Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/vOKPtleca1sADYYqmSMOYTy-gHs.roa
File: vOKPtleca1sADYYqmSMOYTy-gHs.roa (raw, json)
Hash identifier: hRMNGrUv9a4wYEPsoh7zIoGjoQxusBm29buvIhcrT+I=
Subject key identifier: BC:E2:8F:B6:57:9C:6B:5B:00:0D:86:2A:99:23:0E:61:3C:BE:80:7B
Certificate issuer: /CN=14FF3D11146E5316E23FE7F8542CAC313FD6F510
Certificate serial: 072B
Authority key identifier: 14:FF:3D:11:14:6E:53:16:E2:3F:E7:F8:54:2C:AC:31:3F:D6:F5:10
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/FP89ERRuUxbiP-f4VCysMT_W9RA.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/vOKPtleca1sADYYqmSMOYTy-gHs.roa
Signing time: Wed 03 Nov 2021 06:43:38 +0000
ROA not before: Wed 03 Nov 2021 06:43:38 +0000
ROA not after: Fri 27 May 2022 04:59:52 +0000
asID: 61317
IP address blocks: 49.128.4.0/22 maxlen: 24
103.244.116.0/22 maxlen: 24
223.29.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1835 (0x72b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14FF3D11146E5316E23FE7F8542CAC313FD6F510
Validity
Not Before: Nov 3 06:43:38 2021 GMT
Not After : May 27 04:59:52 2022 GMT
Subject: CN=BCE28FB6579C6B5B000D862A99230E613CBE807B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:da:96:b2:4d:b4:f9:9e:24:98:68:c4:eb:68:
91:72:96:48:1f:41:9e:ba:d3:0c:30:93:bc:7d:34:
d2:56:0b:34:03:e6:5d:f3:1c:16:58:21:de:bb:0d:
45:c0:fd:26:17:68:54:a5:f4:fc:ff:b9:60:ee:df:
ec:ea:3e:6e:e5:e4:c3:e8:9f:89:5e:b6:74:df:27:
89:b4:57:46:4b:39:1e:c5:a2:cd:28:ec:5d:85:e8:
b9:3b:da:06:b9:ae:dc:1d:ad:6c:ff:5d:2c:c7:92:
44:70:46:97:7a:0a:f5:39:a1:a7:1e:0a:93:ab:19:
48:d8:be:ac:55:45:3a:a2:64:98:90:ab:6a:e1:7e:
7d:5b:ed:27:67:65:30:b4:3c:df:db:cb:93:f9:a6:
e3:aa:11:5c:ce:cf:8b:13:41:08:9a:f7:ba:58:50:
07:56:e7:47:31:ee:21:0b:25:cc:7a:8f:0b:28:30:
99:4f:9c:c3:c1:4a:c3:fe:56:aa:48:f9:18:2b:ae:
62:6a:1d:c0:a6:f3:66:ff:84:93:dc:b0:03:b7:8e:
68:ad:84:1c:f0:9f:d2:c3:de:51:bf:6f:64:c4:7f:
8f:e0:31:9b:5a:18:68:d0:d8:93:70:86:20:ca:3d:
39:4a:8f:71:b9:44:2e:48:c9:e3:ee:f0:c9:ef:32:
6b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E2:8F:B6:57:9C:6B:5B:00:0D:86:2A:99:23:0E:61:3C:BE:80:7B
X509v3 Authority Key Identifier:
keyid:14:FF:3D:11:14:6E:53:16:E2:3F:E7:F8:54:2C:AC:31:3F:D6:F5:10
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/FP89ERRuUxbiP-f4VCysMT_W9RA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/FP89ERRuUxbiP-f4VCysMT_W9RA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/vOKPtleca1sADYYqmSMOYTy-gHs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.128.4.0/22
103.244.116.0/22
223.29.252.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:3c:8b:4b:18:b1:49:cb:82:30:c3:84:c2:58:4b:de:5a:aa:
8f:86:0d:e6:91:92:8d:4f:96:39:27:d2:75:34:67:9f:b2:da:
bf:cf:ab:7c:6e:ea:c8:30:b7:76:34:06:18:d8:93:7c:b2:89:
8d:26:34:8b:57:10:f3:78:b3:27:15:31:ea:dc:cf:29:d8:b6:
ce:7d:1d:5c:23:ed:3c:7e:13:25:e3:04:e0:a4:38:9c:75:c4:
43:7c:a1:a3:66:5f:30:40:1b:17:82:08:c1:66:aa:2a:f5:dc:
8a:de:70:0e:ae:51:af:5b:43:26:30:bc:21:27:08:93:74:fb:
4b:a9:a8:41:53:39:db:d3:7f:3d:08:1a:d1:c5:5b:67:87:5b:
11:f9:48:af:65:c9:7a:8a:8d:d2:b5:df:d4:94:ee:0d:b4:4d:
58:f1:bd:6e:40:a2:05:77:6a:11:96:40:b6:81:f2:04:32:be:
c4:d0:45:b0:d3:91:04:81:67:5e:59:e8:f7:2a:b9:3f:7e:d0:
48:29:7b:ab:8c:18:9a:79:88:4b:c9:91:13:a4:ec:ce:33:d8:
62:88:20:d7:86:f1:0d:2e:52:9c:27:8e:fb:77:ff:ca:de:57:
e2:f4:d7:ec:f1:f0:52:1a:d4:b0:8b:2f:4c:9e:f3:2b:70:ca:
fb:87:f7:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:22 2024 by rpki-client on console-ams.rpki-client.org