Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2309/0EQTcALpiIGix__iA9IQQR38fcw.roa
File: 0EQTcALpiIGix__iA9IQQR38fcw.roa (raw, json)
Hash identifier: 68Tvw9r/QCVA6IwTlF4XCB550KVg67sRiPNtbXKcxSg=
Subject key identifier: D0:44:13:70:02:E9:88:81:A2:C7:FF:E2:03:D2:10:41:1D:FC:7D:CC
Certificate issuer: /CN=981B38009AA03BEB91271B999DD751BEC8520FE3
Certificate serial: 0875
Authority key identifier: 98:1B:38:00:9A:A0:3B:EB:91:27:1B:99:9D:D7:51:BE:C8:52:0F:E3
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mBs4AJqgO-uRJxuZnddRvshSD-M.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/0EQTcALpiIGix__iA9IQQR38fcw.roa
Signing time: Mon 14 Mar 2022 13:45:59 +0000
ROA not before: Mon 14 Mar 2022 13:45:59 +0000
ROA not after: Fri 27 May 2022 04:59:52 +0000
asID: 34549
IP address blocks: 103.83.180.0/22 maxlen: 24
103.235.128.0/22 maxlen: 24
114.66.128.0/20 maxlen: 24
114.66.144.0/22 maxlen: 24
114.66.152.0/22 maxlen: 24
114.66.160.0/20 maxlen: 24
114.66.176.0/22 maxlen: 24
114.66.180.0/22 maxlen: 24
114.66.184.0/22 maxlen: 24
114.66.188.0/22 maxlen: 24
114.66.224.0/22 maxlen: 24
114.66.228.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2165 (0x875)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=981B38009AA03BEB91271B999DD751BEC8520FE3
Validity
Not Before: Mar 14 13:45:59 2022 GMT
Not After : May 27 04:59:52 2022 GMT
Subject: CN=D044137002E98881A2C7FFE203D210411DFC7DCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fe:a0:cb:f0:a0:20:60:ae:db:e4:c3:db:0d:
b5:ca:55:35:0d:8e:e5:60:fd:cd:9a:a7:2e:31:96:
5b:c0:c5:58:15:3f:8f:bb:46:b0:db:09:4c:b7:4f:
d0:bc:eb:64:96:79:d7:74:d9:ed:54:c5:18:18:90:
af:04:95:4a:91:43:0c:88:9e:b2:af:67:2f:5d:1e:
60:8e:8a:4e:67:2b:c4:7e:c1:44:00:be:aa:2c:01:
05:30:5a:fc:2c:1a:e4:42:1d:19:a0:20:eb:f1:86:
ea:02:0b:04:b7:59:c4:11:55:a6:70:d4:3d:8c:92:
f7:62:4a:aa:18:20:09:2e:7c:01:22:4d:a4:77:b3:
39:aa:67:44:25:85:c7:75:8d:db:ea:20:6c:27:f5:
80:16:43:70:d4:0a:c5:bf:6d:8e:d9:bf:92:e1:cf:
a6:c9:34:85:71:bc:6b:7d:8a:fb:fb:d8:16:d7:fa:
fe:cc:e4:67:b4:5e:6d:69:2d:d5:f6:35:78:5d:05:
44:2a:9a:b4:cb:05:c4:e1:e7:c3:06:6e:19:f1:11:
94:c7:d0:8d:da:eb:c2:2b:35:fe:e6:b4:db:c3:7f:
6e:95:98:a1:80:7a:35:0e:b3:0a:38:8f:2e:3a:25:
1c:1d:b2:c4:e9:ea:cf:cc:b9:75:21:9e:bf:81:40:
24:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:44:13:70:02:E9:88:81:A2:C7:FF:E2:03:D2:10:41:1D:FC:7D:CC
X509v3 Authority Key Identifier:
keyid:98:1B:38:00:9A:A0:3B:EB:91:27:1B:99:9D:D7:51:BE:C8:52:0F:E3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/mBs4AJqgO-uRJxuZnddRvshSD-M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mBs4AJqgO-uRJxuZnddRvshSD-M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/0EQTcALpiIGix__iA9IQQR38fcw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.83.180.0/22
103.235.128.0/22
114.66.128.0-114.66.147.255
114.66.152.0/22
114.66.160.0/19
114.66.224.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:a1:ef:cb:94:a5:6b:26:bd:16:58:33:77:71:6a:7d:c4:d5:
5c:be:64:44:e4:f2:8e:9a:dd:1b:d0:bf:9d:f1:08:d8:5e:c2:
5f:d0:be:ee:3c:d7:43:53:9b:ae:37:84:45:5d:ff:26:4d:f2:
7c:be:97:39:e1:81:82:2b:12:0e:5d:3a:39:1e:05:52:4a:02:
e8:a8:2e:1c:b0:da:4f:4c:3c:4d:13:36:33:64:69:60:57:dc:
3d:5f:d4:62:ff:75:be:cc:48:ce:20:49:16:30:50:14:76:1f:
b5:c4:88:4b:da:5b:bf:c6:9a:86:e2:9e:09:5f:6c:c2:41:e7:
8b:68:cc:d7:0c:5f:98:ae:62:64:96:f8:02:03:73:32:61:23:
d4:84:67:a2:42:b5:ee:03:01:fe:71:14:9a:d7:ac:9b:52:5d:
91:77:61:84:38:a7:5c:eb:cd:f5:8c:71:13:30:04:6e:98:8e:
30:2d:72:29:1d:8a:7f:16:04:60:3d:e0:ad:01:89:f6:39:13:
e3:09:7d:36:0f:a1:80:46:54:81:cc:eb:c5:12:cf:48:8f:c9:
81:a1:95:9c:26:4a:43:e4:f3:85:4d:ff:00:5d:dc:75:97:a9:
0a:67:45:34:4e:92:db:db:ff:b6:52:f0:23:f7:95:1e:2a:8d:
69:bb:56:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:58 2024 by rpki-client on console-fra.rpki-client.org