Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/ywYi0okn_GT3W2d2eD_7GQ0HewM.roa
File: ywYi0okn_GT3W2d2eD_7GQ0HewM.roa (raw, json)
Hash identifier: dhJ6G/hO2IpTJvPzX9YY2GzSuWjpi6GsiEi7zCLlzSU=
Subject key identifier: CB:06:22:D2:89:27:FC:64:F7:5B:67:76:78:3F:FB:19:0D:07:7B:03
Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267
Certificate serial: 2021
Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/ywYi0okn_GT3W2d2eD_7GQ0HewM.roa
Signing time: Fri 17 Jan 2025 01:24:08 +0000
ROA not before: Fri 17 Jan 2025 01:24:08 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 212237
IP address blocks: 2403:6380:10::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8225 (0x2021)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267
Validity
Not Before: Jan 17 01:24:08 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=CB0622D28927FC64F75B6776783FFB190D077B03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:37:26:71:9b:43:32:5d:f5:42:de:08:67:db:
0e:7b:da:80:87:fa:7a:39:0b:92:c6:72:5e:a1:6a:
4e:4e:d1:25:40:82:ef:aa:02:a2:09:6a:da:c5:7b:
47:1e:70:99:2c:f4:b2:26:cd:ce:6b:e2:a3:78:50:
fd:15:6c:9b:2d:43:5e:62:cd:82:e3:02:1b:28:f7:
7f:09:5a:64:a5:7d:a6:cb:6b:9e:57:29:57:6d:a8:
cc:f2:ad:94:57:15:a2:f4:59:0b:18:73:b2:5c:56:
7f:de:33:01:2b:3d:88:28:96:51:6d:a3:41:54:71:
a0:50:c8:06:39:b7:f0:57:4c:51:d7:a5:cd:fc:01:
c0:60:c0:a5:2d:1d:cb:22:7b:8e:80:1d:b3:5b:77:
c6:12:75:81:f3:84:ab:d3:4e:36:4a:a5:e3:a4:fa:
2b:c8:6c:02:0c:92:dd:42:45:92:39:1b:4b:c5:79:
5a:5b:66:69:ed:0b:cf:4e:b1:5d:86:4c:ba:64:17:
e2:dc:1e:2f:56:ac:95:99:4f:0b:7e:ca:0e:84:52:
e3:d9:16:05:c0:d3:b0:1a:2b:83:04:89:96:34:77:
c0:01:44:29:79:7d:f1:21:95:20:85:49:f5:73:a3:
2b:1a:2e:fe:0f:c5:8f:35:0b:4e:6a:77:0e:41:07:
8e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:06:22:D2:89:27:FC:64:F7:5B:67:76:78:3F:FB:19:0D:07:7B:03
X509v3 Authority Key Identifier:
keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/ywYi0okn_GT3W2d2eD_7GQ0HewM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:6380:10::/44
Signature Algorithm: sha256WithRSAEncryption
0e:0d:a3:2c:ad:c9:5a:b4:57:ce:3d:d4:2a:07:26:37:2c:6e:
73:86:a6:d8:5f:fe:63:31:02:64:1d:67:f4:b8:69:8f:88:87:
92:af:1c:e8:67:a8:ca:fa:b4:9e:6a:bd:8b:ec:1a:7c:a7:9d:
73:e2:c5:53:ba:05:e4:f6:25:c1:1d:68:fb:96:aa:a3:63:60:
74:a7:e2:64:70:e3:0b:4b:e9:49:6f:19:be:8b:bf:a0:71:4e:
09:7d:60:aa:ba:a3:1d:9c:57:01:ba:4b:ce:cd:47:70:cb:8b:
1c:90:22:c7:eb:1d:66:9a:90:69:b7:19:b4:b0:39:3d:dc:05:
e2:45:e4:b0:9b:e0:09:7d:6a:8c:be:fb:8b:c3:7d:b6:1e:21:
88:14:eb:ee:3d:7d:55:6b:0a:a0:85:18:7c:81:c9:02:2b:2c:
5d:c1:8d:37:73:3a:04:74:eb:0d:c8:2e:d0:84:2b:03:52:32:
18:ac:8a:3c:28:4f:35:c8:86:85:27:89:43:2c:6e:32:3e:dd:
77:58:94:b3:bc:e8:8f:ac:e4:a7:d1:44:52:58:4e:1e:f5:02:
09:79:37:c2:99:9b:fe:f8:4b:5c:98:cb:b3:0f:67:88:ee:3b:
40:d7:bc:63:33:65:10:1e:a4:58:cc:15:64:81:5d:95:e4:c3:
b1:0f:29:98
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICICEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDkx
MUNCNkQ1NDRCM0I2OTA1NTMyOTY0QzhFMUE0NzJCRENCQzI2NzAeFw0yNTAxMTcw
MTI0MDhaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKENCMDYyMkQyODkyN0ZD
NjRGNzVCNjc3Njc4M0ZGQjE5MEQwNzdCMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2NyZxm0MyXfVC3ghn2w572oCH+no5C5LGcl6hak5O0SVAgu+q
AqIJatrFe0cecJks9LImzc5r4qN4UP0VbJstQ15izYLjAhso938JWmSlfabLa55X
KVdtqMzyrZRXFaL0WQsYc7JcVn/eMwErPYgollFto0FUcaBQyAY5t/BXTFHXpc38
AcBgwKUtHcsie46AHbNbd8YSdYHzhKvTTjZKpeOk+ivIbAIMkt1CRZI5G0vFeVpb
ZmntC89OsV2GTLpkF+LcHi9WrJWZTwt+yg6EUuPZFgXA07AaK4MEiZY0d8ABRCl5
ffEhlSCFSfVzoysaLv4PxY81C05qdw5BB44nAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUywYi0okn/GT3W2d2eD/7GQ0HewMwHwYDVR0jBBgwFoAUSRHLbVRLO2kFUylk
yOGkcr3LwmcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQx
MS9TUkhMYlZSTE8ya0ZVeWxreU9Ha2NyM0x3bWMuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL1NSSExiVlJMTzJrRlV5bGt5T0drY3IzTHdtYy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MTEveXdZaTBva25fR1Qz
VzJkMmVEXzdHUTBIZXdNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw
CQMHBCQDY4AAEDANBgkqhkiG9w0BAQsFAAOCAQEADg2jLK3JWrRXzj3UKgcmNyxu
c4am2F/+YzECZB1n9Lhpj4iHkq8c6Geoyvq0nmq9i+wafKedc+LFU7oF5PYlwR1o
+5aqo2NgdKfiZHDjC0vpSW8Zvou/oHFOCX1gqrqjHZxXAbpLzs1HcMuLHJAix+sd
ZpqQabcZtLA5PdwF4kXksJvgCX1qjL77i8N9th4hiBTr7j19VWsKoIUYfIHJAiss
XcGNN3M6BHTrDcgu0IQrA1IyGKyKPChPNciGhSeJQyxuMj7dd1iUs7zoj6zkp9FE
UlhOHvUCCXk3wpmb/vhLXJjLsw9niO47QNe8YzNlEB6kWMwVZIFdleTDsQ8pmA==
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:37:55 2025 by rpki-client