Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1587/p45xJo4XUivjqICQKBZyKKhtcao.roa
File: p45xJo4XUivjqICQKBZyKKhtcao.roa (raw, json)
Hash identifier: dKo0ATGMS6l2BFMaoh7zr5slSwH2UenbCIrhiPejhTk=
Subject key identifier: A7:8E:71:26:8E:17:52:2B:E3:A8:80:90:28:16:72:28:A8:6D:71:AA
Certificate issuer: /CN=2DE14F2AC7F0238137052EAA315C5BD643134022
Certificate serial: 1052
Authority key identifier: 2D:E1:4F:2A:C7:F0:23:81:37:05:2E:AA:31:5C:5B:D6:43:13:40:22
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LeFPKsfwI4E3BS6qMVxb1kMTQCI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/p45xJo4XUivjqICQKBZyKKhtcao.roa
Signing time: Wed 24 May 2023 03:53:39 +0000
ROA not before: Wed 24 May 2023 03:53:39 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 63689
IP address blocks: 103.204.72.0/22 maxlen: 24
202.160.140.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4178 (0x1052)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DE14F2AC7F0238137052EAA315C5BD643134022
Validity
Not Before: May 24 03:53:39 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=A78E71268E17522BE3A8809028167228A86D71AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:52:71:93:ac:3c:3d:53:ad:4c:69:39:7b:87:
eb:51:1d:e9:df:a3:f8:93:2a:ea:cc:3d:cf:5e:62:
c0:41:7f:e9:df:cc:25:6b:98:a2:54:55:88:23:96:
32:41:b2:a0:1f:61:cf:aa:51:a1:26:05:b3:8a:b9:
5c:73:49:8e:68:ff:b5:9e:f5:d9:c3:28:e7:63:48:
aa:31:67:b7:29:ef:9c:83:86:65:a5:21:c2:35:89:
1b:49:2c:52:5a:ef:92:66:78:fa:7d:61:dc:79:34:
87:3c:1a:1e:3e:6a:c8:f1:8f:24:9e:37:8b:96:38:
81:e9:cf:2c:73:77:26:36:c8:ef:55:46:49:d6:a1:
e9:cb:9e:b8:b6:03:8d:2e:6e:fb:98:10:a3:31:32:
a7:5e:39:07:65:a0:25:d6:fe:3e:10:9b:59:7f:4f:
d8:c7:53:2d:c8:ea:aa:86:17:74:cf:8a:9f:76:c5:
67:65:4c:9c:6a:9a:d4:c6:d9:2b:d6:19:b2:9c:f8:
db:cd:ea:93:a8:57:ce:ae:f0:29:e3:40:74:5c:50:
fd:c5:24:48:86:1e:f3:56:9d:51:41:7e:90:06:34:
7e:78:11:c3:06:a8:2c:50:5b:17:8b:1c:ac:47:82:
a1:69:46:6e:c2:c2:33:a4:ab:f5:57:94:97:a0:73:
89:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:8E:71:26:8E:17:52:2B:E3:A8:80:90:28:16:72:28:A8:6D:71:AA
X509v3 Authority Key Identifier:
keyid:2D:E1:4F:2A:C7:F0:23:81:37:05:2E:AA:31:5C:5B:D6:43:13:40:22
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/LeFPKsfwI4E3BS6qMVxb1kMTQCI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LeFPKsfwI4E3BS6qMVxb1kMTQCI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/p45xJo4XUivjqICQKBZyKKhtcao.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.204.72.0/22
202.160.140.0/22
Signature Algorithm: sha256WithRSAEncryption
73:d6:0c:5c:61:47:28:18:21:1f:1a:3b:50:f6:03:f9:2c:fc:
ae:07:cb:f9:e8:a1:80:0d:72:f6:2c:f2:bf:27:05:27:f1:f2:
f5:ad:5c:0e:9f:de:69:b9:db:e4:19:53:8a:94:4b:d7:6f:54:
8b:d6:50:4a:74:fe:b9:6c:2d:1a:b0:c9:c6:ac:5a:fb:ba:c2:
b1:f2:ee:46:6b:ca:0c:ac:cf:7d:a4:82:08:01:2a:a7:f6:59:
dc:2d:99:20:f7:95:7e:91:0e:cd:27:2c:e6:01:7f:be:b2:c6:
5c:b9:d9:58:e8:46:2a:65:5c:9d:36:83:60:4e:f4:ea:df:2c:
5e:e1:29:a6:af:8a:46:f9:3f:bb:2f:d0:c7:97:4b:d4:6e:45:
38:db:96:e3:ba:49:23:2c:d2:78:e9:3f:1f:0d:d6:88:61:bc:
fc:c5:86:9b:b7:73:ac:db:bc:3f:5b:a4:79:e0:5e:fd:c5:26:
df:2a:2b:7e:ae:62:24:f2:fc:2c:c4:eb:e9:ad:1b:43:97:d6:
9f:5f:cd:52:b1:8b:a4:33:7e:7d:1a:0d:1d:13:b8:41:3f:ac:
08:f6:e7:14:b9:be:e1:43:15:d6:50:bb:bf:d3:48:f3:da:e1:
48:a6:07:8d:ec:78:27:3b:6c:b6:ed:ec:df:c8:54:8d:1d:ee:
60:47:bc:c3
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgICEFIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRF
MTRGMkFDN0YwMjM4MTM3MDUyRUFBMzE1QzVCRDY0MzEzNDAyMjAeFw0yMzA1MjQw
MzUzMzlaFw0yNDAzMjcwMTEzMTBaMDMxMTAvBgNVBAMTKEE3OEU3MTI2OEUxNzUy
MkJFM0E4ODA5MDI4MTY3MjI4QTg2RDcxQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCcUnGTrDw9U61MaTl7h+tRHenfo/iTKurMPc9eYsBBf+nfzCVr
mKJUVYgjljJBsqAfYc+qUaEmBbOKuVxzSY5o/7We9dnDKOdjSKoxZ7cp75yDhmWl
IcI1iRtJLFJa75JmePp9Ydx5NIc8Gh4+asjxjySeN4uWOIHpzyxzdyY2yO9VRknW
oenLnri2A40ubvuYEKMxMqdeOQdloCXW/j4Qm1l/T9jHUy3I6qqGF3TPip92xWdl
TJxqmtTG2SvWGbKc+NvN6pOoV86u8CnjQHRcUP3FJEiGHvNWnVFBfpAGNH54EcMG
qCxQWxeLHKxHgqFpRm7CwjOkq/VXlJegc4nlAgMBAAGjggH5MIIB9TAdBgNVHQ4E
FgQUp45xJo4XUivjqICQKBZyKKhtcaowHwYDVR0jBBgwFoAULeFPKsfwI4E3BS6q
MVxb1kMTQCIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTU4
Ny9MZUZQS3Nmd0k0RTNCUzZxTVZ4YjFrTVRRQ0kuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL0xlRlBLc2Z3STRFM0JTNnFNVnhiMWtNVFFDSS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1ODcvcDQ1eEpvNFhVaXZq
cUlDUUtCWnlLS2h0Y2FvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEw
DAMEAmfMSAMEAsqgjDANBgkqhkiG9w0BAQsFAAOCAQEAc9YMXGFHKBghHxo7UPYD
+Sz8rgfL+eihgA1y9izyvycFJ/Hy9a1cDp/eabnb5BlTipRL129Ui9ZQSnT+uWwt
GrDJxqxa+7rCsfLuRmvKDKzPfaSCCAEqp/ZZ3C2ZIPeVfpEOzScs5gF/vrLGXLnZ
WOhGKmVcnTaDYE706t8sXuEppq+KRvk/uy/Qx5dL1G5FONuW47pJIyzSeOk/Hw3W
iGG8/MWGm7dzrNu8P1ukeeBe/cUm3yorfq5iJPL8LMTr6a0bQ5fWn1/NUrGLpDN+
fRoNHRO4QT+sCPbnFLm+4UMV1lC7v9NI89rhSKYHjex4Jztstu3s38hUjR3uYEe8
ww==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:23 2024 by rpki-client on console-ams.rpki-client.org