Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/b7qhpPURkdw35V1-PpW7qD7M86A.roa
File: b7qhpPURkdw35V1-PpW7qD7M86A.roa (raw, json)
Hash identifier: w1GVj7gb8g5UwIp8SH4vqyaEddGltUddDzPCNIW0BRY=
Subject key identifier: 6F:BA:A1:A4:F5:11:91:DC:37:E5:5D:7E:3E:95:BB:A8:3E:CC:F3:A0
Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221
Certificate serial: 01D7
Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/b7qhpPURkdw35V1-PpW7qD7M86A.roa
Signing time: Sat 04 Jun 2022 00:54:48 +0000
ROA not before: Sat 04 Jun 2022 00:54:48 +0000
ROA not after: Fri 02 Jun 2023 05:30:26 +0000
asID: 7018
IP address blocks: 180.223.208.0/21 maxlen: 24
180.223.224.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 471 (0x1d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221
Validity
Not Before: Jun 4 00:54:48 2022 GMT
Not After : Jun 2 05:30:26 2023 GMT
Subject: CN=6FBAA1A4F51191DC37E55D7E3E95BBA83ECCF3A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c9:30:f8:a2:db:e8:5f:4f:60:6a:7d:8d:2b:
64:b7:96:48:47:a8:4e:39:79:2f:fc:1c:5d:e4:e4:
85:aa:d8:73:72:70:50:39:b0:0d:6d:1f:2f:6a:e7:
be:e6:7f:00:4a:4e:e6:08:57:75:57:92:0d:9b:19:
aa:a4:ba:ff:28:af:7a:aa:1b:ad:f8:fd:19:7d:97:
9c:99:57:00:f8:44:7b:47:2a:cc:01:89:64:57:62:
0d:55:dc:27:3f:d7:bf:a9:fd:78:18:d9:8f:ba:5e:
59:0a:9a:8d:43:81:a7:86:c3:0f:76:f5:76:df:54:
a8:c2:31:fa:e0:5d:c1:fb:1e:d0:1a:47:98:da:7b:
f6:4b:d3:6c:77:51:a6:b5:d0:08:80:63:70:e6:40:
87:6c:e0:eb:4f:50:ee:a2:bd:0f:3a:ae:b0:cb:b5:
b3:53:95:20:a5:6d:62:d8:c6:d2:a7:e2:42:5c:0d:
96:d9:58:03:df:af:df:73:a1:6b:16:d8:39:50:98:
92:48:3e:42:2f:d3:aa:5f:08:f9:89:f3:51:7b:8f:
b3:22:7a:6d:47:e6:2a:c0:3a:ee:02:41:8e:33:bd:
4d:b1:e2:cf:81:08:bb:2e:79:4e:95:ea:fa:cf:88:
f0:0b:be:02:fd:15:5a:fb:e6:42:e6:54:14:df:d3:
e5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:BA:A1:A4:F5:11:91:DC:37:E5:5D:7E:3E:95:BB:A8:3E:CC:F3:A0
X509v3 Authority Key Identifier:
keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/b7qhpPURkdw35V1-PpW7qD7M86A.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.223.208.0/21
180.223.224.0/21
Signature Algorithm: sha256WithRSAEncryption
4f:7f:09:db:0a:bf:29:83:f5:25:5f:74:e9:41:f0:64:7a:30:
69:51:a6:e8:b6:eb:f0:cd:b8:a8:82:25:78:ba:b6:b9:48:3b:
d2:48:51:11:24:b3:af:9b:29:0d:88:56:af:11:4c:f3:0d:5f:
18:87:12:f5:a5:08:17:c5:b0:e1:fa:02:5d:52:0d:9f:55:d4:
a7:98:55:c5:40:c2:a8:1b:16:35:4f:cc:d7:53:13:23:73:c4:
53:a1:76:52:41:b5:d9:8e:c2:24:49:49:aa:33:ae:be:f9:49:
09:4a:94:dc:d8:bb:39:d9:21:13:ee:82:1a:79:7b:a5:0a:df:
d7:0f:d5:8b:8e:bd:b1:6d:de:39:7d:fd:68:68:96:ef:13:06:
ae:03:95:d1:85:c1:10:e8:88:16:1f:2f:85:23:ee:57:4a:8d:
51:7b:af:80:69:4a:68:4b:9a:35:72:65:75:3c:0f:98:df:7f:
bf:1a:64:0b:e8:9d:c3:0b:7b:a5:90:0c:5a:79:a8:eb:71:3d:
81:cc:c7:09:8b:2d:55:5c:63:b9:2f:5b:5f:c7:f0:a5:90:17:
de:c6:36:16:d1:7c:5a:50:ae:8f:88:be:b0:47:31:d0:91:2d:
99:34:a0:83:d8:4d:0b:a5:65:24:1c:51:e1:c0:9f:a7:c4:d2:
72:56:b5:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:21 2023 by rpki-client on console-fra.rpki-client.org