Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fjoVEcqBhtkhNBMoIGcw5-dRsa8.roa
File:                     fjoVEcqBhtkhNBMoIGcw5-dRsa8.roa (raw, json)
Hash identifier:          V7tsEzM3cdUME95myNiXynExTxbr4iwv3R9vhJwhxIQ=
Subject key identifier:   7E:3A:15:11:CA:81:86:D9:21:34:13:28:20:67:30:E7:E7:51:B1:AF
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1E68
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fjoVEcqBhtkhNBMoIGcw5-dRsa8.roa
Signing time:             Fri 01 Sep 2023 10:16:00 +0000
ROA not before:           Fri 01 Sep 2023 10:16:00 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24164
IP address blocks:        119.77.144.0/20 maxlen: 23

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7784 (0x1e68)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep  1 10:16:00 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=7E3A1511CA8186D921341328206730E7E751B1AF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:36:9a:3f:62:10:9c:20:96:29:91:62:08:eb:
                    7b:c8:8e:c6:fa:92:61:85:9f:3d:19:c9:f5:74:d8:
                    53:41:19:a6:24:e3:4a:b8:6c:45:9f:1a:b4:c5:10:
                    c4:05:cc:e4:e7:b1:0a:91:8f:61:43:1f:d3:cf:c6:
                    1c:73:60:1c:38:ad:66:bf:54:bc:18:61:f6:3b:b7:
                    a7:5a:c3:0d:2e:b9:34:9b:f0:2c:11:89:3b:45:22:
                    a2:36:22:ed:91:98:f6:bc:39:aa:38:fe:5c:85:de:
                    fa:85:5b:2c:d0:09:ce:cd:2d:82:79:15:f1:06:4e:
                    78:72:de:05:5c:48:67:df:c2:86:7c:fe:a0:72:ee:
                    69:ad:0c:03:87:19:da:53:22:ed:8d:05:1e:dc:e6:
                    81:12:f5:62:6f:ea:c0:1f:0f:4f:ad:02:7b:51:37:
                    6d:07:e3:6e:60:73:29:01:6d:54:3b:fe:7b:f9:54:
                    71:20:5f:f5:4e:5f:03:97:70:b6:b3:e0:f7:95:61:
                    dd:76:0f:12:5d:7f:3c:56:10:f5:43:9a:d5:44:75:
                    3a:6b:79:d1:0c:b6:fb:5a:e1:9d:79:62:96:86:6e:
                    c0:f1:18:f6:01:8e:d4:a0:2c:05:9b:6a:e7:21:cb:
                    f4:06:b3:9c:1a:e9:91:3a:2c:d4:d4:59:4f:10:5d:
                    af:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:3A:15:11:CA:81:86:D9:21:34:13:28:20:67:30:E7:E7:51:B1:AF
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fjoVEcqBhtkhNBMoIGcw5-dRsa8.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  119.77.144.0/20

    Signature Algorithm: sha256WithRSAEncryption
         3e:98:bd:c7:3c:f7:4f:a6:64:f4:ec:cf:77:72:5e:00:9e:6a:
         05:93:c2:d3:2a:d9:79:85:46:53:5c:04:6e:f4:0d:7c:d4:27:
         8b:40:4a:6e:b1:f8:67:33:74:d0:85:6a:9b:c3:f8:b2:26:ed:
         e2:7d:4f:3e:a8:2f:d5:8b:86:4d:4b:b3:68:9b:c9:81:15:02:
         5a:e7:8e:96:7f:ab:00:36:7f:0a:c5:e1:24:c3:d8:6f:fc:8e:
         8e:06:74:04:f7:02:81:ce:a0:82:e3:16:63:85:33:46:21:8f:
         6b:5e:83:c9:e8:c2:08:63:75:dc:a1:39:b8:57:36:4a:0f:32:
         13:9f:19:fc:e5:00:0d:6b:41:39:1b:05:b4:d9:37:89:f7:a3:
         ff:51:6c:ca:ef:48:7c:31:f1:58:e0:96:32:54:53:a8:77:5f:
         ce:95:8d:94:36:d0:63:8e:6e:98:fa:21:1f:61:e2:0d:e5:72:
         e2:94:df:dc:e5:0b:ea:25:03:4b:ef:17:8f:aa:24:6c:56:fc:
         53:19:9e:95:12:98:9b:3d:b1:95:e6:02:93:41:fb:b8:3a:fb:
         52:ab:67:bf:19:c4:d2:c7:7b:7d:59:3e:d8:bc:98:ec:19:ca:
         c1:44:75:b6:ab:3f:cc:c6:47:0b:0b:d2:80:c1:b6:54:cb:8d:
         f5:ed:57:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org