Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2122/UwF3RRWBWBJzOKMpEgCPwJHusDQ.roa
File: UwF3RRWBWBJzOKMpEgCPwJHusDQ.roa (raw, json)
Hash identifier: 2j9APxsIAALLNwJhqrNuF15QX7EES49mUdK4GoYHWms=
Subject key identifier: 53:01:77:45:15:81:58:12:73:38:A3:29:12:00:8F:C0:91:EE:B0:34
Certificate issuer: /CN=88884D4D4A75F17F08DD44CBA9592FE70F539D97
Certificate serial: 1BF6
Authority key identifier: 88:88:4D:4D:4A:75:F1:7F:08:DD:44:CB:A9:59:2F:E7:0F:53:9D:97
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iIhNTUp18X8I3UTLqVkv5w9TnZc.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/UwF3RRWBWBJzOKMpEgCPwJHusDQ.roa
Signing time: Fri 17 Jan 2025 01:26:37 +0000
ROA not before: Fri 17 Jan 2025 01:26:37 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 38814
IP address blocks: 123.49.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7158 (0x1bf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88884D4D4A75F17F08DD44CBA9592FE70F539D97
Validity
Not Before: Jan 17 01:26:37 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=53017745158158127338A32912008FC091EEB034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:67:97:76:5c:00:09:32:17:d7:e2:fd:10:d0:
00:06:dc:ec:43:2b:af:72:b3:1c:cd:dc:c1:b5:f7:
85:2e:fc:06:62:01:40:9e:72:94:f7:0e:5f:12:6b:
ea:00:6d:4b:9f:d4:64:2d:51:d3:3e:41:b7:bd:bd:
62:f6:fc:37:bd:df:83:d5:35:c5:a5:8c:d4:a5:40:
31:48:ef:ca:60:70:b2:27:07:30:52:75:fa:a4:e8:
b6:26:21:30:5f:9c:2e:52:72:53:d0:97:98:1e:7d:
cb:07:d5:c1:43:e7:4d:5f:6e:81:49:33:16:f3:5c:
07:28:9c:3f:a6:6e:8f:36:aa:91:74:21:25:a9:28:
a8:47:80:13:9d:59:37:b9:2c:e7:e2:d2:34:ae:ee:
d2:56:e0:7c:7a:a1:88:e1:61:6a:2a:26:26:ba:32:
54:32:b6:54:21:16:aa:f5:f6:ab:5f:5d:6e:b5:82:
f9:8e:6f:25:81:51:6c:25:be:cc:23:64:9a:a9:ef:
4d:42:87:49:8a:c2:8c:96:0e:9a:58:0b:04:89:b1:
69:85:b4:7c:81:a2:34:96:6d:42:73:2a:eb:d9:09:
24:fd:32:b9:2a:51:cb:85:e3:f9:56:4d:77:4a:df:
bf:5d:7d:22:cb:a8:a0:11:29:d9:c3:3c:6c:9b:64:
5a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:01:77:45:15:81:58:12:73:38:A3:29:12:00:8F:C0:91:EE:B0:34
X509v3 Authority Key Identifier:
keyid:88:88:4D:4D:4A:75:F1:7F:08:DD:44:CB:A9:59:2F:E7:0F:53:9D:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/iIhNTUp18X8I3UTLqVkv5w9TnZc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iIhNTUp18X8I3UTLqVkv5w9TnZc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/UwF3RRWBWBJzOKMpEgCPwJHusDQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.49.245.0/24
Signature Algorithm: sha256WithRSAEncryption
53:0f:c7:50:52:52:4c:5d:65:00:05:e0:70:2e:4d:99:8a:17:
ef:57:31:64:64:c3:40:1e:2f:0c:0e:fd:22:a3:f9:0b:49:f0:
ec:f2:d2:f5:1c:fb:7a:14:bf:a6:09:35:64:b4:e2:1f:8e:c7:
51:20:f8:f4:0c:6c:c2:b1:73:b8:da:b1:c4:d9:e5:df:38:13:
ad:bc:ec:2e:ee:e4:30:43:98:38:ab:32:30:1f:58:67:f3:8e:
b8:9c:1d:23:04:ba:5f:dc:a5:75:13:53:c7:ea:33:e0:9d:74:
8a:0e:02:d0:67:f0:d4:34:0c:6f:52:c4:00:a5:1c:37:37:4d:
de:45:5d:7b:67:03:35:20:55:4a:bc:19:16:04:07:24:9f:ef:
43:92:56:61:76:a9:c5:37:4b:9b:09:41:e9:8f:10:93:c6:f7:
63:29:a7:32:92:e6:5b:77:8f:b3:9a:b9:79:11:5f:06:fb:5b:
c8:61:ad:7a:c5:e9:9d:92:93:6f:e1:d4:6f:70:28:2c:a0:a7:
c2:07:a3:eb:72:18:5a:d9:48:35:d1:e6:08:62:2d:35:d8:f3:
63:8d:3d:1a:95:88:4b:f0:5f:8a:6f:ba:2f:70:37:e6:0d:22:
86:df:6e:f2:36:c9:a7:fc:2f:1b:ac:75:3f:b6:12:f0:0e:e1:
4c:60:67:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:46:06 2025 by rpki-client