Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/6Emp2W8u59WS5JboZYAavTJkNBU.roa
File: 6Emp2W8u59WS5JboZYAavTJkNBU.roa (raw, json)
Hash identifier: lcC0WHij2YeKvOGeR45MPCTYcjr6i8wHCTLhMFVHfsw=
Subject key identifier: E8:49:A9:D9:6F:2E:E7:D5:92:E4:96:E8:65:80:1A:BD:32:64:34:15
Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267
Certificate serial: 1D86
Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/6Emp2W8u59WS5JboZYAavTJkNBU.roa
Signing time: Thu 12 Sep 2024 11:20:01 +0000
ROA not before: Thu 12 Sep 2024 11:20:01 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 212237
IP address blocks: 2403:6380:60::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7558 (0x1d86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267
Validity
Not Before: Sep 12 11:20:01 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E849A9D96F2EE7D592E496E865801ABD32643415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c4:4d:fe:7c:e0:4a:8d:1f:d5:85:42:99:50:
70:79:df:d5:14:38:e3:82:aa:0e:bb:82:02:31:d9:
36:85:b4:ca:3e:e8:48:da:ed:43:1a:53:ff:90:a2:
9a:d6:73:d4:2c:cd:b2:46:de:77:91:20:68:37:79:
de:c6:47:d8:77:09:b4:e1:3d:80:36:de:50:9e:4d:
d4:12:2d:08:64:29:47:2b:ea:81:21:a8:15:a9:9e:
ad:75:00:dc:34:2c:09:c5:0a:8b:ca:b4:5c:63:54:
01:bf:16:32:a9:da:c0:41:2b:d1:e9:a7:44:fc:59:
6e:20:bd:e6:ff:28:68:9e:87:fd:34:19:15:3d:9a:
d7:27:ca:9c:85:05:c9:da:35:0c:23:5c:1e:cb:d7:
67:f6:93:e8:15:4a:b4:3d:81:ff:49:3a:87:06:07:
45:e7:9c:61:45:08:d3:69:57:fa:42:cb:00:26:3b:
1b:e7:35:1b:69:7a:5c:51:0d:2a:8f:7b:e4:4d:26:
5a:a2:33:24:46:9a:00:0c:46:0c:78:83:4d:30:f7:
38:2c:f5:02:d5:1d:31:c3:d6:07:84:14:29:84:ab:
62:67:c7:bc:ad:b5:56:ad:1c:03:68:7e:d6:fd:1a:
67:fb:59:9e:2e:d3:3b:33:2e:85:01:30:a7:84:d8:
16:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:49:A9:D9:6F:2E:E7:D5:92:E4:96:E8:65:80:1A:BD:32:64:34:15
X509v3 Authority Key Identifier:
keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/6Emp2W8u59WS5JboZYAavTJkNBU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:6380:60::/44
Signature Algorithm: sha256WithRSAEncryption
b0:18:5e:83:0a:22:8e:e8:c1:56:d7:cc:c9:ab:9b:42:b2:3e:
cc:55:87:44:bf:cd:b8:6a:79:e5:8b:7e:03:8b:30:49:ff:bb:
4a:cb:57:d3:39:24:e5:5f:e3:47:e7:85:dd:a2:a9:48:36:cc:
17:9a:42:65:d0:9b:bf:b8:9a:07:4e:c8:00:78:82:ad:84:2d:
7a:26:cd:ac:5d:34:bc:e7:bc:33:d4:70:4b:b4:d7:07:f0:e0:
3f:72:94:b7:0c:ac:8b:97:eb:70:d8:1f:c7:69:42:74:af:2a:
f3:e6:2b:de:ef:9c:1e:b9:10:b3:18:6b:52:eb:ee:c9:7b:8b:
e0:35:f5:db:98:1a:ef:ab:73:ec:17:48:12:f7:35:a9:d8:41:
25:d2:d9:92:a0:9d:e0:8c:8d:36:11:9d:f8:e8:8f:e7:f9:fa:
f7:3f:95:35:48:3f:82:76:0f:7b:03:b6:96:27:4e:64:ac:be:
4d:bf:4a:97:18:1b:fb:14:99:f2:ca:31:38:f9:ae:d0:b6:b0:
ec:a2:8b:aa:41:7b:83:da:b6:32:82:c0:3b:7e:48:e4:fd:b5:
1a:21:57:7a:98:cd:66:a0:74:4e:1d:c5:d5:98:7f:38:e4:51:
b8:0b:70:bb:4d:82:c3:f1:61:3e:23:7f:a5:b2:79:2f:c2:05:
4d:c5:8a:4e
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:33:55 2025 by rpki-client