Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XloLrV2YBi6LavTa2RnaPs6T6xc.roa
File:                     XloLrV2YBi6LavTa2RnaPs6T6xc.roa (raw, json)
Hash identifier:          cNiko/BXHhZO3ea/TvP1jBbMPs3f8/cOUq7vkU0pZn8=
Subject key identifier:   5E:5A:0B:AD:5D:98:06:2E:8B:6A:F4:DA:D9:19:DA:3E:CE:93:EB:17
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1DE7
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XloLrV2YBi6LavTa2RnaPs6T6xc.roa
Signing time:             Fri 01 Sep 2023 10:15:26 +0000
ROA not before:           Fri 01 Sep 2023 10:15:26 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24165
IP address blocks:        49.159.72.0/22 maxlen: 22

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7655 (0x1de7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep  1 10:15:26 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=5E5A0BAD5D98062E8B6AF4DAD919DA3ECE93EB17
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:ff:9f:5e:c0:ca:88:35:ae:0c:9a:76:8b:e2:
                    2f:28:25:03:45:61:a0:48:36:64:64:a8:f7:98:e8:
                    17:bb:99:75:46:83:d6:d6:fe:63:bb:15:ee:72:ba:
                    26:89:da:7f:3f:de:9e:31:27:b8:8b:07:00:46:13:
                    12:c5:50:0b:8c:70:fc:2f:85:a8:7f:29:f7:ac:73:
                    92:f7:84:94:43:b4:32:c6:72:10:04:a5:38:69:51:
                    fd:e2:ca:a1:19:f0:6b:c0:f1:8c:0a:b3:96:c6:4c:
                    0a:be:ed:10:ae:84:a9:62:f8:9d:b0:ab:d1:2b:fb:
                    5c:d2:5b:18:d9:1d:46:d4:89:13:bc:ce:d9:87:e2:
                    b1:52:ca:2e:2c:47:9c:cc:69:c4:e2:67:03:0e:cf:
                    79:c4:6f:d6:3e:4f:98:d9:4c:15:42:2c:8b:b9:5b:
                    db:53:6b:9d:c4:07:1b:57:76:51:09:ef:6e:c1:bc:
                    c7:45:ba:1c:78:a0:3f:cc:e1:b5:85:b0:92:87:2d:
                    72:ea:cf:bd:f6:ab:09:88:ca:30:99:34:d2:32:2b:
                    d3:1b:77:03:f2:5c:80:8f:d6:ce:9c:38:0d:2c:f3:
                    db:60:99:dc:d2:06:fe:1b:2f:ee:52:03:c2:f1:85:
                    48:aa:ec:95:5a:91:b2:72:5e:e7:be:1e:e9:3a:a1:
                    e0:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:5A:0B:AD:5D:98:06:2E:8B:6A:F4:DA:D9:19:DA:3E:CE:93:EB:17
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XloLrV2YBi6LavTa2RnaPs6T6xc.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  49.159.72.0/22

    Signature Algorithm: sha256WithRSAEncryption
         13:19:b0:85:7f:cc:c0:ec:db:30:6e:88:82:ef:45:6a:e2:e7:
         99:f8:de:9d:09:23:23:63:3a:05:8e:34:6a:04:8e:b1:64:62:
         0a:ca:b3:91:fb:a7:5f:91:e0:02:3f:5c:f3:db:d2:ec:c1:6f:
         12:89:0e:6a:a5:38:7b:02:b4:51:cb:9b:20:37:3e:a5:9f:b4:
         d9:c5:d3:66:18:24:27:df:c4:94:77:e3:b4:93:2e:31:2f:59:
         6d:11:d2:00:61:8e:91:30:f0:a3:de:fc:a9:be:45:52:15:c0:
         5b:e2:e3:59:73:d0:8e:bd:47:70:04:a9:60:21:68:24:e4:e6:
         19:c0:f2:c2:11:c7:91:74:99:7f:5f:d3:56:80:de:81:fc:f6:
         09:60:53:a6:4c:17:40:86:aa:a5:19:5d:74:8c:82:aa:57:d4:
         bd:94:a4:e8:d8:48:32:82:60:10:01:06:f9:18:92:81:6e:29:
         b3:0e:8c:5e:7f:3c:24:f7:dc:07:da:55:ad:62:fa:36:94:8f:
         8c:41:e9:b0:58:38:ac:cc:31:1d:b9:69:55:3e:98:26:b2:10:
         5e:7a:87:52:0e:e7:41:db:79:3d:f3:bb:90:a0:e1:c2:38:9f:
         bf:16:a5:ef:ac:d8:15:3a:b3:5e:3f:43:5d:ca:4f:c4:c1:54:
         56:e8:39:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:21 2024 by rpki-client on console-ams.rpki-client.org