Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2292/1eAS7-hUU41CTNzjdXn_5f-4mfk.roa
File: 1eAS7-hUU41CTNzjdXn_5f-4mfk.roa (raw, json)
Hash identifier: TJcoDrqM0c5Y89PzjxvrShrvCZeh2y3C8O6Py8QtCZI=
Subject key identifier: D5:E0:12:EF:E8:54:53:8D:42:4C:DC:E3:75:79:FF:E5:FF:B8:99:F9
Certificate issuer: /CN=9084038B66F4526C41C7668D1428CD22B33FBE78
Certificate serial: 0D20
Authority key identifier: 90:84:03:8B:66:F4:52:6C:41:C7:66:8D:14:28:CD:22:B3:3F:BE:78
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/1eAS7-hUU41CTNzjdXn_5f-4mfk.roa
Signing time: Fri 24 May 2024 02:24:03 +0000
ROA not before: Fri 24 May 2024 02:24:03 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 398704
IP address blocks: 115.174.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3360 (0xd20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9084038B66F4526C41C7668D1428CD22B33FBE78
Validity
Not Before: May 24 02:24:03 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=D5E012EFE854538D424CDCE37579FFE5FFB899F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:70:4f:72:62:66:52:3a:c3:a8:44:69:c2:3f:
cc:14:9c:ae:b6:13:fe:3a:01:27:cf:5a:aa:bb:0d:
d6:a9:21:85:31:0d:68:3b:f0:fd:8a:93:de:62:9a:
43:b1:83:09:a7:3d:3b:9c:52:48:24:5b:66:dd:9d:
ce:68:22:05:cf:cb:c5:8c:d6:91:c5:91:67:1c:3a:
26:03:03:61:d0:d6:22:c5:43:64:cb:bf:5a:83:94:
b5:d1:be:8a:8a:1a:35:5e:2e:c4:bf:9e:67:c4:db:
21:d6:90:61:33:14:3d:d5:39:ad:dd:c0:a7:41:6d:
78:be:99:52:85:1c:4e:c6:2f:99:04:88:81:f7:91:
05:e3:7b:c0:8e:08:98:3a:9e:fd:57:c5:74:7d:99:
d7:d2:be:ba:2b:04:0f:2e:83:0c:23:1a:bd:ee:d9:
05:7c:b8:ac:78:54:1a:05:27:a0:af:9e:fd:e7:96:
1f:c3:85:84:fd:1f:66:88:5c:0d:6c:74:8a:e0:fa:
9c:da:07:a1:73:18:74:34:d7:f9:9f:44:2c:b8:00:
68:d9:30:33:6c:4a:44:e4:c8:6e:cc:5d:de:7a:f8:
6c:55:8c:2e:fc:f6:16:ae:6e:ef:cf:7d:8a:d5:24:
c3:01:a4:0e:e1:1a:b6:d5:f1:82:14:8d:98:c0:a8:
e9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E0:12:EF:E8:54:53:8D:42:4C:DC:E3:75:79:FF:E5:FF:B8:99:F9
X509v3 Authority Key Identifier:
keyid:90:84:03:8B:66:F4:52:6C:41:C7:66:8D:14:28:CD:22:B3:3F:BE:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/1eAS7-hUU41CTNzjdXn_5f-4mfk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.174.74.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:20:c6:18:6e:b9:37:66:34:c7:a4:dc:62:5a:83:57:b9:1b:
79:0f:35:ca:91:ce:27:63:ad:eb:d2:e3:b2:ae:cf:f8:79:40:
81:8e:5a:c8:00:4a:cf:1c:87:60:dc:47:7f:ea:c7:74:5e:4f:
cd:d2:2b:6c:1d:6f:52:3b:a3:03:73:98:60:22:37:28:98:87:
37:05:b3:6c:8b:24:b4:7b:d5:27:f8:83:11:8b:bc:f7:06:a9:
ee:d6:5a:49:9b:70:70:f7:42:19:ad:39:18:b0:ce:45:34:bf:
a4:6e:67:44:e7:5a:a6:d2:03:89:db:63:84:5c:1b:f3:d7:a0:
2d:b8:b8:db:1f:b3:85:3b:bb:05:aa:2e:e9:40:52:e5:18:26:
91:ba:4a:3b:12:55:56:0b:e9:b4:a4:cd:b5:a3:3f:e7:a1:a9:
af:de:aa:d4:2e:43:3a:c9:e4:40:da:e7:ee:24:01:6e:49:59:
0c:27:8e:ba:6b:44:a8:22:97:18:f3:aa:89:e8:38:d8:19:92:
2a:3a:62:46:7b:fb:fd:f5:4f:e4:1b:89:5a:70:30:0f:8c:65:
7f:3f:2a:d4:6d:d4:e4:ed:49:c8:49:f8:92:bb:6d:ea:34:8a:
b6:66:e4:08:bb:3d:34:82:2b:43:40:ae:ed:aa:75:06:1b:6d:
8d:6f:0e:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:11:03 2025 by rpki-client