Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/n7gSVWY_13hNLJHiECwZZSGiTZY.roa
File:                     n7gSVWY_13hNLJHiECwZZSGiTZY.roa (raw, json)
Hash identifier:          eUyhfXyKNaYK+x5Fge12ENZVTwIWPhg6IK1yPZSA6WU=
Subject key identifier:   9F:B8:12:55:66:3F:D7:78:4D:2C:91:E2:10:2C:19:65:21:A2:4D:96
Certificate issuer:       /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial:       0C63
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/n7gSVWY_13hNLJHiECwZZSGiTZY.roa
Signing time:             Fri 01 Sep 2023 10:20:38 +0000
ROA not before:           Fri 01 Sep 2023 10:20:38 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     18424
IP address blocks:        103.30.46.0/23 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3171 (0xc63)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
        Validity
            Not Before: Sep  1 10:20:38 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=9FB81255663FD7784D2C91E2102C196521A24D96
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:d2:34:b2:fe:0b:16:8e:e2:13:80:a1:58:02:
                    30:19:6e:30:3e:ad:ce:e9:b8:a2:03:93:27:be:50:
                    31:f7:57:39:66:ef:19:98:92:7c:bf:94:e8:a9:bc:
                    ed:9c:93:8f:8e:2f:f8:36:f0:78:29:df:e2:c2:35:
                    10:1f:a6:0c:2d:b5:74:df:89:c3:51:5d:f3:e0:3e:
                    ca:1f:0b:5f:f3:7a:6b:e3:da:44:2d:f0:56:64:7f:
                    23:53:00:a8:be:96:71:fc:cf:2c:bc:50:84:95:af:
                    ff:98:a7:57:65:a1:9e:fb:76:7d:7f:79:3d:52:84:
                    84:28:8a:0b:35:e8:79:9b:96:4b:99:69:ef:a1:09:
                    0f:91:b9:28:0d:45:60:83:91:a3:cd:c4:71:e1:93:
                    4c:a9:e9:52:b8:16:df:04:eb:8c:ee:24:a7:d4:3d:
                    28:89:8b:9e:d3:9b:60:c1:18:53:02:35:05:46:23:
                    e4:f1:63:11:6c:90:45:79:d6:fd:23:79:0c:d8:fa:
                    62:e2:a0:ad:b8:c9:30:f0:1e:12:2e:9d:fe:30:5c:
                    ca:b2:c5:34:c6:ef:66:3a:87:58:99:ec:b2:28:e9:
                    cc:b8:fe:f4:f8:e5:eb:39:aa:91:f0:b5:c5:d6:78:
                    ba:95:83:1c:fb:8b:63:53:56:7a:fe:db:67:aa:d3:
                    ac:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:B8:12:55:66:3F:D7:78:4D:2C:91:E2:10:2C:19:65:21:A2:4D:96
            X509v3 Authority Key Identifier:
                keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/n7gSVWY_13hNLJHiECwZZSGiTZY.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.30.46.0/23

    Signature Algorithm: sha256WithRSAEncryption
         9b:81:75:b0:3e:9d:50:40:ea:87:55:94:c0:a8:e6:a0:14:47:
         5a:7e:f0:ed:7f:a7:64:69:32:96:e1:20:75:3b:11:82:8a:3e:
         6f:96:6b:8b:d6:09:c3:6d:d5:70:f3:95:cb:82:b5:28:99:54:
         ea:4a:6b:ea:81:0d:ef:a1:95:12:98:53:0a:ec:04:2a:85:80:
         a6:f1:fa:e4:ca:20:82:ad:d2:d7:45:11:cb:18:b0:b2:4b:55:
         12:72:6d:00:63:39:e9:8b:c5:21:13:98:4a:f0:cd:56:53:ff:
         01:01:5d:20:1b:89:01:96:94:6f:56:99:8c:a5:d3:8e:88:2d:
         1e:a5:8c:53:b2:9a:af:3d:3e:b5:28:28:18:60:af:00:b3:0b:
         69:65:8e:be:29:2c:61:e3:aa:c5:5e:5c:10:62:ce:96:7c:c6:
         50:37:d1:e9:ad:06:88:4a:1f:24:66:5b:dc:6e:83:75:02:56:
         8c:b7:b0:59:9b:83:69:ee:fa:60:de:d9:6f:97:82:70:56:f8:
         ee:60:b5:78:96:eb:c0:f4:3b:8c:52:45:82:8e:01:bb:7a:85:
         0f:8e:0f:2e:36:68:a9:9e:7f:d1:9c:7e:22:f0:78:34:36:2c:
         38:dc:05:46:c7:2a:e7:df:87:2a:da:cb:8d:4b:84:a5:e8:56:
         4b:7f:92:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org