Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/9PD5QcqYCje1qRIHftLeZ6F4Xu8.roa
File:                     9PD5QcqYCje1qRIHftLeZ6F4Xu8.roa (raw, json)
Hash identifier:          VdG0cBkkNi2Hj7o6Db6j1M8pcSU8YGx8lhxMPtdNbk4=
Subject key identifier:   F4:F0:F9:41:CA:98:0A:37:B5:A9:12:07:7E:D2:DE:67:A1:78:5E:EF
Certificate issuer:       /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial:       0C66
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/9PD5QcqYCje1qRIHftLeZ6F4Xu8.roa
Signing time:             Fri 01 Sep 2023 10:20:39 +0000
ROA not before:           Fri 01 Sep 2023 10:20:39 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24168
IP address blocks:        2405:8700:3000::/48 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3174 (0xc66)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
        Validity
            Not Before: Sep  1 10:20:39 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=F4F0F941CA980A37B5A912077ED2DE67A1785EEF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:8f:20:9f:e6:61:ca:6b:84:c9:13:ce:8a:37:
                    34:01:98:fd:c1:10:1e:50:6f:87:a4:1b:90:13:83:
                    ea:f9:ef:09:a7:92:e5:8b:b7:9e:72:f1:d0:1e:6c:
                    58:c0:ff:33:57:38:18:6e:ba:2b:28:1c:e4:10:97:
                    b5:17:4c:6c:54:bb:ac:68:0f:07:82:a4:f4:d3:8f:
                    09:4a:0c:36:2a:25:53:4c:ee:95:c1:ad:3c:a2:0a:
                    eb:e7:f6:19:8f:dd:7d:26:85:59:8a:43:1c:48:22:
                    b5:e8:b4:fc:06:0f:ed:4b:59:df:57:4f:2e:e5:32:
                    10:05:48:04:da:da:c9:b0:32:a4:b8:c6:00:70:33:
                    e1:10:59:95:a5:2d:42:96:30:07:d4:d7:15:a3:f9:
                    45:3c:3e:27:7e:75:c7:65:01:1f:da:d6:d2:ce:3c:
                    01:44:24:14:fb:9c:76:fb:71:00:85:fc:da:17:91:
                    3f:43:f9:ab:66:74:14:8a:24:78:93:0a:41:70:98:
                    b3:ba:c8:a5:bc:b3:7d:2f:78:06:42:70:82:dc:5c:
                    47:98:4b:0b:e7:8d:49:60:34:0e:c5:a7:fc:5c:ea:
                    9a:8e:d1:7d:59:df:ce:0f:1a:c4:b4:e0:58:ea:7e:
                    3a:fc:e9:7e:7b:40:62:93:66:72:a2:85:a8:80:c9:
                    2c:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:F0:F9:41:CA:98:0A:37:B5:A9:12:07:7E:D2:DE:67:A1:78:5E:EF
            X509v3 Authority Key Identifier:
                keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/9PD5QcqYCje1qRIHftLeZ6F4Xu8.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2405:8700:3000::/48

    Signature Algorithm: sha256WithRSAEncryption
         7e:1d:02:77:29:28:cd:dd:27:b3:d5:2e:30:b5:c3:81:89:c3:
         23:e0:6d:ef:e2:37:b6:a9:81:54:a4:83:71:ff:6d:a6:af:40:
         46:f2:c9:af:e1:24:45:a9:e9:1b:aa:d5:bb:c3:73:7b:e0:4a:
         40:a7:70:39:6a:e2:f9:fe:a4:81:71:5c:19:c4:fa:67:20:5a:
         6c:36:47:b3:06:95:96:8c:9d:25:76:84:0e:fb:d5:3c:6f:03:
         53:56:f9:4d:56:1d:d2:99:d3:cf:ef:00:07:33:d8:2a:4e:e1:
         77:46:70:4b:e4:87:49:3d:a9:2e:50:0b:67:95:9a:75:03:53:
         9e:00:9d:6a:83:c3:2b:41:49:c2:5d:8c:ed:89:60:c6:0a:f6:
         4b:8a:92:bb:7e:43:1d:9e:2d:14:08:fb:c5:48:e1:a7:b1:16:
         ba:70:b0:85:40:8b:51:c3:8b:14:88:9c:53:f8:f2:df:f3:d4:
         2c:b1:cd:d5:5e:02:19:f9:fe:d2:f9:0c:14:d1:74:40:4f:a0:
         f2:b4:8a:d2:85:ab:c0:d6:04:4b:d7:56:da:49:49:0c:0d:e7:
         dd:df:a8:b7:07:0a:67:b1:00:d0:e9:f9:96:35:c4:43:f9:04:
         c6:42:21:f9:ae:07:d3:e3:1a:3b:ed:76:4f:33:39:88:81:53:
         69:f4:24:f2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:22 2024 by rpki-client on console-ams.rpki-client.org