Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2122/SfduiQyDy48_I3aKrT349xWLoB0.roa
File: SfduiQyDy48_I3aKrT349xWLoB0.roa (raw, json)
Hash identifier: F3eM9UoKJ9D/0Ljze9L/bvzUUfcz1Rnc4BmOhJ9q5sA=
Subject key identifier: 49:F7:6E:89:0C:83:CB:8F:3F:23:76:8A:AD:3D:F8:F7:15:8B:A0:1D
Certificate issuer: /CN=E441F2CCF2E5D3EB1637EEF8EE803CB53DD1EAFE
Certificate serial: 0333
Authority key identifier: E4:41:F2:CC:F2:E5:D3:EB:16:37:EE:F8:EE:80:3C:B5:3D:D1:EA:FE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5EHyzPLl0-sWN-747oA8tT3R6v4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/SfduiQyDy48_I3aKrT349xWLoB0.roa
Signing time: Wed 03 Nov 2021 06:15:17 +0000
ROA not before: Wed 03 Nov 2021 06:15:17 +0000
ROA not after: Fri 27 May 2022 04:59:52 +0000
asID: 38814
IP address blocks: 123.49.245.0/24 maxlen: 24
123.49.246.0/24 maxlen: 24
123.49.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 819 (0x333)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E441F2CCF2E5D3EB1637EEF8EE803CB53DD1EAFE
Validity
Not Before: Nov 3 06:15:17 2021 GMT
Not After : May 27 04:59:52 2022 GMT
Subject: CN=49F76E890C83CB8F3F23768AAD3DF8F7158BA01D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:95:2d:43:33:d6:aa:0d:e5:09:81:f1:26:6f:
39:15:a0:e3:3a:01:9b:08:0a:cf:1e:06:bb:93:be:
aa:ce:db:d6:7d:58:a4:e9:2c:2b:36:ff:5c:11:31:
a6:f7:4b:f7:36:27:76:24:51:91:90:0d:09:f9:ef:
56:cd:86:39:64:67:27:26:bf:ae:41:5a:2f:13:b6:
d0:65:9e:ee:9e:f2:c7:e9:2d:65:d0:96:ce:7a:ab:
d1:93:7d:bb:b8:f8:04:08:ea:8b:0e:fe:89:cd:4b:
5a:24:b5:38:55:8f:17:41:45:5f:15:aa:37:1c:18:
db:42:4d:dc:a3:9c:16:b9:3e:7f:54:5f:b3:cb:cd:
9e:09:43:51:a7:4e:19:84:88:9a:c2:52:46:d4:92:
db:ab:9f:bd:e0:1b:39:3e:67:05:6e:a5:22:3c:83:
fa:56:a8:05:75:f3:01:fb:60:df:02:7c:c8:b4:f0:
15:0e:f4:b4:bd:04:62:1f:21:12:32:36:9e:2e:79:
5f:06:77:58:f4:75:86:69:dc:aa:a9:a2:ba:6f:04:
69:0d:16:40:7a:35:1d:26:f9:0a:36:41:19:cd:f5:
c5:54:cc:5f:85:42:43:77:1e:12:da:86:2f:3d:2b:
ac:01:b3:7f:f4:a4:33:04:b8:8a:fe:b8:b3:0f:99:
cd:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F7:6E:89:0C:83:CB:8F:3F:23:76:8A:AD:3D:F8:F7:15:8B:A0:1D
X509v3 Authority Key Identifier:
keyid:E4:41:F2:CC:F2:E5:D3:EB:16:37:EE:F8:EE:80:3C:B5:3D:D1:EA:FE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/5EHyzPLl0-sWN-747oA8tT3R6v4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5EHyzPLl0-sWN-747oA8tT3R6v4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/SfduiQyDy48_I3aKrT349xWLoB0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.49.245.0-123.49.247.255
Signature Algorithm: sha256WithRSAEncryption
b3:66:9e:99:96:6e:fe:cf:3e:64:4b:1e:86:86:93:23:45:9a:
e9:5a:7e:0d:01:5e:58:7e:db:1e:aa:d8:0f:7c:7c:d3:3b:36:
03:f8:3a:d3:bf:88:24:80:c8:4d:4c:27:31:bf:1c:7d:63:26:
6a:f5:f4:d1:18:5e:78:62:56:20:2a:0b:04:b1:34:f0:bd:17:
a3:da:ed:27:44:e6:4a:e6:0c:1b:66:79:98:7f:1e:62:bb:55:
b9:41:4d:09:d6:ac:ac:dc:fc:b3:1f:cb:29:78:7a:52:3b:e8:
37:ec:2c:18:6f:9d:d2:e9:89:9f:ea:af:5f:bc:ba:ed:dc:1c:
8e:c8:43:63:73:45:3d:2b:8b:77:56:09:c9:41:f5:a0:bb:60:
c4:32:90:8a:be:12:eb:e7:f4:07:63:39:b0:73:5d:fa:9b:4d:
c6:ad:91:8b:35:e6:63:80:ce:aa:6d:4b:70:5a:ad:68:59:8d:
53:3b:4f:95:9c:45:33:dd:6e:dc:1b:57:9b:58:80:94:e4:4f:
aa:7f:d6:72:25:b2:9a:c7:83:e2:fb:df:74:f1:2d:86:91:de:
ca:9a:d7:82:07:8c:3a:af:a7:27:fb:2c:79:c8:ab:47:c8:10:
f1:41:0b:fb:1f:dd:5b:8e:86:c4:61:8a:3d:ec:52:f1:ee:24:
54:46:97:3e
-----BEGIN CERTIFICATE-----
MIIE3zCCA8egAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTQ0
MUYyQ0NGMkU1RDNFQjE2MzdFRUY4RUU4MDNDQjUzREQxRUFGRTAeFw0yMTExMDMw
NjE1MTdaFw0yMjA1MjcwNDU5NTJaMDMxMTAvBgNVBAMTKDQ5Rjc2RTg5MEM4M0NC
OEYzRjIzNzY4QUFEM0RGOEY3MTU4QkEwMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDlS1DM9aqDeUJgfEmbzkVoOM6AZsICs8eBruTvqrO29Z9WKTp
LCs2/1wRMab3S/c2J3YkUZGQDQn571bNhjlkZycmv65BWi8TttBlnu6e8sfpLWXQ
ls56q9GTfbu4+AQI6osO/onNS1oktThVjxdBRV8VqjccGNtCTdyjnBa5Pn9UX7PL
zZ4JQ1GnThmEiJrCUkbUkturn73gGzk+ZwVupSI8g/pWqAV18wH7YN8CfMi08BUO
9LS9BGIfIRIyNp4ueV8Gd1j0dYZp3KqporpvBGkNFkB6NR0m+Qo2QRnN9cVUzF+F
QkN3HhLahi89K6wBs3/0pDMEuIr+uLMPmc3PAgMBAAGjggH7MIIB9zAdBgNVHQ4E
FgQUSfduiQyDy48/I3aKrT349xWLoB0wHwYDVR0jBBgwFoAU5EHyzPLl0+sWN+74
7oA8tT3R6v4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjEy
Mi81RUh5elBMbDAtc1dOLTc0N29BOHRUM1I2djQuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwLzVFSHl6UExsMC1zV04tNzQ3b0E4dFQzUjZ2NC5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIxMjIvU2ZkdWlReUR5NDhf
STNhS3JUMzQ5eFdMb0IwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAnBggrBgEFBQcBBwEB/wQYMBYwFAQCAAEw
DjAMAwQAezH1AwQDezHwMA0GCSqGSIb3DQEBCwUAA4IBAQCzZp6Zlm7+zz5kSx6G
hpMjRZrpWn4NAV5YftseqtgPfHzTOzYD+DrTv4gkgMhNTCcxvxx9YyZq9fTRGF54
YlYgKgsEsTTwvRej2u0nROZK5gwbZnmYfx5iu1W5QU0J1qys3PyzH8speHpSO+g3
7CwYb53S6Ymf6q9fvLrt3ByOyENjc0U9K4t3VgnJQfWgu2DEMpCKvhLr5/QHYzmw
c136m03GrZGLNeZjgM6qbUtwWq1oWY1TO0+VnEUz3W7cG1ebWICU5E+qf9ZyJbKa
x4Pi+9908S2Gkd7KmteCB4w6r6cn+yx5yKtHyBDxQQv7H91bjobEYYo97FLx7iRU
Rpc+
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:24 2024 by rpki-client on console-ams.rpki-client.org