Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/49Y06P6mO_0cONNfsOUaWXQWNHQ.roa
File: 49Y06P6mO_0cONNfsOUaWXQWNHQ.roa (raw, json)
Hash identifier: v7Ahc7BpfLkfI0PHrXW+ecXVmeWtQwsQ8fg23R7iEO8=
Subject key identifier: E3:D6:34:E8:FE:A6:3B:FD:1C:38:D3:5F:B0:E5:1A:59:74:16:34:74
Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267
Certificate serial: 1D93
Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/49Y06P6mO_0cONNfsOUaWXQWNHQ.roa
Signing time: Thu 12 Sep 2024 11:20:06 +0000
ROA not before: Thu 12 Sep 2024 11:20:06 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 139648
IP address blocks: 103.244.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7571 (0x1d93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267
Validity
Not Before: Sep 12 11:20:06 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E3D634E8FEA63BFD1C38D35FB0E51A5974163474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:17:c0:0e:2a:a7:79:25:73:39:93:83:22:c6:
83:dc:c2:a6:87:db:38:26:c4:bc:a3:42:e8:9a:82:
de:93:35:81:7e:56:e6:34:8b:6a:ff:9c:4c:bc:79:
bb:42:91:c9:1f:8d:94:6b:9d:2b:ea:fa:98:4b:fa:
f5:33:3e:5a:02:be:a1:b7:61:90:be:0b:95:53:d0:
6d:b3:08:b9:9a:3c:fc:22:e3:0f:b7:83:52:39:da:
ca:9d:a5:40:34:be:42:73:99:01:99:fa:97:cb:ed:
cc:8f:1e:b9:16:6e:4c:c2:db:25:ba:e5:96:54:c2:
07:fa:da:a1:fb:1b:88:98:b6:12:bc:2e:35:96:66:
f3:7d:20:90:ce:1a:a8:b2:c7:26:0e:9e:66:9b:15:
bb:ca:68:b6:73:4b:f8:fb:19:95:0c:6f:68:55:6c:
1a:ce:89:02:a6:36:6b:e5:e2:e2:20:9d:90:b8:62:
ac:6f:7d:82:e1:40:ec:84:30:52:71:f2:58:96:d3:
fe:10:f4:36:6b:a6:21:c7:b7:8d:84:4d:f4:82:ce:
a7:54:d5:7c:64:3f:01:0a:26:ec:8f:89:c7:77:94:
52:9b:ee:e9:c2:97:7b:8a:c7:a8:31:bb:32:a1:5e:
89:48:01:fb:bb:20:57:60:fa:94:25:21:b6:a3:8b:
97:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D6:34:E8:FE:A6:3B:FD:1C:38:D3:5F:B0:E5:1A:59:74:16:34:74
X509v3 Authority Key Identifier:
keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/49Y06P6mO_0cONNfsOUaWXQWNHQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.244.119.0/24
Signature Algorithm: sha256WithRSAEncryption
48:32:c8:e9:6b:3d:b8:13:36:2b:99:31:5a:c7:a0:09:34:1a:
3b:90:04:26:2f:f5:27:25:b5:26:97:4e:58:8b:ce:ee:98:d2:
ba:d7:78:f8:7a:18:71:f8:73:69:90:9d:5c:95:29:cd:0a:df:
27:fb:13:84:a7:d6:5d:63:3e:d7:a9:e2:a2:d1:f9:71:55:37:
fd:6a:3e:8c:e3:65:d2:1b:36:b0:b5:99:77:6e:27:d0:8d:76:
01:56:80:9f:a9:27:3b:e7:8b:58:b1:9e:e9:a0:60:fd:a7:48:
1b:9b:6c:dc:e0:e5:ed:95:db:4a:05:d1:dc:1f:d1:89:cb:86:
10:c2:6c:52:59:d8:81:ba:e0:c3:74:0e:f9:e3:ba:05:68:59:
53:2f:db:a6:b5:88:c8:41:79:14:54:87:85:94:cc:c9:27:bd:
c0:57:f6:9f:fe:c4:b6:43:7d:1e:68:8a:69:8f:3c:53:b5:2d:
0f:32:a0:4d:3c:dc:cc:be:31:13:b4:d8:5f:83:b0:4e:ab:2b:
84:29:49:86:c7:37:a9:39:2a:98:12:99:a9:1d:c1:ed:59:c4:
eb:d6:15:ab:cf:9a:30:41:97:aa:28:29:04:ab:28:7c:a4:cf:
2b:32:01:0e:85:db:cf:91:fa:b8:e5:07:2a:f8:cc:8a:98:b1:
59:30:b7:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:39:25 2025 by rpki-client