Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1030/v7BCrE2vagBj7IKaaD72gqvDsZg.roa
File: v7BCrE2vagBj7IKaaD72gqvDsZg.roa (raw, json)
Hash identifier: 35v0vkO/Pxf5ZzM1m6kgzGZZX6mDLFimhwTmlHj8J5g=
Subject key identifier: BF:B0:42:AC:4D:AF:6A:00:63:EC:82:9A:68:3E:F6:82:AB:C3:B1:98
Certificate issuer: /CN=7AB6E2F4C45731D03C27AEAFDD608611871B423C
Certificate serial: 0CA8
Authority key identifier: 7A:B6:E2:F4:C4:57:31:D0:3C:27:AE:AF:DD:60:86:11:87:1B:42:3C
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/erbi9MRXMdA8J66v3WCGEYcbQjw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/v7BCrE2vagBj7IKaaD72gqvDsZg.roa
Signing time: Wed 13 Mar 2024 01:23:30 +0000
ROA not before: Wed 13 Mar 2024 01:23:30 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 131482
IP address blocks: 103.43.192.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3240 (0xca8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7AB6E2F4C45731D03C27AEAFDD608611871B423C
Validity
Not Before: Mar 13 01:23:30 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=BFB042AC4DAF6A0063EC829A683EF682ABC3B198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1d:62:9e:9d:7c:c4:ee:46:25:e7:d3:38:6f:
35:a9:a9:a0:b9:33:d6:ba:b0:a2:36:a3:6a:8f:72:
17:8c:a0:09:95:24:55:9f:f2:1e:82:47:f9:76:20:
c3:0f:52:97:91:55:ea:e9:bc:48:a2:c0:da:c6:fc:
a8:9e:6b:5d:4a:6a:b6:aa:a1:20:5b:34:e4:27:ce:
f1:df:b0:c7:57:dc:db:b5:e3:6f:fd:9a:fa:e4:38:
3c:cb:4c:52:33:49:f0:50:fd:84:69:9f:d8:4e:ba:
ff:78:ee:9d:a8:d7:01:3b:33:c9:3e:0e:05:09:66:
dd:e9:c1:f0:99:95:5a:19:63:6f:af:c8:e2:91:c3:
66:a4:1c:cf:3b:d1:9e:ba:6c:18:61:2c:dd:54:69:
11:8f:31:89:6b:92:7e:a2:27:24:a0:63:41:cf:27:
e7:21:68:47:96:b7:30:25:cb:5a:5b:4a:08:2a:0f:
22:39:d2:df:a8:34:0a:8e:f5:75:f5:41:df:d5:dc:
b4:af:bc:04:3a:0d:42:1c:fc:43:1d:03:90:d5:c3:
f5:11:a1:b6:67:f0:0b:63:b1:6b:bc:be:34:b9:7d:
33:45:af:ed:2c:81:8b:1c:76:e8:b9:14:41:30:b5:
eb:03:65:08:24:b5:44:79:3b:86:64:6a:b5:03:ed:
4c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B0:42:AC:4D:AF:6A:00:63:EC:82:9A:68:3E:F6:82:AB:C3:B1:98
X509v3 Authority Key Identifier:
keyid:7A:B6:E2:F4:C4:57:31:D0:3C:27:AE:AF:DD:60:86:11:87:1B:42:3C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/erbi9MRXMdA8J66v3WCGEYcbQjw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/v7BCrE2vagBj7IKaaD72gqvDsZg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.43.192.0/22
Signature Algorithm: sha256WithRSAEncryption
38:2e:ad:b1:19:46:39:34:75:8e:65:4a:a7:24:12:22:4b:17:
08:3a:4c:bb:83:1a:ce:5d:34:86:5b:96:40:92:42:d2:0c:7c:
f8:66:c4:97:c8:bf:ae:1b:5c:8e:47:74:bb:a4:db:93:09:d4:
01:d7:02:6e:32:7d:b5:c5:24:1f:7f:34:29:59:7e:af:b1:f9:
20:41:63:4b:c4:5d:03:fe:78:73:eb:72:a7:04:fb:27:d3:9a:
61:ad:a3:37:fa:6f:8c:e2:cc:c8:a0:01:60:61:8f:be:9c:4f:
f5:9a:c5:05:b6:14:2a:4f:0d:ff:c1:23:ca:db:e0:f2:98:5f:
f8:f1:5d:05:4f:fb:99:b5:39:fe:36:66:64:c2:bc:94:ad:ce:
17:21:d6:42:c1:3a:d7:e6:be:e8:54:ea:72:f4:eb:ad:54:be:
13:ca:08:d2:81:f9:b7:11:4b:1e:80:50:1d:4c:3d:32:44:15:
da:40:6e:96:10:3f:f1:9f:01:e7:bb:68:27:f7:38:89:fc:f4:
f5:7c:43:1a:6c:e9:0b:17:48:2f:41:d0:6f:9b:ee:9d:2b:6c:
e4:d6:78:fd:80:61:14:47:03:d0:f1:15:86:cd:bd:41:d0:50:
1d:42:31:2c:cb:2a:6f:87:f5:30:79:a2:e2:ff:6d:7a:ed:5c:
16:8e:cf:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 05:09:26 2024 by rpki-client on console-ams.rpki-client.org