71:6a:
         52:35:b5:9c:82:85:55:8e:bd:9c:64:cf:f8:09:7d:27:6b:2e:
         2f:e1:59:f6:d4:b6:87:ee:dd:10:77:57:ee:ee:28:e5:44:f7:
         ec:46:4e:f9:fd:8e:6d:8b:3b:20:47:b9:27:82:ff:60:9c:21:
         93:d0:d7:92:32:e0:f2:27:53:38:5b:5b:c0:e3:36:70:3c:70:
         ad:7c:c8:3f:65:75:9d:cd:84:b6:2a:b5:18:1b:78:96:31:4c:
         4d:a2:3e:2a:df:3e:ca:86:3a:fb:12:9b:3a:8f:30:bb:c5:65:
         be:5a:ea:55:3e:c8:90:7d:6f:cb:31:0c:3d:9c:0e:11:fe:ae:
         f5:90:51:50:34:87:93:41:b1:a9:2e:8e:69:df:b0:87:2f:44:
         f6:a2:0d:1b:31:2c:9e:3a:be:0f:67:7a:ef:71:a7:49:81:b3:
         7c:4a:4f:b6:a9:99:81:49:e5:a2:e9:24:fd:65:33:33:40:dd:
         c4:58:6d:7d:56:b0:3e:69:b2:cc:43:8c:9f:a9:45:4d:80:b2:
         02:32:e2:2c:03:01:7a:ba:de:1b:10:e3:1d:03:c6:83:28:b9:
         d8:49:13:b4:a4:47:87:4a:2e:1e:7c:eb:cc:ef:aa:5c:70:6b:
         e7:5a:9e:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org