Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tNtiD4jf_QS-48J5GRD7_EHrjAY.roa
File:                     tNtiD4jf_QS-48J5GRD7_EHrjAY.roa (raw, json)
Hash identifier:          CRy2prg2TZNmaAG1AQ4sPIbTDCKLc/5nanad7mOMlr8=
Subject key identifier:   B4:DB:62:0F:88:DF:FD:04:BE:E3:C2:79:19:10:FB:FC:41:EB:8C:06
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1DA1
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tNtiD4jf_QS-48J5GRD7_EHrjAY.roa
Signing time:             Fri 01 Sep 2023 10:15:05 +0000
ROA not before:           Fri 01 Sep 2023 10:15:05 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24164
IP address blocks:        49.159.48.0/21 maxlen: 21

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7585 (0x1da1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep  1 10:15:05 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=B4DB620F88DFFD04BEE3C2791910FBFC41EB8C06
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:4e:f9:0e:27:a7:17:62:a3:a1:61:89:c5:d9:
                    3a:76:18:d8:43:58:b5:3c:59:32:d0:8f:70:1f:b1:
                    7c:ea:ab:38:d6:96:31:6f:ea:85:f2:95:19:fc:d6:
                    49:72:89:b7:c3:3d:46:8f:c6:8f:25:10:47:a6:4c:
                    0b:e9:69:d4:e3:03:b6:10:40:71:40:1a:63:da:19:
                    18:39:4d:54:1a:fa:d6:df:2a:10:67:6d:09:db:9f:
                    57:cd:7c:9b:c7:ee:20:9b:38:d6:ec:4a:22:7d:bc:
                    fa:37:3e:9c:aa:2c:f1:1c:2b:cb:79:f3:ba:f0:74:
                    4a:65:f3:e5:99:cd:a7:2a:4a:56:9c:7c:74:ba:67:
                    f7:c5:89:de:ee:28:1f:86:b2:17:69:5a:a5:1e:af:
                    4b:d6:9e:76:a6:57:9b:c5:be:e3:9b:9d:e0:06:74:
                    9a:e1:6e:21:09:7d:bf:39:c5:d8:b8:a2:db:35:0f:
                    27:82:54:33:33:45:c6:59:fc:c4:0f:37:36:98:f2:
                    42:a5:1e:5a:95:a0:2e:04:5f:cf:e1:99:3e:a8:70:
                    46:3b:d1:a4:03:d9:05:3b:6d:9a:80:dc:c5:fe:94:
                    a4:14:8d:63:b6:bd:ca:b1:55:26:a6:4d:29:62:e2:
                    6e:d0:c7:c5:a5:bd:7b:18:f4:65:4e:ea:c1:1c:05:
                    51:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:DB:62:0F:88:DF:FD:04:BE:E3:C2:79:19:10:FB:FC:41:EB:8C:06
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tNtiD4jf_QS-48J5GRD7_EHrjAY.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  49.159.48.0/21

    Signature Algorithm: sha256WithRSAEncryption
         50:12:a7:5f:29:c0:8d:fa:da:22:09:18:cb:e8:c6:c7:21:57:
         54:cc:ad:4a:13:eb:2a:c3:dd:e9:b2:08:59:4e:c5:29:25:b2:
         a0:89:82:3f:14:6a:c9:3a:71:56:bb:0d:0e:99:1a:f4:ff:9d:
         7a:4a:0a:46:f1:d1:35:c4:09:9d:79:fb:49:fd:68:56:ea:39:
         c0:d1:77:bc:b7:69:f0:6a:a5:8b:bb:5b:e8:2c:97:3f:1b:b5:
         62:a7:cd:b7:e8:24:19:4f:86:83:0c:9b:82:13:37:6d:2d:bf:
         79:40:bc:b9:fa:b4:62:f7:d9:c7:0b:a0:5a:27:4c:d0:2d:cc:
         5b:ac:37:81:9b:3f:9e:34:28:0f:74:8c:4a:3f:a8:7d:5b:60:
         1a:a7:a8:55:34:9e:90:5e:2a:0e:d2:6f:8e:8e:5f:64:20:57:
         6c:3a:80:45:7b:9d:9a:4f:54:ad:02:6f:56:ff:66:d7:1f:b2:
         fa:bc:27:bf:f7:0d:21:70:4c:c7:28:a8:b8:6c:1a:f2:a6:94:
         9f:84:f4:f3:ad:75:5c:c7:a0:f3:5c:05:c0:4f:c4:92:5d:cc:
         cb:24:79:91:72:2f:aa:89:8e:71:bc:9e:77:ee:46:11:89:39:
         5a:c0:ac:ec:0f:b1:90:91:af:fa:c1:db:75:05:6e:69:ef:da:
         da:e7:83:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org