Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/G7RlTu4_8bBqM6rB6GDmgPspxeM.roa
File:                     G7RlTu4_8bBqM6rB6GDmgPspxeM.roa (raw, json)
Hash identifier:          UPywGOmBViJ7BHgFRVTaYhoD2+kqwZMvj/k9fw+oSQg=
Subject key identifier:   1B:B4:65:4E:EE:3F:F1:B0:6A:33:AA:C1:E8:60:E6:80:FB:29:C5:E3
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1F37
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/G7RlTu4_8bBqM6rB6GDmgPspxeM.roa
Signing time:             Tue 30 Jan 2024 08:49:47 +0000
ROA not before:           Tue 30 Jan 2024 08:49:47 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24164
IP address blocks:        211.76.64.0/20 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7991 (0x1f37)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Jan 30 08:49:47 2024 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=1BB4654EEE3FF1B06A33AAC1E860E680FB29C5E3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:9a:c0:bd:9a:f0:ee:ee:d8:1e:40:24:53:2c:
                    7e:4b:60:38:5d:6c:42:f4:de:f7:47:58:33:79:c5:
                    62:6a:07:26:47:0b:59:e3:d2:b2:bb:01:c0:95:ac:
                    fd:0c:af:40:2a:89:0d:16:4b:e4:9a:08:f3:79:66:
                    4f:c9:0a:47:31:b5:54:95:cf:8e:40:02:4a:b3:9c:
                    5f:4d:c9:06:98:9b:50:19:33:11:46:1f:f2:ce:79:
                    86:92:2e:da:71:b0:31:4f:67:3b:ef:ad:90:81:d3:
                    7a:6c:34:e6:ee:f9:32:8a:fa:d5:f4:ab:e7:f1:cc:
                    60:7f:f2:61:47:b4:f1:10:6b:d3:5e:8b:22:b2:b5:
                    e0:a9:77:a4:f0:8d:2f:01:9a:49:a9:59:bd:00:6b:
                    64:63:68:8d:dc:ce:d3:19:2b:16:5b:67:63:1c:5d:
                    8d:47:9f:07:35:71:90:c6:3c:43:0b:e8:f0:33:34:
                    54:35:6a:b0:ce:3b:1c:09:d3:cb:71:55:cd:76:bd:
                    0c:da:4c:a3:77:63:81:3f:b1:7e:a6:09:0d:bd:df:
                    1d:58:25:8e:8a:bc:9b:27:3a:6f:cf:9d:81:5e:a8:
                    6a:1f:87:8d:de:8b:34:57:94:d1:fc:2a:25:16:61:
                    5d:ac:43:c3:b3:10:51:27:7a:9e:19:a3:4a:b7:3d:
                    89:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:B4:65:4E:EE:3F:F1:B0:6A:33:AA:C1:E8:60:E6:80:FB:29:C5:E3
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/G7RlTu4_8bBqM6rB6GDmgPspxeM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  211.76.64.0/20

    Signature Algorithm: sha256WithRSAEncryption
         4b:d6:f6:06:8a:c2:c3:58:3c:f2:78:ea:24:ea:d3:11:97:16:
         22:8d:6a:e4:e2:f9:e9:d3:44:4b:d2:d0:55:5d:b4:40:19:0a:
         3a:bf:bc:2f:9d:e4:19:cd:d3:e0:ff:ea:5c:10:4c:5b:16:39:
         67:c7:09:03:c6:83:4b:56:67:01:cf:71:17:dc:a1:1d:f4:05:
         d9:6b:c3:9e:bf:96:ad:ca:28:c2:a7:62:a4:04:90:c8:37:20:
         b2:87:4b:3f:6a:e1:a0:2f:84:56:6d:97:71:b0:26:9a:ac:3e:
         4b:02:1b:1d:f5:5f:ff:5e:8a:12:ea:f2:11:e0:ef:94:4a:fb:
         34:d7:8d:f1:d5:53:1d:cd:71:71:11:5e:bd:53:5a:37:8b:7d:
         9c:9d:2e:69:c0:ab:75:70:cf:0f:c0:24:57:81:c3:06:3c:85:
         e5:2b:f8:ef:79:d2:a9:f9:a0:89:4f:68:ad:73:03:ca:85:ef:
         4a:9d:b3:30:e6:9f:7b:42:2d:d5:78:28:a6:ff:61:d4:11:61:
         bf:6c:95:08:bd:a1:4d:28:f3:a5:05:59:fc:1c:cf:69:1e:ea:
         07:61:b9:82:71:bc:90:7c:bd:18:36:eb:b5:8f:7f:24:54:8b:
         c1:67:ac:46:c9:0e:96:38:01:7c:77:02:ca:a7:c1:6c:30:37:
         74:b9:9f:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org