Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1375/avxQ98Xa26moiQJY79i8ghYk2fY.roa
File: avxQ98Xa26moiQJY79i8ghYk2fY.roa (raw, json)
Hash identifier: xxiKP5OrTIMYpVhNH9RhCfvUQ83oNVn4Odhcr0a5OBw=
Subject key identifier: 6A:FC:50:F7:C5:DA:DB:A9:A8:89:02:58:EF:D8:BC:82:16:24:D9:F6
Certificate issuer: /CN=3ABA8B425232BE58968396DE32A8EB5A05EEA658
Certificate serial: 1018
Authority key identifier: 3A:BA:8B:42:52:32:BE:58:96:83:96:DE:32:A8:EB:5A:05:EE:A6:58
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/avxQ98Xa26moiQJY79i8ghYk2fY.roa
Signing time: Fri 19 May 2023 05:54:18 +0000
ROA not before: Fri 19 May 2023 05:54:18 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 132369
IP address blocks: 45.127.216.0/22 maxlen: 24
210.16.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4120 (0x1018)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ABA8B425232BE58968396DE32A8EB5A05EEA658
Validity
Not Before: May 19 05:54:18 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=6AFC50F7C5DADBA9A8890258EFD8BC821624D9F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:99:1e:92:8c:9f:dc:e5:08:36:30:9d:79:85:
a8:cb:48:7f:4a:5f:55:9e:5f:76:b5:b1:04:6c:af:
a9:fe:e5:67:9f:8e:94:9b:e7:7b:e2:f6:36:da:c0:
98:a4:84:70:a1:fa:42:33:00:00:66:40:9a:bc:2e:
40:3b:e2:53:58:d4:fd:fb:f5:f6:fc:a4:f2:e3:89:
cc:d5:b5:81:c4:31:8c:dc:ce:ee:a9:ab:f1:d8:c6:
d1:59:d6:36:f6:60:ac:fa:2c:5c:28:f9:7b:cc:f0:
8e:29:79:1f:d2:28:70:a3:3c:e1:46:30:72:8f:44:
a1:0a:b4:14:a7:b2:ac:a2:ca:c6:c8:c4:e5:f4:e9:
90:63:f7:1a:d9:e9:78:4c:44:45:ee:88:55:ce:f7:
66:b1:d7:68:23:eb:35:4b:c5:7a:46:5e:9c:a3:60:
17:6b:08:4c:56:13:55:06:02:a7:15:20:b6:5b:8d:
94:d1:2c:82:51:23:38:5e:5d:c8:dc:28:7f:99:bb:
65:69:64:7e:23:f5:be:e2:1e:df:45:93:6e:cf:a7:
93:58:25:ec:49:36:c5:9f:4b:c8:6d:e3:b8:dc:15:
56:c4:9f:e0:2f:41:7e:ba:6b:4d:de:44:e6:7f:9b:
6b:3f:23:58:63:db:78:5c:0e:88:f2:c5:69:ae:4b:
3d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:FC:50:F7:C5:DA:DB:A9:A8:89:02:58:EF:D8:BC:82:16:24:D9:F6
X509v3 Authority Key Identifier:
keyid:3A:BA:8B:42:52:32:BE:58:96:83:96:DE:32:A8:EB:5A:05:EE:A6:58
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/avxQ98Xa26moiQJY79i8ghYk2fY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.127.216.0/22
210.16.104.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:0f:1f:17:1b:99:7b:4a:d0:8c:b2:9f:9f:c1:c2:a9:75:26:
5d:41:b3:96:70:d5:77:d6:94:55:83:6a:49:fd:ce:84:13:a4:
87:e5:32:6a:90:78:c5:e1:34:6d:13:6a:80:07:30:2f:d4:70:
19:77:75:e8:41:e3:17:7a:c0:0f:0e:ab:ac:d0:a2:a2:65:b4:
42:d0:30:da:62:33:7d:4a:54:45:f8:bf:cb:60:6a:3a:58:15:
3b:ff:01:3a:9d:80:e8:7d:8e:65:e5:ee:13:2f:ab:3a:db:01:
23:06:36:0d:73:24:54:20:7c:32:ec:ed:94:a1:15:bb:c7:23:
d1:d1:fe:5f:0f:67:48:ca:ee:01:1c:db:1e:4b:f6:f4:1e:0b:
9b:80:b0:4e:b5:a4:4c:8c:72:b5:1e:44:2c:04:e9:98:3a:dd:
88:a0:98:37:04:c6:35:9b:f0:45:bd:07:2b:a3:56:44:76:2f:
7b:92:e0:44:9e:59:c0:e5:30:7d:6c:3f:78:80:7b:91:c9:ce:
f9:e7:1a:6f:3e:52:ef:68:2b:43:6d:f5:1d:4a:af:5f:f2:cd:
1d:53:7f:fd:af:20:af:46:95:0a:db:29:95:28:eb:10:63:98:
5d:4e:3a:fb:04:91:6b:f9:9f:44:1d:a4:be:9b:fb:ed:bd:16:
6a:7f:f7:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:57 2024 by rpki-client on console-fra.rpki-client.org