Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VWTK-MBTUxaNAy3Csw9XXuV24_0.roa
File:                     VWTK-MBTUxaNAy3Csw9XXuV24_0.roa (raw, json)
Hash identifier:          eKU2TOLNdLyuGNRdJDcKvKSyPPC3JQuQQaODcvUBMMk=
Subject key identifier:   55:64:CA:F8:C0:53:53:16:8D:03:2D:C2:B3:0F:57:5E:E5:76:E3:FD
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1E1F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VWTK-MBTUxaNAy3Csw9XXuV24_0.roa
Signing time:             Fri 01 Sep 2023 10:15:42 +0000
ROA not before:           Fri 01 Sep 2023 10:15:42 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24164
IP address blocks:        180.218.128.0/22 maxlen: 22

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7711 (0x1e1f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep  1 10:15:42 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=5564CAF8C05353168D032DC2B30F575EE576E3FD
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:08:82:71:ba:02:2d:80:3e:53:21:0c:09:14:
                    5a:21:2f:2b:42:05:64:b3:20:2c:35:37:46:b0:94:
                    fa:3a:2a:39:62:02:48:17:31:6d:8f:74:01:99:30:
                    59:25:85:9d:31:b0:15:81:f2:0e:7c:25:de:66:0d:
                    e1:d4:71:a0:60:53:ea:92:2d:e1:c5:3e:e1:6b:cc:
                    1b:47:77:2d:99:1f:72:a5:06:11:ea:79:52:41:45:
                    19:0d:49:da:7b:32:38:59:c0:78:67:5a:a5:ea:a8:
                    7e:37:b5:2c:25:48:e3:1f:cd:3f:db:84:72:b1:90:
                    f4:e9:43:e7:0e:42:3d:88:17:11:af:75:7e:b6:b8:
                    eb:16:93:14:b8:14:52:6b:7d:ae:b6:5a:79:02:e7:
                    2d:6c:6b:a9:07:e2:48:02:ff:44:bb:ea:81:fe:bc:
                    6b:e4:11:d9:5a:b1:b6:00:5a:dc:8c:56:c3:a4:20:
                    c0:ab:57:80:de:c9:d0:36:a8:2d:a2:4b:30:a3:7d:
                    18:64:53:79:3f:fb:d7:91:82:35:d3:ac:24:6b:ea:
                    e7:db:51:a6:a7:1f:05:58:d1:6f:71:e4:82:7a:ba:
                    0f:f5:6a:c1:33:a7:a7:39:6b:38:3c:02:2a:10:82:
                    19:01:12:db:3d:83:b7:4b:94:d4:9f:5e:e2:01:46:
                    79:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:64:CA:F8:C0:53:53:16:8D:03:2D:C2:B3:0F:57:5E:E5:76:E3:FD
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VWTK-MBTUxaNAy3Csw9XXuV24_0.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.218.128.0/22

    Signature Algorithm: sha256WithRSAEncryption
         15:3b:59:f8:0b:30:d7:bd:9c:7d:44:f4:33:84:51:90:db:34:
         15:fd:43:f5:35:89:dc:90:1e:ce:e2:94:74:80:64:62:47:e9:
         c3:79:7a:22:d6:1c:82:88:66:35:da:92:89:25:ec:5b:47:1b:
         1e:ee:55:f6:4b:ed:c8:1b:77:d3:4d:03:6b:e3:42:0f:36:0b:
         79:8d:1f:95:a5:f1:42:ca:1f:1f:b2:95:5f:3a:e2:b7:28:98:
         5a:42:8c:0a:8e:4c:3c:6b:d5:bb:fc:3b:8e:26:24:02:f6:10:
         1f:dd:7a:7e:e1:6c:81:f9:6e:2a:c7:b3:4c:88:b3:26:34:8d:
         fc:80:0b:c8:56:46:2d:0b:ac:b2:5f:ee:7c:ec:5b:5c:0b:c9:
         32:eb:51:46:d0:93:91:e8:fa:cb:63:16:c0:54:8f:2f:eb:eb:
         b1:51:39:f9:96:85:19:4b:3c:3d:44:f3:9c:a3:d9:fe:a5:c5:
         10:29:eb:e3:6d:82:36:88:fb:0f:b2:5e:17:e7:7e:57:e6:7c:
         8d:51:3c:54:fd:0f:52:b8:66:a5:b8:b1:e4:f0:b5:17:85:ff:
         6b:59:e7:49:ef:da:23:5f:a2:78:39:3d:9b:c1:c7:eb:97:2c:
         a2:50:75:3b:b7:18:31:6c:06:5f:07:e6:a9:2d:56:64:41:d7:
         98:7a:1e:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org