Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FP5MOVQ6u_uvDMFLkiVPs3E1X4c.roa
File:                     FP5MOVQ6u_uvDMFLkiVPs3E1X4c.roa (raw, json)
Hash identifier:          lFoiGyd6XNZ/n1dr/ZAjm6k7WEZO5x0lX+5ckFw1WYs=
Subject key identifier:   14:FE:4C:39:54:3A:BB:FB:AF:0C:C1:4B:92:25:4F:B3:71:35:5F:87
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1E18
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FP5MOVQ6u_uvDMFLkiVPs3E1X4c.roa
Signing time:             Fri 01 Sep 2023 10:15:40 +0000
ROA not before:           Fri 01 Sep 2023 10:15:40 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24164
IP address blocks:        180.218.128.0/20 maxlen: 20

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7704 (0x1e18)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep  1 10:15:40 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=14FE4C39543ABBFBAF0CC14B92254FB371355F87
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:0c:d7:6e:05:7b:ad:f0:5c:77:61:bf:02:e5:
                    b4:a6:12:a5:55:1e:ed:49:40:45:55:f4:f3:00:48:
                    3f:d0:af:d5:96:09:80:88:f6:ea:bd:a6:ea:96:d3:
                    6e:6b:44:27:49:56:f0:d3:45:f5:d3:2d:32:52:bd:
                    41:7d:89:d8:dc:2e:7f:cb:40:d1:7c:c3:f1:ab:d5:
                    ac:c7:6e:4d:18:66:1d:77:18:f9:94:d0:8c:09:ec:
                    a7:5d:7d:3c:02:01:d5:12:4c:b9:eb:2a:03:e9:87:
                    05:c1:28:6a:bc:49:b7:9b:9d:e3:06:c1:58:36:de:
                    e7:03:25:7e:de:e7:a3:b2:a8:a3:6d:6b:86:14:50:
                    8f:d6:83:55:57:2d:cf:d7:fa:3e:bd:09:6c:e7:79:
                    69:7e:78:f4:73:d3:c8:12:3e:0a:d8:91:58:33:95:
                    9d:2d:9e:71:de:bf:c4:45:b7:6d:30:8d:73:4f:28:
                    5f:ec:7f:b7:a2:22:91:8e:e0:6d:75:59:11:3e:82:
                    e3:13:22:fd:a1:21:db:2f:52:da:bd:7d:61:62:37:
                    c8:fa:c8:ec:4a:76:68:ce:71:c4:00:12:9f:ad:c2:
                    36:f3:41:0a:24:a3:b2:65:6e:13:5a:fb:4f:7b:7d:
                    d2:dd:e5:31:1e:49:6c:3d:ff:06:f2:56:b2:d4:5e:
                    eb:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                14:FE:4C:39:54:3A:BB:FB:AF:0C:C1:4B:92:25:4F:B3:71:35:5F:87
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FP5MOVQ6u_uvDMFLkiVPs3E1X4c.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.218.128.0/20

    Signature Algorithm: sha256WithRSAEncryption
         2f:58:e5:0c:96:fe:ec:7a:5b:1f:44:66:0e:e0:dc:73:72:3d:
         f2:fb:29:83:45:63:c7:83:60:41:c4:ca:fb:b7:ae:63:73:9e:
         df:01:ed:63:26:ad:41:74:7b:b2:78:17:27:5f:5f:ec:19:41:
         55:4c:ed:ed:64:80:b5:1a:65:75:68:b1:71:59:1d:3c:ac:ac:
         26:d5:a6:2d:c1:71:76:8f:ad:e1:52:0c:b7:9a:7f:67:ae:84:
         ac:ed:dc:1d:eb:cf:2f:3f:18:9d:04:91:9b:69:8c:05:b2:65:
         f7:0b:5c:04:4e:da:34:8c:36:d9:8f:86:37:05:78:ce:72:19:
         6d:30:07:a2:7f:11:89:59:4b:1d:d0:70:46:5c:de:77:08:36:
         ce:75:e0:57:17:a5:0f:22:1f:d8:d2:75:9a:e7:fd:ef:3d:53:
         52:d4:bd:9f:1b:8f:36:1c:36:b1:c9:88:70:1b:23:66:d4:b0:
         7f:5a:7a:44:61:18:10:e3:f7:dc:4c:85:5f:53:a2:6f:d5:27:
         33:e6:22:8b:e0:54:e0:bb:9f:b2:34:4e:8b:87:27:5f:1b:c6:
         9b:d2:41:d5:9a:91:d9:0f:01:87:f9:6e:7a:bd:1c:a1:bd:4c:
         fe:87:a8:27:d3:1e:f1:12:e8:d4:87:e6:fa:25:5c:82:e6:54:
         9b:67:16:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org