Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1407/QG0jDRhafcWL2_bpgPW3ox1J0ig.roa
File: QG0jDRhafcWL2_bpgPW3ox1J0ig.roa (raw, json)
Hash identifier: MxGSjdPwzdlDNwBE4cDPBSoQf6PQ4JCX+0tjiJCUGvs=
Subject key identifier: 40:6D:23:0D:18:5A:7D:C5:8B:DB:F6:E9:80:F5:B7:A3:1D:49:D2:28
Certificate issuer: /CN=5DA0A5ECC2182DB00EB85C62313D57B96B7FD68E
Certificate serial: 0962
Authority key identifier: 5D:A0:A5:EC:C2:18:2D:B0:0E:B8:5C:62:31:3D:57:B9:6B:7F:D6:8E
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XaCl7MIYLbAOuFxiMT1XuWt_1o4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/QG0jDRhafcWL2_bpgPW3ox1J0ig.roa
Signing time: Tue 07 Jun 2022 10:10:39 +0000
ROA not before: Tue 07 Jun 2022 10:10:39 +0000
ROA not after: Wed 07 Jun 2023 03:34:43 +0000
asID: 17408
IP address blocks: 103.20.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2402 (0x962)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5DA0A5ECC2182DB00EB85C62313D57B96B7FD68E
Validity
Not Before: Jun 7 10:10:39 2022 GMT
Not After : Jun 7 03:34:43 2023 GMT
Subject: CN=406D230D185A7DC58BDBF6E980F5B7A31D49D228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3e:dc:76:49:43:fd:a3:bc:2f:b3:4b:d1:08:
c6:b6:00:2e:02:74:11:2c:4e:1a:b2:21:da:44:0c:
17:c1:76:4c:46:f1:34:83:fe:85:83:3c:4d:87:2a:
c7:37:84:cb:b5:38:85:7d:0d:6b:c6:79:6b:47:7c:
df:13:65:19:30:27:9e:6d:e1:15:56:e2:12:f6:94:
cb:56:04:9a:d8:b7:41:79:7c:a2:50:1f:a6:06:97:
87:68:ee:56:1f:e5:2d:bf:3b:b9:45:94:00:6c:76:
d5:bc:b3:0d:25:97:c3:46:90:29:08:3c:96:ac:44:
90:01:29:c3:d9:75:80:7f:18:99:59:27:29:8c:9a:
f2:09:8e:ce:cd:ea:2c:41:24:35:06:d7:b8:79:24:
d8:bb:bc:4f:29:a8:e9:c6:7c:1d:1e:97:86:5d:16:
b3:61:27:0d:1d:9e:22:c6:18:81:2a:72:8f:35:78:
78:86:01:f6:d1:73:d9:f9:db:37:7b:31:e2:cf:a4:
db:1e:7f:27:04:ef:3c:c9:18:00:4c:cd:91:e1:2e:
21:3d:15:98:13:f5:b7:a6:e6:ff:56:1f:df:80:de:
b0:02:c7:49:86:42:70:d2:ff:07:99:36:b1:d7:bb:
29:40:a6:a3:8c:c6:e9:18:c9:26:f6:4a:d9:e3:fb:
5a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:6D:23:0D:18:5A:7D:C5:8B:DB:F6:E9:80:F5:B7:A3:1D:49:D2:28
X509v3 Authority Key Identifier:
keyid:5D:A0:A5:EC:C2:18:2D:B0:0E:B8:5C:62:31:3D:57:B9:6B:7F:D6:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/XaCl7MIYLbAOuFxiMT1XuWt_1o4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XaCl7MIYLbAOuFxiMT1XuWt_1o4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/QG0jDRhafcWL2_bpgPW3ox1J0ig.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.20.46.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:24:cc:d7:ec:e8:cd:68:81:c8:44:01:6f:d8:51:11:48:11:
b3:b5:dd:85:e6:a5:da:6c:cb:7d:af:f7:85:54:fd:37:3f:15:
e6:b4:f3:d7:bb:4a:b3:7f:e5:5b:c2:a2:50:2c:98:89:f5:97:
0b:66:17:dc:1a:05:ab:1f:09:48:46:c3:54:ac:3f:e3:84:c4:
d3:27:d9:ab:90:b4:e9:42:00:0e:ca:a9:34:6c:b9:0f:74:58:
14:b3:63:92:f5:53:aa:4c:0d:d3:17:d3:8f:9f:db:bc:e7:36:
d1:82:15:2f:b0:ae:02:8f:3d:3e:35:bc:f2:3d:c5:fa:ae:d9:
70:7d:89:5f:f4:d1:ce:65:7f:1a:75:74:24:2e:2c:79:07:ad:
ca:95:0d:ef:94:56:74:9b:7b:db:2a:f8:72:96:aa:5b:3f:aa:
70:23:a2:1b:e6:05:9b:e6:69:12:16:89:d5:91:a2:73:ad:bf:
18:a5:cf:3b:fe:44:46:f1:69:cf:43:40:ef:c1:e9:42:12:b0:
5b:0b:46:f3:3a:bb:b4:f9:fb:a4:fa:55:c1:c9:ee:6d:9a:c4:
cc:23:f9:a4:fc:71:ea:4b:16:41:fe:2c:34:c7:b2:de:18:dd:
b5:06:3b:26:4f:a9:59:a7:72:2a:28:79:db:3f:64:19:6e:3e:
50:6e:8a:46
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICCWIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNURB
MEE1RUNDMjE4MkRCMDBFQjg1QzYyMzEzRDU3Qjk2QjdGRDY4RTAeFw0yMjA2MDcx
MDEwMzlaFw0yMzA2MDcwMzM0NDNaMDMxMTAvBgNVBAMTKDQwNkQyMzBEMTg1QTdE
QzU4QkRCRjZFOTgwRjVCN0EzMUQ0OUQyMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzPtx2SUP9o7wvs0vRCMa2AC4CdBEsThqyIdpEDBfBdkxG8TSD
/oWDPE2HKsc3hMu1OIV9DWvGeWtHfN8TZRkwJ55t4RVW4hL2lMtWBJrYt0F5fKJQ
H6YGl4do7lYf5S2/O7lFlABsdtW8sw0ll8NGkCkIPJasRJABKcPZdYB/GJlZJymM
mvIJjs7N6ixBJDUG17h5JNi7vE8pqOnGfB0el4ZdFrNhJw0dniLGGIEqco81eHiG
AfbRc9n52zd7MeLPpNsefycE7zzJGABMzZHhLiE9FZgT9bem5v9WH9+A3rACx0mG
QnDS/weZNrHXuylApqOMxukYySb2Stnj+1oTAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQUQG0jDRhafcWL2/bpgPW3ox1J0igwHwYDVR0jBBgwFoAUXaCl7MIYLbAOuFxi
MT1XuWt/1o4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQw
Ny9YYUNsN01JWUxiQU91RnhpTVQxWHVXdF8xbzQuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL1hhQ2w3TUlZTGJBT3VGeGlNVDFYdVd0XzFvNC5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MDcvUUcwakRSaGFmY1dM
Ml9icGdQVzNveDFKMGlnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAGcULjANBgkqhkiG9w0BAQsFAAOCAQEAOiTM1+zozWiByEQBb9hREUgRs7Xd
heal2mzLfa/3hVT9Nz8V5rTz17tKs3/lW8KiUCyYifWXC2YX3BoFqx8JSEbDVKw/
44TE0yfZq5C06UIADsqpNGy5D3RYFLNjkvVTqkwN0xfTj5/bvOc20YIVL7CuAo89
PjW88j3F+q7ZcH2JX/TRzmV/GnV0JC4seQetypUN75RWdJt72yr4cpaqWz+qcCOi
G+YFm+ZpEhaJ1ZGic62/GKXPO/5ERvFpz0NA78HpQhKwWwtG8zq7tPn7pPpVwcnu
bZrEzCP5pPxx6ksWQf4sNMey3hjdtQY7Jk+pWadyKih52z9kGW4+UG6KRg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:57 2024 by rpki-client on console-fra.rpki-client.org