Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1407/SmSbphvrniJ3ODQy7uKD5xx0lco.roa
File: SmSbphvrniJ3ODQy7uKD5xx0lco.roa (raw, json)
Hash identifier: GwP11nCqaerEKjoB+1i6wCwueFSecXJAPBaxoRZJaVo=
Subject key identifier: 4A:64:9B:A6:1B:EB:9E:22:77:38:34:32:EE:E2:83:E7:1C:74:95:CA
Certificate issuer: /CN=5DA0A5ECC2182DB00EB85C62313D57B96B7FD68E
Certificate serial: 103D
Authority key identifier: 5D:A0:A5:EC:C2:18:2D:B0:0E:B8:5C:62:31:3D:57:B9:6B:7F:D6:8E
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XaCl7MIYLbAOuFxiMT1XuWt_1o4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/SmSbphvrniJ3ODQy7uKD5xx0lco.roa
Signing time: Wed 24 May 2023 03:53:45 +0000
ROA not before: Wed 24 May 2023 03:53:45 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 17408
IP address blocks: 103.20.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4157 (0x103d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5DA0A5ECC2182DB00EB85C62313D57B96B7FD68E
Validity
Not Before: May 24 03:53:45 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=4A649BA61BEB9E2277383432EEE283E71C7495CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:af:5d:d8:54:52:8a:2a:1d:bd:b1:e9:5a:77:
73:c2:67:2f:9d:67:8b:8b:c0:ed:9c:75:94:47:1c:
50:7d:a0:32:93:25:fb:84:16:ef:b0:44:d8:8f:c9:
80:a3:f7:9e:ec:16:b9:d9:6e:19:93:3e:b8:74:66:
cb:1b:70:2a:2e:8b:0b:4a:36:fa:c9:6c:be:2c:bd:
b7:cd:b9:d4:55:f4:88:cb:3f:78:87:1b:bf:b2:a2:
da:ae:07:04:be:2a:3b:78:5f:57:7e:3e:17:fd:13:
15:e2:fd:6f:bb:71:f4:63:de:f0:71:10:8d:57:19:
8b:b6:e3:e9:cc:52:7d:a1:8b:87:79:50:f1:18:c1:
69:9c:fa:e6:59:8c:e0:af:f1:5d:84:e6:17:fe:ac:
a2:87:58:94:b9:ef:1e:eb:8e:6d:49:3a:4c:c8:8e:
3f:0a:5c:32:1b:a3:e4:ff:19:a5:9f:d3:8c:86:a3:
9c:08:1b:b5:4d:04:d1:ef:ea:8a:a1:ac:af:6a:2e:
94:10:94:50:bc:5b:33:4c:22:70:c2:35:44:02:00:
b7:55:ab:51:15:a7:43:09:48:01:52:eb:d9:88:c9:
df:aa:2d:62:98:c3:ca:75:3e:83:bd:e1:75:f2:d5:
2d:63:1b:a0:b4:1f:1c:1e:c2:61:e7:ad:ee:fb:f4:
d6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:64:9B:A6:1B:EB:9E:22:77:38:34:32:EE:E2:83:E7:1C:74:95:CA
X509v3 Authority Key Identifier:
keyid:5D:A0:A5:EC:C2:18:2D:B0:0E:B8:5C:62:31:3D:57:B9:6B:7F:D6:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/XaCl7MIYLbAOuFxiMT1XuWt_1o4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XaCl7MIYLbAOuFxiMT1XuWt_1o4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/SmSbphvrniJ3ODQy7uKD5xx0lco.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.20.46.0/24
Signature Algorithm: sha256WithRSAEncryption
43:de:50:aa:0a:b2:17:dd:d8:13:f6:c0:07:a4:b4:83:1b:5a:
98:65:0d:d1:01:39:8b:72:2e:c8:8e:27:f3:c9:25:66:a1:85:
a0:5e:aa:29:13:67:8f:5c:7f:bb:5a:e0:b2:b2:ff:04:50:d0:
a5:e0:dd:59:95:69:09:c4:7f:78:2b:dd:af:be:db:d3:d6:3c:
18:e2:58:cc:68:be:b5:a5:cb:75:95:ac:95:e1:44:50:04:a9:
2c:42:1c:57:39:fb:a0:21:6f:62:28:90:1d:df:ed:3b:2e:47:
a4:f5:95:aa:1d:f7:07:16:38:cc:d5:2b:1c:0e:5a:3c:c4:40:
af:11:08:f9:03:7d:ed:b7:a2:2e:3d:e5:1d:1c:1d:c9:7c:4b:
c4:35:94:12:81:89:06:77:12:cc:98:3e:fd:42:c3:17:d1:ab:
4e:be:0d:9d:68:33:72:5b:ca:c1:b8:5a:f1:d5:99:d4:47:ba:
9c:b0:15:b2:96:93:3e:8b:c8:58:e5:f3:d4:cf:c6:55:19:b9:
b4:99:db:3e:9f:7e:08:3f:e2:2a:6f:28:7f:d5:81:74:63:cd:
28:d4:59:b5:52:2c:77:04:a5:90:dd:55:f5:b3:5e:a6:4d:43:
2e:1c:9b:b3:82:da:4c:96:b7:79:32:c7:3e:91:53:d7:73:2c:
68:c7:81:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:57 2024 by rpki-client on console-fra.rpki-client.org