Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2072/GqoSKzUi-MdK9NO2SK0Jhw0sXQY.roa
File: GqoSKzUi-MdK9NO2SK0Jhw0sXQY.roa (raw, json)
Hash identifier: 8/t+VApybih8TEBsPWfQjzJp2uliWCm/cGZ7jx1SW3g=
Subject key identifier: 1A:AA:12:2B:35:22:F8:C7:4A:F4:D3:B6:48:AD:09:87:0D:2C:5D:06
Certificate issuer: /CN=BCF4017A6E2915F26147D419E5F7A7D164D04984
Certificate serial: 102A
Authority key identifier: BC:F4:01:7A:6E:29:15:F2:61:47:D4:19:E5:F7:A7:D1:64:D0:49:84
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vPQBem4pFfJhR9QZ5fen0WTQSYQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/GqoSKzUi-MdK9NO2SK0Jhw0sXQY.roa
Signing time: Wed 24 May 2023 03:53:47 +0000
ROA not before: Wed 24 May 2023 03:53:47 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 133199
IP address blocks: 103.67.173.0/24 maxlen: 24
103.67.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4138 (0x102a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BCF4017A6E2915F26147D419E5F7A7D164D04984
Validity
Not Before: May 24 03:53:47 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=1AAA122B3522F8C74AF4D3B648AD09870D2C5D06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c7:87:72:de:89:e6:fa:36:23:a6:9e:16:22:
63:73:44:cc:d2:a5:54:00:ab:65:a8:d1:d9:69:09:
45:f9:23:0a:b0:02:d4:52:54:9d:84:33:ac:2e:e8:
c4:d2:c7:92:28:2c:32:95:18:ec:15:73:3a:5c:d2:
70:9e:a7:1a:7a:1a:ee:b7:43:b1:5b:d4:2f:3e:98:
cd:f3:59:4a:cf:09:e9:f8:4a:83:8d:3a:44:a1:fb:
b0:78:47:e6:82:83:a6:f9:78:d1:39:85:d3:77:33:
44:16:12:8d:73:aa:45:0e:21:c0:27:50:b8:e8:bf:
a5:9a:ff:06:30:65:77:3a:72:f6:7b:89:4d:5f:c5:
42:63:b2:bc:ce:b7:1b:f3:72:45:1a:7b:69:4f:d2:
30:8c:a8:57:71:00:b1:47:82:7f:c4:51:27:ac:66:
16:55:e9:cb:3d:ad:86:3c:d5:3c:b1:a4:57:98:85:
96:b8:3d:b5:97:b3:47:87:d5:9f:64:ed:ac:a1:d4:
be:7a:fe:67:c4:f9:8a:6d:69:56:ad:60:54:ef:ad:
bf:a2:e7:8b:aa:77:a0:ff:a4:02:b8:33:5a:b3:1f:
59:68:2d:c9:f8:4d:3e:30:41:12:20:42:62:be:53:
f1:e6:f2:d0:32:3f:39:58:b7:c1:43:a9:20:d3:68:
37:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:AA:12:2B:35:22:F8:C7:4A:F4:D3:B6:48:AD:09:87:0D:2C:5D:06
X509v3 Authority Key Identifier:
keyid:BC:F4:01:7A:6E:29:15:F2:61:47:D4:19:E5:F7:A7:D1:64:D0:49:84
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vPQBem4pFfJhR9QZ5fen0WTQSYQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/GqoSKzUi-MdK9NO2SK0Jhw0sXQY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.67.173.0-103.67.174.255
Signature Algorithm: sha256WithRSAEncryption
21:c2:13:77:d0:b1:ee:12:3e:38:ad:e6:71:d7:65:c1:59:94:
8b:ed:1b:d1:9a:0d:4e:f6:04:7e:7a:00:2a:cf:2e:41:e0:6e:
bc:46:65:7a:5b:bd:a9:58:7b:68:c8:e4:79:a9:5e:84:23:59:
0b:bc:4a:df:ba:70:5c:98:fd:c0:38:44:47:a1:fb:6f:e5:fd:
1d:ea:86:bb:12:b4:41:f5:8b:1e:c1:7a:91:1a:11:a9:61:74:
9e:ef:30:30:3a:e0:29:b4:1f:ba:ac:53:0f:4b:d8:99:f3:cc:
93:9a:23:78:e9:dd:27:17:88:97:d1:51:d5:6b:6d:d5:c5:72:
7b:58:f4:c4:af:2c:e5:28:ea:b7:78:54:16:9f:8b:4d:5e:81:
7a:a8:6c:07:4a:65:e7:15:49:cf:0c:2d:fb:d2:18:ea:71:07:
17:3d:e7:56:19:3a:6f:16:58:a3:0c:35:1e:72:bb:1f:46:2b:
70:54:b1:79:41:d5:f0:5b:7a:38:5d:95:06:9a:3d:e3:24:18:
01:be:96:b9:3e:0a:c0:a1:c3:df:0a:71:f6:01:f8:f1:b8:fe:
02:e3:57:53:58:d8:7e:00:9c:63:e9:e2:3d:90:fc:d8:7f:86:
9a:13:a4:b0:24:39:fc:50:bc:ee:ed:bd:c2:d7:99:ee:02:28:
71:6e:26:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:58 2024 by rpki-client on console-fra.rpki-client.org