Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IKxQM5Txom7XqlPJwxCTgnWQNUc.roa
File:                     IKxQM5Txom7XqlPJwxCTgnWQNUc.roa (raw, json)
Hash identifier:          gzo6hANfLIfWVQg3Ra7uHMjUWOtBWaFpLZxUeCyCCTQ=
Subject key identifier:   20:AC:50:33:94:F1:A2:6E:D7:AA:53:C9:C3:10:93:82:75:90:35:47
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1DDF
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IKxQM5Txom7XqlPJwxCTgnWQNUc.roa
Signing time:             Fri 01 Sep 2023 10:15:24 +0000
ROA not before:           Fri 01 Sep 2023 10:15:24 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24164
IP address blocks:        180.218.56.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7647 (0x1ddf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep  1 10:15:24 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=20AC503394F1A26ED7AA53C9C310938275903547
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:cd:70:85:11:75:c2:2f:1e:c4:41:93:8b:e0:
                    e2:3f:38:e4:2f:1e:36:67:38:a6:7c:73:3e:d9:3c:
                    ef:41:05:2c:26:a3:9f:91:fe:ad:7e:de:bf:16:9d:
                    2d:8e:45:09:15:a9:ab:02:71:5e:ad:82:dd:f4:45:
                    28:f6:90:4e:a7:62:4d:2b:63:63:da:7b:b4:0b:2f:
                    3e:42:67:14:54:4d:18:10:48:8e:da:d8:03:68:68:
                    1c:15:58:89:da:28:94:f4:95:cc:34:2c:e2:2d:6f:
                    ce:b8:04:d3:8a:a4:8b:72:8d:16:66:42:04:d8:c2:
                    e9:ce:cd:fb:eb:e5:05:bd:06:8b:38:0e:46:17:bf:
                    13:f7:5b:e9:fd:12:00:fb:d5:b2:08:d6:b2:b6:91:
                    1d:26:b8:1d:2d:a1:1b:55:21:04:06:e2:e1:8e:5b:
                    c1:06:96:c0:e0:e0:ab:ef:3d:e4:14:28:14:fa:9b:
                    f5:21:61:9b:d7:28:8d:fa:3e:72:29:2c:27:94:3b:
                    92:11:c8:25:f7:7a:22:fc:1b:7c:03:80:8f:ef:aa:
                    f5:47:1b:3f:a5:f3:81:c1:06:76:0a:bd:d8:1b:f9:
                    a2:22:13:da:d5:83:a0:5f:30:3b:ab:22:38:45:d1:
                    74:c9:f7:2c:20:b4:e0:0d:6e:2c:60:22:2e:89:48:
                    e6:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                20:AC:50:33:94:F1:A2:6E:D7:AA:53:C9:C3:10:93:82:75:90:35:47
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IKxQM5Txom7XqlPJwxCTgnWQNUc.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.218.56.0/24

    Signature Algorithm: sha256WithRSAEncryption
         9e:5b:37:1e:5e:f0:c8:3c:32:10:12:cc:e5:af:0a:56:48:41:
         b3:c2:2c:11:73:a8:60:2c:c2:5b:02:9b:88:e2:6e:bf:aa:d8:
         89:8f:bf:1a:c4:e6:71:c6:8e:b4:3c:2f:c7:c4:67:15:87:9f:
         6b:7f:75:83:b9:8f:8c:4c:4d:d1:12:f9:0e:c4:c9:39:f7:3b:
         69:e0:28:e7:94:96:b9:64:b9:65:bf:0b:59:6a:76:db:ea:38:
         30:7a:bd:57:2b:43:e6:b7:49:83:1f:6d:2e:1e:14:eb:13:0e:
         3d:54:6b:a9:b3:b3:48:0b:fd:ab:77:68:7a:6d:e3:8c:91:e8:
         ba:a3:48:61:eb:fc:fe:c4:e2:db:41:38:fe:aa:0b:f6:7b:fd:
         74:97:2c:78:df:ce:5d:4a:57:12:2f:7b:5b:04:0d:7b:2c:78:
         c7:ce:db:ed:e4:56:c0:9a:3a:d0:f8:e7:e6:74:22:75:f8:1f:
         0e:cc:e0:53:3d:cc:34:13:30:39:50:6e:78:9f:e9:a3:3a:1f:
         ba:0f:2e:2f:ee:5d:1a:aa:9b:cc:a6:65:29:b7:dc:ad:0f:84:
         fa:46:52:9b:92:c6:4e:d0:d4:dc:64:d9:af:72:c4:cc:56:bf:
         a5:5e:8b:f1:fa:b6:e5:2e:c6:d6:56:26:9c:43:67:69:38:49:
         f9:9e:cd:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org