Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gc7Qy5HWX8Wxpeli9x1zTiu-xo4.roa
File:                     gc7Qy5HWX8Wxpeli9x1zTiu-xo4.roa (raw, json)
Hash identifier:          NoNFlnylWKs8NGHoABgKSx+kvySh2n+ChFki2Zsl25Q=
Subject key identifier:   81:CE:D0:CB:91:D6:5F:C5:B1:A5:E9:62:F7:1D:73:4E:2B:BE:C6:8E
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1D5D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gc7Qy5HWX8Wxpeli9x1zTiu-xo4.roa
Signing time:             Fri 01 Sep 2023 10:14:43 +0000
ROA not before:           Fri 01 Sep 2023 10:14:43 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24164
IP address blocks:        180.218.140.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7517 (0x1d5d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep  1 10:14:43 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=81CED0CB91D65FC5B1A5E962F71D734E2BBEC68E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:66:44:66:af:49:53:34:a9:7a:3c:78:f0:45:
                    ab:78:11:9e:17:11:49:78:c5:da:91:e7:51:6b:63:
                    00:f7:e6:db:af:04:04:ac:8b:cf:04:97:f7:d7:e3:
                    c0:7f:20:a3:39:e3:54:25:71:4a:cb:4a:7b:7d:cc:
                    83:be:4e:4b:e8:de:5a:a3:67:a5:bb:2c:97:fe:4d:
                    a5:d9:93:7f:32:95:1a:05:22:50:cd:21:80:00:03:
                    9e:39:6e:56:4f:e9:dc:1a:f6:e2:bf:ac:f7:30:38:
                    14:e8:5b:ce:a0:4e:ed:a3:3f:22:3f:03:b9:bb:8b:
                    1a:f0:89:08:1e:f1:f6:90:15:16:f6:f8:63:9a:b8:
                    f3:d1:07:b0:e8:1d:8a:b0:fd:ff:c5:76:ab:6a:62:
                    74:12:19:23:db:94:52:38:e9:da:d0:47:22:6f:b9:
                    82:62:f5:25:3c:45:f8:49:3a:1b:45:7e:51:57:0d:
                    fd:cd:6f:a5:f9:6e:91:ef:cb:a2:8b:2c:85:28:eb:
                    75:22:c7:b4:e8:32:74:41:3c:60:0d:0a:cf:c2:1f:
                    6a:14:35:d2:2b:44:9f:6a:dc:f0:f1:40:72:5a:f8:
                    dc:b0:a8:6d:d7:87:c3:d5:53:89:0e:d1:58:5f:43:
                    bf:10:56:c1:ba:4d:c8:68:04:c6:2a:f3:46:b0:fa:
                    34:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:CE:D0:CB:91:D6:5F:C5:B1:A5:E9:62:F7:1D:73:4E:2B:BE:C6:8E
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gc7Qy5HWX8Wxpeli9x1zTiu-xo4.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.218.140.0/24

    Signature Algorithm: sha256WithRSAEncryption
         2b:64:c0:dc:12:de:ca:18:fe:3f:b7:84:6c:05:22:d7:fc:99:
         8a:eb:66:e7:16:c8:76:48:5b:b4:23:1e:f7:cd:49:64:5f:e9:
         a5:39:10:9d:c3:df:4c:b6:3d:09:ce:f9:89:9c:24:22:5b:76:
         41:10:92:c1:f4:8d:d1:9e:17:8d:17:80:b9:e7:ac:44:1a:70:
         01:65:d1:2f:3d:79:c5:74:8a:46:7b:9a:53:73:69:1b:1c:1a:
         18:9a:a6:87:25:95:94:d2:ea:2f:62:88:6a:fc:d6:a1:a3:71:
         9c:3e:0c:ff:34:86:12:e7:89:06:91:f8:13:67:eb:44:64:37:
         93:12:3b:7c:b2:06:16:d3:ff:88:fb:64:d9:1b:8a:2f:8c:74:
         fd:ca:06:81:4e:70:03:02:cc:89:58:e0:74:15:75:b8:63:38:
         6f:9c:27:1c:01:ff:7d:ae:90:72:86:09:13:11:57:ed:db:e1:
         a8:cc:28:f6:d6:f5:ad:b3:e2:82:77:e3:d7:83:51:7e:38:85:
         d6:6d:c0:10:51:01:69:5e:63:ed:8d:ad:27:8d:dc:df:73:1c:
         29:de:8a:c1:f1:e6:56:c5:31:6c:fc:aa:5d:4b:c7:71:ab:c6:
         a5:b4:5d:a3:ff:24:0f:9e:ef:bd:4a:36:ad:d8:e9:c4:69:78:
         43:b5:bc:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org