Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/2Sj9mbFPgfR3M-C5vH41lEqO3G0.roa
File: 2Sj9mbFPgfR3M-C5vH41lEqO3G0.roa (raw, json)
Hash identifier: X5FqmFcTyYhFKl4RhNp8eboNKnvFQ7wbFBlfaWygIvs=
Subject key identifier: D9:28:FD:99:B1:4F:81:F4:77:33:E0:B9:BC:7E:35:94:4A:8E:DC:6D
Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC
Certificate serial: 096B
Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/2Sj9mbFPgfR3M-C5vH41lEqO3G0.roa
Signing time: Tue 07 Jun 2022 10:06:43 +0000
ROA not before: Tue 07 Jun 2022 10:06:43 +0000
ROA not after: Wed 07 Jun 2023 03:34:43 +0000
asID: 134762
IP address blocks: 43.226.50.0/23 maxlen: 23
43.226.76.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2411 (0x96b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC
Validity
Not Before: Jun 7 10:06:43 2022 GMT
Not After : Jun 7 03:34:43 2023 GMT
Subject: CN=D928FD99B14F81F47733E0B9BC7E35944A8EDC6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:27:24:6c:94:59:76:f3:7d:68:4d:bb:96:88:
5b:ac:38:6b:f4:b4:9f:3a:80:15:9d:11:5c:ad:f5:
6e:c1:e8:c1:76:7e:66:89:a7:70:b2:68:20:06:b9:
0b:33:48:b9:7e:bb:a7:ad:16:a2:eb:7f:75:e1:8e:
e9:6f:88:5a:64:4d:a4:84:69:32:99:9d:2d:fd:4b:
aa:d8:01:55:0d:f1:8a:5e:cc:51:ed:4e:df:28:45:
54:b5:25:a5:84:85:3c:52:44:23:2c:a9:62:f4:67:
ab:17:98:88:1f:15:3f:d6:16:05:92:14:49:54:0d:
83:94:eb:4e:b6:e2:73:82:04:2c:a3:2b:7a:e4:73:
b3:49:75:76:75:1f:e3:71:65:7a:f8:d9:f5:f2:87:
b7:55:9f:7b:63:e9:57:b9:8b:cd:77:8a:c1:63:0a:
dd:d3:79:f1:21:ba:f7:52:57:d2:81:67:a4:19:9a:
50:60:19:e2:16:92:d6:88:fe:f6:2a:0c:20:64:80:
bc:25:3c:ef:f5:2c:e1:33:a9:37:11:0b:6b:00:3a:
05:d5:ee:cb:ac:8b:36:ae:d4:7f:f8:35:38:0a:87:
f7:8f:6f:57:ec:ae:df:07:fe:50:3a:b3:b1:79:8a:
e2:d8:75:33:e4:ce:b3:19:ab:78:bc:e1:41:8f:f7:
f8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:28:FD:99:B1:4F:81:F4:77:33:E0:B9:BC:7E:35:94:4A:8E:DC:6D
X509v3 Authority Key Identifier:
keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/2Sj9mbFPgfR3M-C5vH41lEqO3G0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.50.0/23
43.226.76.0/23
Signature Algorithm: sha256WithRSAEncryption
62:e7:71:da:ac:6f:e0:62:a6:8e:2f:d2:af:a8:33:e3:4b:d8:
b3:90:8e:11:29:bc:0f:f0:46:e4:b9:5f:e0:91:9d:00:b2:10:
32:ad:f5:33:38:5c:52:f1:0d:0b:bc:04:12:6d:c6:0f:1c:c0:
bc:b8:a2:42:b1:65:24:84:16:07:de:72:9e:65:d2:a3:48:a3:
9f:7f:e3:6e:74:0f:c4:bc:f6:47:3a:98:17:a9:81:b5:c9:a4:
f7:c2:91:59:1d:10:51:1d:35:81:62:8c:7c:f9:e2:7f:c5:f0:
42:4e:66:80:c7:7c:f8:fb:dd:fa:40:d4:78:d4:91:62:a2:fb:
af:29:cc:9d:44:1d:98:d6:d0:d2:bc:f4:86:3b:12:02:24:94:
a5:6e:98:f1:87:1f:e1:60:39:79:e6:37:a6:1f:fd:f1:5b:d2:
44:68:78:d1:88:32:ca:4a:e5:e5:47:d6:77:48:8d:cc:60:26:
f0:aa:34:da:97:27:41:77:33:fc:7c:46:9a:80:e9:20:6c:70:
65:19:23:b1:c7:73:4a:d7:75:6e:46:30:9b:ea:5e:eb:67:d3:
00:e5:68:89:c5:a2:11:ec:4f:11:03:59:5f:57:fc:09:7c:e0:
53:4d:6d:d0:3f:ac:da:b8:57:e3:d5:25:e6:47:20:39:24:9c:
16:36:a9:15
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgICCWswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEFF
NENGNzhCNDlERjBCMkMxRDI5RDMyRTQ4QTk0M0FFNEY0MUFDQzAeFw0yMjA2MDcx
MDA2NDNaFw0yMzA2MDcwMzM0NDNaMDMxMTAvBgNVBAMTKEQ5MjhGRDk5QjE0Rjgx
RjQ3NzMzRTBCOUJDN0UzNTk0NEE4RURDNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAJyRslFl2831oTbuWiFusOGv0tJ86gBWdEVyt9W7B6MF2fmaJ
p3CyaCAGuQszSLl+u6etFqLrf3XhjulviFpkTaSEaTKZnS39S6rYAVUN8YpezFHt
Tt8oRVS1JaWEhTxSRCMsqWL0Z6sXmIgfFT/WFgWSFElUDYOU60624nOCBCyjK3rk
c7NJdXZ1H+NxZXr42fXyh7dVn3tj6Ve5i813isFjCt3TefEhuvdSV9KBZ6QZmlBg
GeIWktaI/vYqDCBkgLwlPO/1LOEzqTcRC2sAOgXV7susizau1H/4NTgKh/ePb1fs
rt8H/lA6s7F5iuLYdTPkzrMZq3i84UGP9/jfAgMBAAGjggH5MIIB9TAdBgNVHQ4E
FgQU2Sj9mbFPgfR3M+C5vH41lEqO3G0wHwYDVR0jBBgwFoAUiuTPeLSd8LLB0p0y
5IqUOuT0GswwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTY2
My9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL2l1VFBlTFNkOExMQjBwMHk1SXFVT3VUMEdzdy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2NjMvMlNqOW1iRlBnZlIz
TS1DNXZINDFsRXFPM0cwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEw
DAMEASviMgMEASviTDANBgkqhkiG9w0BAQsFAAOCAQEAYudx2qxv4GKmji/Sr6gz
40vYs5COESm8D/BG5Llf4JGdALIQMq31MzhcUvENC7wEEm3GDxzAvLiiQrFlJIQW
B95ynmXSo0ijn3/jbnQPxLz2RzqYF6mBtcmk98KRWR0QUR01gWKMfPnif8XwQk5m
gMd8+Pvd+kDUeNSRYqL7rynMnUQdmNbQ0rz0hjsSAiSUpW6Y8Ycf4WA5eeY3ph/9
8VvSRGh40Ygyykrl5UfWd0iNzGAm8Ko02pcnQXcz/HxGmoDpIGxwZRkjscdzStd1
bkYwm+pe62fTAOVoicWiEexPEQNZX1f8CXzgU01t0D+s2rhX49Ul5kcgOSScFjap
FQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:57 2024 by rpki-client on console-fra.rpki-client.org