Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2122/HxfWdVHXx2BAtPOH-BK5u6eWBhA.roa
File: HxfWdVHXx2BAtPOH-BK5u6eWBhA.roa (raw, json)
Hash identifier: peN+7TqbihRmErMjx2NZraAvQEIpES1KZtukXAgudz8=
Subject key identifier: 1F:17:D6:75:51:D7:C7:60:40:B4:F3:87:F8:12:B9:BB:A7:96:06:10
Certificate issuer: /CN=E441F2CCF2E5D3EB1637EEF8EE803CB53DD1EAFE
Certificate serial: 065A
Authority key identifier: E4:41:F2:CC:F2:E5:D3:EB:16:37:EE:F8:EE:80:3C:B5:3D:D1:EA:FE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5EHyzPLl0-sWN-747oA8tT3R6v4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/HxfWdVHXx2BAtPOH-BK5u6eWBhA.roa
Signing time: Fri 08 Apr 2022 10:36:32 +0000
ROA not before: Fri 08 Apr 2022 10:36:32 +0000
ROA not after: Fri 27 May 2022 04:59:52 +0000
asID: 4515
IP address blocks: 123.49.237.0/24 maxlen: 24
123.49.242.0/24 maxlen: 24
123.49.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1626 (0x65a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E441F2CCF2E5D3EB1637EEF8EE803CB53DD1EAFE
Validity
Not Before: Apr 8 10:36:32 2022 GMT
Not After : May 27 04:59:52 2022 GMT
Subject: CN=1F17D67551D7C76040B4F387F812B9BBA7960610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:3d:f5:ff:d4:b7:72:82:51:46:0a:91:48:63:
91:59:10:8d:96:99:f7:c0:92:2c:8f:d2:c4:ad:dd:
16:39:71:98:6f:a9:6d:46:ec:82:3e:d4:67:a2:e6:
45:f0:ed:51:69:2c:18:cb:7a:eb:07:25:80:1b:2a:
6c:3c:75:ea:cf:04:99:4c:62:c8:98:da:b6:37:ba:
6a:78:5f:d9:04:d5:7c:4b:23:28:d1:aa:85:01:57:
71:e3:e9:dc:6b:d5:81:79:49:3b:1e:3d:57:e2:5b:
1d:6b:e7:13:1a:b5:f9:90:b3:e9:24:60:7f:b6:f2:
80:9a:4c:9b:93:05:1f:65:05:ff:34:0e:dc:81:cc:
26:76:bd:c4:fc:9f:4d:74:15:6b:74:02:0e:04:6c:
32:ce:22:37:bf:4f:31:22:3b:84:0a:a3:1d:85:2f:
48:a8:e1:cd:aa:8e:66:fb:91:e7:2b:c8:20:a4:bd:
85:f8:55:9c:c3:cd:e2:9c:af:9b:f7:cd:15:3f:c0:
dd:09:c6:58:91:b8:f2:9a:81:88:db:cb:92:63:ce:
3a:fc:74:60:f4:16:87:2f:83:cf:a2:83:2b:f9:f9:
83:77:a4:af:90:4d:01:55:9c:b8:e9:89:d7:50:2f:
4e:de:99:88:40:9a:1d:9d:c6:42:85:87:23:f0:ff:
e9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:17:D6:75:51:D7:C7:60:40:B4:F3:87:F8:12:B9:BB:A7:96:06:10
X509v3 Authority Key Identifier:
keyid:E4:41:F2:CC:F2:E5:D3:EB:16:37:EE:F8:EE:80:3C:B5:3D:D1:EA:FE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/5EHyzPLl0-sWN-747oA8tT3R6v4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5EHyzPLl0-sWN-747oA8tT3R6v4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/HxfWdVHXx2BAtPOH-BK5u6eWBhA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.49.237.0/24
123.49.242.0/24
123.49.246.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:d8:e2:44:80:9a:66:7e:de:c5:e8:8b:eb:23:97:3c:08:29:
12:45:64:24:c9:18:9b:d4:c4:9c:76:38:fd:af:5e:c8:75:ca:
68:d1:f1:0e:99:8b:44:00:d8:50:57:e5:d0:0f:93:c4:f9:f3:
1d:50:fd:91:6c:7b:bd:8a:2a:48:2e:ff:49:51:10:99:c6:37:
06:f6:1b:ae:fb:c7:d3:08:23:60:7c:ec:44:a5:36:92:0d:77:
c7:8b:74:49:f2:f2:1b:a6:f1:42:b5:3b:43:bc:5b:29:95:12:
4f:0f:fc:a4:95:cb:63:60:a7:e7:11:8d:e7:4a:94:ef:1a:2a:
41:4a:3e:28:66:b8:b1:d0:30:68:32:72:3b:da:72:57:bf:d7:
ba:2a:31:5c:ed:f2:4c:81:01:80:16:45:47:e4:b9:cd:44:49:
27:2d:9d:08:c0:5d:dd:0f:33:d6:b4:83:d5:f2:5e:dd:07:ee:
1f:b2:a2:d2:a7:54:58:f2:dd:f5:b0:84:d2:e6:fa:06:41:df:
8e:b6:b0:7e:0b:f6:a3:18:ac:09:b3:a4:5f:32:2d:8c:7e:e8:
dc:d3:56:b3:6c:04:9d:b0:e9:a5:b0:88:8c:ab:7d:df:52:29:
6c:4f:c1:29:84:82:b9:bc:cd:8d:d1:ed:3c:bd:d3:ee:04:db:
a9:cc:22:43
-----BEGIN CERTIFICATE-----
MIIE4zCCA8ugAwIBAgICBlowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTQ0
MUYyQ0NGMkU1RDNFQjE2MzdFRUY4RUU4MDNDQjUzREQxRUFGRTAeFw0yMjA0MDgx
MDM2MzJaFw0yMjA1MjcwNDU5NTJaMDMxMTAvBgNVBAMTKDFGMTdENjc1NTFEN0M3
NjA0MEI0RjM4N0Y4MTJCOUJCQTc5NjA2MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD2PfX/1LdyglFGCpFIY5FZEI2WmffAkiyP0sSt3RY5cZhvqW1G
7II+1Gei5kXw7VFpLBjLeusHJYAbKmw8derPBJlMYsiY2rY3ump4X9kE1XxLIyjR
qoUBV3Hj6dxr1YF5STsePVfiWx1r5xMatfmQs+kkYH+28oCaTJuTBR9lBf80DtyB
zCZ2vcT8n010FWt0Ag4EbDLOIje/TzEiO4QKox2FL0io4c2qjmb7kecryCCkvYX4
VZzDzeKcr5v3zRU/wN0JxliRuPKagYjby5Jjzjr8dGD0Focvg8+igyv5+YN3pK+Q
TQFVnLjpiddQL07emYhAmh2dxkKFhyPw/+npAgMBAAGjggH/MIIB+zAdBgNVHQ4E
FgQUHxfWdVHXx2BAtPOH+BK5u6eWBhAwHwYDVR0jBBgwFoAU5EHyzPLl0+sWN+74
7oA8tT3R6v4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjEy
Mi81RUh5elBMbDAtc1dOLTc0N29BOHRUM1I2djQuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwLzVFSHl6UExsMC1zV04tNzQ3b0E4dFQzUjZ2NC5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIxMjIvSHhmV2RWSFh4MkJB
dFBPSC1CSzV1NmVXQmhBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDArBggrBgEFBQcBBwEB/wQcMBowGAQCAAEw
EgMEAHsx7QMEAHsx8gMEAHsx9jANBgkqhkiG9w0BAQsFAAOCAQEAGtjiRICaZn7e
xeiL6yOXPAgpEkVkJMkYm9TEnHY4/a9eyHXKaNHxDpmLRADYUFfl0A+TxPnzHVD9
kWx7vYoqSC7/SVEQmcY3BvYbrvvH0wgjYHzsRKU2kg13x4t0SfLyG6bxQrU7Q7xb
KZUSTw/8pJXLY2Cn5xGN50qU7xoqQUo+KGa4sdAwaDJyO9pyV7/XuioxXO3yTIEB
gBZFR+S5zURJJy2dCMBd3Q8z1rSD1fJe3QfuH7Ki0qdUWPLd9bCE0ub6BkHfjraw
fgv2oxisCbOkXzItjH7o3NNWs2wEnbDppbCIjKt931IpbE/BKYSCubzNjdHtPL3T
7gTbqcwiQw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:24 2024 by rpki-client on console-ams.rpki-client.org