Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2122/PtKTwdJh953OyylZv6dc6VSGbHY.roa
File: PtKTwdJh953OyylZv6dc6VSGbHY.roa (raw, json)
Hash identifier: +/oPFkJ9wHTy6khwf89rsRSxg6daSAITaDiTuvr2KDs=
Subject key identifier: 3E:D2:93:C1:D2:61:F7:9D:CE:CB:29:59:BF:A7:5C:E9:54:86:6C:76
Certificate issuer: /CN=E441F2CCF2E5D3EB1637EEF8EE803CB53DD1EAFE
Certificate serial: 0656
Authority key identifier: E4:41:F2:CC:F2:E5:D3:EB:16:37:EE:F8:EE:80:3C:B5:3D:D1:EA:FE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5EHyzPLl0-sWN-747oA8tT3R6v4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/PtKTwdJh953OyylZv6dc6VSGbHY.roa
Signing time: Fri 08 Apr 2022 08:54:11 +0000
ROA not before: Fri 08 Apr 2022 08:54:11 +0000
ROA not after: Fri 27 May 2022 04:59:52 +0000
asID: 38814
IP address blocks: 123.49.245.0/24 maxlen: 24
123.49.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1622 (0x656)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E441F2CCF2E5D3EB1637EEF8EE803CB53DD1EAFE
Validity
Not Before: Apr 8 08:54:11 2022 GMT
Not After : May 27 04:59:52 2022 GMT
Subject: CN=3ED293C1D261F79DCECB2959BFA75CE954866C76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e4:ff:74:eb:87:6a:b8:0f:06:15:8b:ad:b5:
2d:95:9f:0c:d3:00:ac:ee:cc:08:c8:09:b3:19:c7:
b1:ef:43:dc:4b:ec:a6:af:9a:84:96:ae:5a:95:ea:
c3:55:2c:0b:f4:8b:b2:0f:f6:5e:b0:5e:43:d1:49:
be:28:2b:ff:5f:de:63:16:39:30:a2:fa:cc:2a:3b:
c6:a2:25:0f:99:c8:f0:b4:a3:fe:4b:b2:7b:f7:72:
b4:c8:60:37:83:4e:9b:f4:80:41:63:d4:0b:d4:12:
d9:17:5c:5c:73:5a:02:c8:72:12:5a:4c:ff:e2:e7:
6d:5d:49:22:ea:b8:24:8a:10:31:9b:57:80:d3:c6:
e0:95:d6:e8:82:3c:37:c7:3d:d1:8c:8f:9e:72:1a:
c8:93:58:e1:5f:8a:44:e8:3a:06:04:70:4d:19:33:
35:88:1a:c4:cd:9f:b7:e1:28:9a:8e:8e:96:e3:7d:
a2:a3:fa:9b:9f:3a:43:5f:c9:ba:2f:68:9d:23:57:
e3:82:1e:2d:bf:55:76:d0:a1:6b:9b:69:64:6e:c6:
8e:cf:23:50:29:1e:d8:88:c7:a5:11:28:e1:97:89:
14:c6:c2:a5:dc:8e:df:17:cf:9d:32:03:03:c0:03:
10:c9:62:a2:1f:31:a6:23:fc:9b:08:00:84:68:9a:
b3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D2:93:C1:D2:61:F7:9D:CE:CB:29:59:BF:A7:5C:E9:54:86:6C:76
X509v3 Authority Key Identifier:
keyid:E4:41:F2:CC:F2:E5:D3:EB:16:37:EE:F8:EE:80:3C:B5:3D:D1:EA:FE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/5EHyzPLl0-sWN-747oA8tT3R6v4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5EHyzPLl0-sWN-747oA8tT3R6v4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/PtKTwdJh953OyylZv6dc6VSGbHY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.49.245.0/24
123.49.247.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:d0:87:5a:ad:45:f5:e7:a3:13:4d:90:6c:4a:e2:c4:f9:4c:
b9:36:35:26:63:36:f0:4e:44:58:15:f1:ea:da:63:7c:a8:e2:
6d:aa:58:d8:89:84:db:eb:35:2d:88:62:31:99:a5:46:e4:8c:
89:f9:97:da:20:dd:12:62:3e:51:08:bb:9c:20:de:0a:05:f4:
43:18:e7:2b:e4:cb:14:01:5f:07:ae:af:56:ce:37:8b:77:eb:
51:1f:50:64:59:d7:8d:b4:5f:e6:d3:08:e3:a3:75:9f:1f:a3:
e7:1d:7d:4c:e5:6e:7a:66:67:25:76:e9:5a:75:98:ee:4c:fb:
b8:46:57:6d:fd:76:32:04:77:57:2a:2d:0c:f9:47:09:b4:b7:
0e:f0:25:1e:f1:9c:d7:f7:cc:db:e7:94:e4:b5:d5:6e:4b:ab:
dd:a7:67:e2:d8:1c:19:fb:dc:c3:07:b2:a8:20:0e:f8:73:ce:
02:1c:5b:c9:83:dc:23:80:b7:a0:21:d1:cc:e9:d9:90:58:3c:
fb:c7:eb:0f:7a:c3:fd:dc:a1:7e:bb:5e:b2:d1:df:e3:6d:01:
a4:a6:c2:95:41:c7:97:0d:c8:62:49:15:a7:ed:b2:1b:7e:39:
7d:cf:e1:d8:f9:09:28:89:98:a0:5d:3b:62:14:b3:f3:17:6a:
62:5e:36:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:24 2024 by rpki-client on console-ams.rpki-client.org