Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vNQTuvic5fLhaqWy-EVcx-Km03w.roa
File:                     vNQTuvic5fLhaqWy-EVcx-Km03w.roa (raw, json)
Hash identifier:          xQMz8vOmirepAzMECJmEdsC5IOjjt2jDTRcyeNwakf8=
Subject key identifier:   BC:D4:13:BA:F8:9C:E5:F2:E1:6A:A5:B2:F8:45:5C:C7:E2:A6:D3:7C
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1DA0
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vNQTuvic5fLhaqWy-EVcx-Km03w.roa
Signing time:             Fri 01 Sep 2023 10:15:05 +0000
ROA not before:           Fri 01 Sep 2023 10:15:05 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24164
IP address blocks:        49.158.216.0/22 maxlen: 22

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7584 (0x1da0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep  1 10:15:05 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=BCD413BAF89CE5F2E16AA5B2F8455CC7E2A6D37C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:fb:9e:98:88:38:f2:35:e9:a6:7c:c5:26:7e:
                    41:3e:1e:5f:0e:3a:57:bf:1a:29:c2:44:72:78:e6:
                    d9:4f:2f:b5:73:e3:1e:d8:14:55:b3:e2:45:01:b9:
                    83:a4:a9:37:5f:ac:19:df:fa:2f:b9:46:63:94:8e:
                    e8:f8:ca:5c:55:14:ce:fe:65:62:01:0b:5d:f8:c6:
                    06:3a:17:4a:36:a8:53:77:9c:4f:04:13:f4:3a:ca:
                    2e:ee:1b:7a:f2:5c:e5:5f:a8:eb:1d:90:ad:cc:ab:
                    9e:89:07:58:ea:fe:da:8e:e2:ed:26:2e:cc:4c:f4:
                    6d:c8:2a:d4:87:bc:ba:d2:45:36:15:f1:fa:75:9f:
                    a9:87:66:51:42:f1:49:5a:da:f2:49:c8:ae:9b:34:
                    f1:18:5a:c5:7c:03:25:42:e5:90:0e:33:78:3c:fd:
                    ec:61:60:d7:f7:54:ce:4d:b7:92:28:9c:78:94:77:
                    c8:d6:2e:4f:63:65:1a:be:f8:cc:e1:16:a9:b6:2f:
                    71:70:28:c8:0f:e3:58:98:5c:65:ac:30:fa:ac:ea:
                    20:92:a8:19:a5:fc:4a:bb:c4:55:a3:f8:46:e0:40:
                    71:72:76:75:22:b3:04:47:e8:04:94:06:d4:43:6c:
                    05:06:04:8f:d2:b6:5d:39:65:14:6c:c8:65:63:b5:
                    8d:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:D4:13:BA:F8:9C:E5:F2:E1:6A:A5:B2:F8:45:5C:C7:E2:A6:D3:7C
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vNQTuvic5fLhaqWy-EVcx-Km03w.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  49.158.216.0/22

    Signature Algorithm: sha256WithRSAEncryption
         1d:69:35:b8:c3:2d:24:5c:de:8a:01:43:0b:8f:74:a2:39:3b:
         83:cd:68:95:a7:2f:e0:1f:56:6e:86:98:c6:58:a9:ee:4e:c1:
         4e:fc:ef:9a:08:06:12:c0:56:b2:fc:8e:df:8f:9a:2f:37:dc:
         d8:83:7d:1a:b3:10:7d:ec:d7:e5:51:d1:76:2d:80:9d:c2:3d:
         79:30:1c:b4:a9:dd:ef:d2:80:c0:e2:d6:02:d3:69:df:37:77:
         42:c1:03:a2:7b:4e:81:f4:1a:6e:c9:dc:a4:04:1d:6c:b1:c1:
         d5:f7:be:71:ca:11:0c:f9:3a:b2:45:fb:01:80:0a:49:cf:9d:
         a6:04:ca:f1:46:c7:0d:dc:3d:0f:10:84:47:99:97:30:38:85:
         3a:fd:37:11:e2:60:7e:6d:9d:7a:94:f5:94:88:89:6c:81:5d:
         d0:e8:da:72:e2:69:c0:48:10:bd:81:b2:46:62:1e:78:0e:9e:
         16:ce:bd:a0:7f:7f:0d:24:72:4f:46:dd:f4:2f:97:8c:ec:7d:
         2c:d0:6a:7d:f1:d7:3f:5e:a1:6d:b4:95:b1:2b:a1:90:f2:c8:
         13:21:a0:9c:f7:d5:e9:1d:0e:dc:1b:d1:b2:43:c0:ff:03:b0:
         89:54:3e:86:75:21:4d:e0:a9:dc:ff:68:c7:32:09:f0:44:46:
         62:d8:cb:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org