Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/9gyhefr517RfAOABu_cie3qCUzI.roa
File: 9gyhefr517RfAOABu_cie3qCUzI.roa (raw, json)
Hash identifier: 6sobxHCNKmaGVVt7YwHG1OcydeZhTaYgDzswsVljJzk=
Subject key identifier: F6:0C:A1:79:FA:F9:D7:B4:5F:00:E0:01:BB:F7:22:7B:7A:82:53:32
Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267
Certificate serial: 1D95
Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/9gyhefr517RfAOABu_cie3qCUzI.roa
Signing time: Thu 12 Sep 2024 11:20:07 +0000
ROA not before: Thu 12 Sep 2024 11:20:07 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 212237
IP address blocks: 2403:6380:70::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7573 (0x1d95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267
Validity
Not Before: Sep 12 11:20:07 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F60CA179FAF9D7B45F00E001BBF7227B7A825332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:09:bd:80:34:ec:cd:c0:6b:02:93:6c:75:d6:
ac:85:3c:f0:60:26:69:58:56:1e:44:3f:13:f4:12:
3d:3e:94:f2:7f:bf:e0:9a:2e:4e:af:9c:e4:ce:c7:
e3:bc:7b:dd:85:99:fe:e6:75:c9:e7:be:6f:68:d0:
f1:b8:a4:0b:33:e9:a6:9b:f6:ba:5d:d8:a9:a6:8e:
55:bf:cb:2d:29:6d:85:14:81:62:d1:e3:aa:6d:4e:
95:ae:a2:ac:c5:09:fd:f0:03:09:97:ab:65:af:06:
26:ef:41:bf:9a:72:d2:34:aa:5b:33:4c:7b:ab:44:
5d:b3:d2:1b:d4:35:b9:9f:95:d9:5c:5f:a5:ee:aa:
30:52:3f:a9:c1:43:3f:59:9b:21:b9:8f:88:d5:88:
07:44:9f:4e:18:c1:67:3f:54:14:86:ff:4c:1f:de:
79:f4:09:c4:cc:c9:f9:e2:93:fe:c9:40:46:9e:5b:
38:94:fe:46:71:ad:fe:88:ac:21:02:4a:61:18:fd:
77:f5:43:ed:a7:c7:5d:8c:8e:03:56:71:8f:1e:71:
ad:3e:e1:94:e6:49:2d:6f:8e:6f:e5:13:99:ae:a1:
a8:52:cc:a3:d0:a4:1e:2e:b5:b1:d1:d3:2d:88:5b:
df:74:fe:89:32:98:e1:79:ee:34:03:a8:30:2a:a3:
63:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:0C:A1:79:FA:F9:D7:B4:5F:00:E0:01:BB:F7:22:7B:7A:82:53:32
X509v3 Authority Key Identifier:
keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/9gyhefr517RfAOABu_cie3qCUzI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:6380:70::/44
Signature Algorithm: sha256WithRSAEncryption
c0:a5:b8:41:91:d3:3e:af:8c:20:59:95:ae:83:92:e9:fc:c4:
9c:75:f8:70:9d:7a:07:cb:a4:34:91:97:bf:31:9b:87:d5:2d:
f6:8f:5d:f4:23:47:a0:e2:4c:88:c6:1b:1d:cb:23:5c:e8:8a:
86:b6:92:9c:ef:51:e2:63:46:72:fa:c4:2c:83:82:2d:f6:1b:
e3:cf:7e:42:a0:1f:4c:95:e3:6f:0a:fa:0e:0c:e1:4f:df:74:
99:14:99:41:28:ce:5f:0b:9e:98:1f:52:41:76:81:03:5d:f9:
91:49:ac:bf:77:d8:5b:f6:9c:3c:87:e2:04:56:8e:be:34:76:
ee:92:90:92:ce:56:31:1d:13:13:c2:20:8e:1c:68:68:8a:7f:
0a:73:69:c2:85:d3:47:5a:15:a7:e9:c8:9a:d8:c6:cc:01:49:
61:d2:6e:0a:03:d2:06:01:59:de:51:1e:27:f7:ae:44:5a:48:
75:af:58:29:d0:88:5e:b5:9d:93:bb:27:3d:00:e2:bd:49:f2:
eb:4e:50:7e:a1:ef:72:31:2b:8e:98:1d:c6:38:2b:10:c8:f8:
c9:e2:30:f4:97:3b:42:90:51:6e:14:cb:50:ba:c4:80:42:ca:
c6:4b:e5:ec:57:f8:fb:7e:f2:16:c6:f9:4b:e8:ed:9f:6f:be:
1e:e1:af:57
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:42:15 2025 by rpki-client