Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/5ijo_Fz9RSaNs0u4Y80NJOrIeVE.roa
File:                     5ijo_Fz9RSaNs0u4Y80NJOrIeVE.roa (raw, json)
Hash identifier:          3Pbei0HfC2lQX8eqP5+U/fZSX7Oj3gdEu4ecYRw09KM=
Subject key identifier:   E6:28:E8:FC:5C:FD:45:26:8D:B3:4B:B8:63:CD:0D:24:EA:C8:79:51
Certificate issuer:       /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial:       0C58
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/5ijo_Fz9RSaNs0u4Y80NJOrIeVE.roa
Signing time:             Fri 01 Sep 2023 10:20:35 +0000
ROA not before:           Fri 01 Sep 2023 10:20:35 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     18424
IP address blocks:        121.50.147.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3160 (0xc58)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
        Validity
            Not Before: Sep  1 10:20:35 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=E628E8FC5CFD45268DB34BB863CD0D24EAC87951
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:89:dd:71:ca:a0:01:01:d5:d0:33:cd:a1:b3:
                    d0:0a:f9:d5:d5:48:7d:61:3b:26:2f:55:15:63:aa:
                    33:95:49:69:f3:96:4b:bc:31:37:31:83:60:2f:c8:
                    16:9d:d0:27:09:25:bb:8e:db:15:85:1a:e3:85:a2:
                    42:74:7b:d5:87:44:c5:ba:64:81:23:d1:16:39:06:
                    52:21:8c:19:63:19:a0:89:a7:03:58:50:a2:86:d4:
                    24:3d:08:36:04:7c:78:80:ac:7d:3d:07:a7:01:b4:
                    bc:83:e9:78:27:6b:c6:ce:90:3f:e9:ef:d6:f8:3d:
                    6a:20:2b:66:7e:91:3c:cb:66:3d:19:40:55:25:cc:
                    94:40:de:81:88:64:4d:fc:32:49:5c:01:de:ae:a8:
                    32:18:cb:29:da:6c:fe:c8:a5:14:de:80:1b:ac:69:
                    0e:d0:cc:fe:eb:95:1d:7e:42:1c:3e:a4:e2:b2:f0:
                    1f:9b:89:9a:92:dc:ba:95:f2:27:a4:dd:cc:8f:66:
                    cd:a9:12:5b:e3:68:07:2b:bf:41:94:1b:50:2d:47:
                    13:4a:88:19:56:cf:db:b7:66:fa:39:37:11:4e:29:
                    fb:bd:59:09:6a:2a:e9:14:e7:9e:7d:4f:48:cc:2d:
                    91:09:23:27:b0:50:f1:69:95:fb:df:68:06:dc:24:
                    04:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:28:E8:FC:5C:FD:45:26:8D:B3:4B:B8:63:CD:0D:24:EA:C8:79:51
            X509v3 Authority Key Identifier:
                keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/5ijo_Fz9RSaNs0u4Y80NJOrIeVE.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  121.50.147.0/24

    Signature Algorithm: sha256WithRSAEncryption
         b5:f0:f7:4b:b6:db:c5:f6:54:d1:e2:71:4c:b7:ae:87:5b:72:
         2a:fb:17:27:e9:44:a5:75:c9:66:94:9f:3e:7e:29:af:f8:7c:
         6b:0d:97:9d:21:37:a2:a1:9d:68:30:11:ad:38:e6:03:f1:05:
         ee:1d:af:e5:95:91:36:19:03:96:4d:1d:80:92:1d:e6:c4:db:
         42:fd:de:db:30:b6:72:55:95:86:2b:e5:aa:48:4f:ff:6e:97:
         f3:d3:c6:92:e1:cf:e5:51:dd:16:3f:6c:c5:71:74:50:7d:81:
         28:ae:fd:9a:be:78:31:80:90:66:15:78:75:38:aa:7d:96:b4:
         e0:ac:3c:7d:45:8e:cd:77:7d:c2:6e:17:54:26:e1:c5:33:de:
         b3:d5:c2:1b:ed:8a:d9:ba:69:9b:76:e1:de:14:39:48:6a:f0:
         83:b0:31:66:d0:0e:d8:57:d8:f0:79:61:ec:71:dd:3d:33:d4:
         d5:bf:21:ed:c4:92:62:55:51:5b:b4:2a:77:b7:d5:cf:13:8f:
         e3:84:df:ef:f2:56:e1:32:a6:fa:c1:92:d8:74:ce:52:b0:a1:
         f3:66:8d:63:12:72:4d:c0:57:e3:a8:3c:91:38:c9:9a:24:69:
         6b:0a:9a:3a:77:4c:7b:4a:70:12:14:8a:dd:d4:1e:8f:b2:44:
         d3:aa:ad:ab
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICDFgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3
RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMzA5MDEx
MDIwMzVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU2MjhFOEZDNUNGRDQ1
MjY4REIzNEJCODYzQ0QwRDI0RUFDODc5NTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2id1xyqABAdXQM82hs9AK+dXVSH1hOyYvVRVjqjOVSWnzlku8
MTcxg2AvyBad0CcJJbuO2xWFGuOFokJ0e9WHRMW6ZIEj0RY5BlIhjBljGaCJpwNY
UKKG1CQ9CDYEfHiArH09B6cBtLyD6Xgna8bOkD/p79b4PWogK2Z+kTzLZj0ZQFUl
zJRA3oGIZE38MklcAd6uqDIYyynabP7IpRTegBusaQ7QzP7rlR1+Qhw+pOKy8B+b
iZqS3LqV8iek3cyPZs2pElvjaAcrv0GUG1AtRxNKiBlWz9u3Zvo5NxFOKfu9WQlq
KukU5559T0jMLZEJIyewUPFplfvfaAbcJAQPAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQU5ijo/Fz9RSaNs0u4Y80NJOrIeVEwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN
caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ
V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOLzVpam9fRno5UlNh
TnMwdTRZODBOSk9ySWVWRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAB5MpMwDQYJKoZIhvcNAQELBQADggEBALXw90u228X2VNHicUy3rodbcir7
FyfpRKV1yWaUnz5+Ka/4fGsNl50hN6KhnWgwEa045gPxBe4dr+WVkTYZA5ZNHYCS
HebE20L93tswtnJVlYYr5apIT/9ul/PTxpLhz+VR3RY/bMVxdFB9gSiu/Zq+eDGA
kGYVeHU4qn2WtOCsPH1Fjs13fcJuF1Qm4cUz3rPVwhvtitm6aZt24d4UOUhq8IOw
MWbQDthX2PB5Yexx3T0z1NW/Ie3EkmJVUVu0Kne31c8Tj+OE3+/yVuEypvrBkth0
zlKwofNmjWMSck3AV+OoPJE4yZokaWsKmjp3THtKcBIUit3UHo+yRNOqras=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:22 2024 by rpki-client on console-ams.rpki-client.org