Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1534/DtLxiAtEFYLfiv92aAXsBtgOVxE.roa
File: DtLxiAtEFYLfiv92aAXsBtgOVxE.roa (raw, json)
Hash identifier: yOYUjS3M/WrMq0wAE+3YAURDX1aaNMk2xAkIzrdjT/0=
Subject key identifier: 0E:D2:F1:88:0B:44:15:82:DF:8A:FF:76:68:05:EC:06:D8:0E:57:11
Certificate issuer: /CN=0CA4F183C659ED57FB46D59AD5483D6FE9B34F4E
Certificate serial: 15F1
Authority key identifier: 0C:A4:F1:83:C6:59:ED:57:FB:46:D5:9A:D5:48:3D:6F:E9:B3:4F:4E
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/DtLxiAtEFYLfiv92aAXsBtgOVxE.roa
Signing time: Fri 19 May 2023 05:54:51 +0000
ROA not before: Fri 19 May 2023 05:54:51 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 59067
IP address blocks: 103.25.156.0/24 maxlen: 24
111.221.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5617 (0x15f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0CA4F183C659ED57FB46D59AD5483D6FE9B34F4E
Validity
Not Before: May 19 05:54:51 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=0ED2F1880B441582DF8AFF766805EC06D80E5711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9a:d5:5c:75:37:bc:54:8a:83:4a:67:ab:27:
91:c2:c0:03:39:d0:2d:41:e1:23:cf:10:14:75:72:
02:3c:fc:40:29:72:53:10:cc:07:a6:a5:19:a0:50:
7a:86:b7:6a:98:1c:1f:35:bd:95:50:50:e8:73:4d:
49:b1:38:fc:ac:59:97:8c:9d:b6:a9:98:ea:26:17:
18:d0:33:2b:4e:9b:c3:50:d9:39:48:a5:d5:94:84:
fc:08:20:b2:f4:d3:65:83:0c:02:64:0d:4c:49:e3:
26:7e:10:69:8c:85:98:99:0f:79:5c:6e:39:e2:5e:
c9:56:c4:bf:24:49:dc:21:fa:1d:ab:74:4e:b3:40:
00:86:b6:bb:12:b3:29:9b:71:87:c9:f0:53:6f:ee:
73:c1:02:0d:07:67:21:e0:45:94:ad:09:5b:50:a9:
4b:e0:bc:f9:a9:b1:e0:f3:f0:c2:b9:3a:57:bb:47:
2a:54:d6:78:64:f3:4d:17:f4:e1:b0:5e:71:f9:08:
09:6a:34:65:4e:fb:6b:39:9b:a9:69:59:2c:9c:61:
3d:7b:1d:a7:dc:32:62:a7:ef:0f:7b:c6:cc:88:a2:
ee:74:71:f0:ab:30:aa:04:d0:e7:2d:c7:cb:24:a3:
05:49:8b:b1:db:d7:64:87:e5:21:34:1e:43:42:91:
55:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:D2:F1:88:0B:44:15:82:DF:8A:FF:76:68:05:EC:06:D8:0E:57:11
X509v3 Authority Key Identifier:
keyid:0C:A4:F1:83:C6:59:ED:57:FB:46:D5:9A:D5:48:3D:6F:E9:B3:4F:4E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/DtLxiAtEFYLfiv92aAXsBtgOVxE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.25.156.0/24
111.221.28.0/24
Signature Algorithm: sha256WithRSAEncryption
01:6e:78:e5:e3:27:64:db:82:39:e3:4e:7a:3e:b0:f3:b8:9e:
d4:e5:61:39:2e:af:7e:45:51:10:e9:7e:54:9a:86:1e:01:a4:
84:3a:22:8e:8c:ab:96:b1:24:78:d8:c8:ec:c6:65:e2:22:2d:
e2:ea:97:18:72:25:fb:d7:af:5c:48:17:5b:a7:38:26:3e:ca:
52:ec:a1:ad:2e:85:e5:14:a6:3d:60:83:34:34:79:18:d4:24:
aa:66:10:a2:ff:f9:cf:b0:d8:5d:be:2a:08:f3:29:6b:87:d0:
e6:df:ee:b4:77:d8:7f:05:bc:b4:85:9e:d0:37:63:db:f9:a0:
00:e2:9d:d7:18:56:f1:aa:f5:12:4f:8e:e3:d5:c2:2c:ad:f6:
48:c6:9a:2a:4e:4a:8d:94:83:59:de:62:63:bc:5d:32:19:4f:
e7:11:48:f2:49:33:88:7f:60:66:0f:cd:4c:74:01:0d:0a:ed:
a9:30:9a:da:37:06:7c:ba:63:74:ce:9a:7d:f6:91:d1:cd:98:
58:65:03:b0:4e:b1:62:11:52:99:0c:64:8c:b4:cc:ae:fe:18:
fc:91:87:98:3b:b1:5b:f8:b5:79:bc:e6:24:13:df:9b:90:dd:
b3:de:5c:ca:17:3a:29:47:49:94:da:bf:3d:46:ec:c1:e8:87:
5d:9d:1e:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:57 2024 by rpki-client on console-fra.rpki-client.org