Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2309/P7yG7EH_lru5WZOmH05-MybVOeI.roa
File: P7yG7EH_lru5WZOmH05-MybVOeI.roa (raw, json)
Hash identifier: Ex1GOcmqwC8VhMygwQSDIdTq8VDfD/xVpG/AMDcqfxM=
Subject key identifier: 3F:BC:86:EC:41:FF:96:BB:B9:59:93:A6:1F:4E:7E:33:26:D5:39:E2
Certificate issuer: /CN=060C00BF17A55FDB85CAF4578BE833056E028B43
Certificate serial: 11EE
Authority key identifier: 06:0C:00:BF:17:A5:5F:DB:85:CA:F4:57:8B:E8:33:05:6E:02:8B:43
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BgwAvxelX9uFyvRXi-gzBW4Ci0M.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/P7yG7EH_lru5WZOmH05-MybVOeI.roa
Signing time: Thu 14 Nov 2024 08:20:03 +0000
ROA not before: Thu 14 Nov 2024 08:20:03 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 62387
IP address blocks: 103.83.180.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4590 (0x11ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=060C00BF17A55FDB85CAF4578BE833056E028B43
Validity
Not Before: Nov 14 08:20:03 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=3FBC86EC41FF96BBB95993A61F4E7E3326D539E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bb:63:d2:67:2b:5b:51:ba:ac:b3:eb:c2:93:
30:db:a6:49:64:ea:73:27:79:27:07:b1:4c:21:50:
8e:fa:c2:12:a4:bb:ef:95:59:2e:bd:95:53:fe:73:
bc:8d:2a:8a:72:15:d4:ac:db:48:4d:e2:d0:00:ef:
53:a8:e7:c2:02:38:b7:fc:df:18:cb:fa:1c:d0:50:
9b:4e:a0:8f:a2:79:4e:9e:b9:ca:73:49:a8:60:ac:
63:39:e5:76:9c:de:61:02:da:2f:af:3b:2f:e8:35:
1d:64:51:d6:6c:80:24:42:60:c9:f8:d1:86:61:7d:
bd:40:52:12:b1:00:90:b5:ab:36:1f:8b:94:af:aa:
1f:f8:e6:b6:ac:45:ec:7b:e4:7e:8e:2f:b9:47:f9:
ed:b8:85:0f:59:56:f5:bf:38:01:9f:36:5a:29:23:
3c:93:78:e6:af:2b:3a:3c:da:f3:15:46:14:df:ed:
92:f1:a2:95:1f:fc:e9:30:f5:90:b0:b3:9a:54:25:
b4:80:f5:b2:e5:58:e6:17:f9:8e:90:c8:1f:1b:b8:
a3:f5:5c:39:4d:03:b0:dc:81:3a:66:7c:66:fc:13:
3a:4c:ca:dc:79:8e:b6:70:75:23:40:cd:22:70:54:
7b:7c:6a:11:a2:39:3f:eb:74:b7:c1:5b:49:68:1b:
07:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BC:86:EC:41:FF:96:BB:B9:59:93:A6:1F:4E:7E:33:26:D5:39:E2
X509v3 Authority Key Identifier:
keyid:06:0C:00:BF:17:A5:5F:DB:85:CA:F4:57:8B:E8:33:05:6E:02:8B:43
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/BgwAvxelX9uFyvRXi-gzBW4Ci0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BgwAvxelX9uFyvRXi-gzBW4Ci0M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/P7yG7EH_lru5WZOmH05-MybVOeI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.83.180.0/22
Signature Algorithm: sha256WithRSAEncryption
52:1c:d1:42:3a:3c:f1:5a:d0:09:a7:35:13:fb:06:15:61:56:
39:3e:56:43:92:a4:1e:04:8d:94:5e:62:f5:b8:97:70:4b:c8:
51:ab:19:ba:77:c6:f5:b3:85:c0:29:60:a3:c7:e3:9d:7b:04:
74:dd:f4:63:48:de:4a:51:40:74:b5:de:1e:0a:5d:15:0c:8c:
c5:b0:fc:6e:5e:6f:81:4f:f3:57:4d:6b:75:6d:76:65:d2:f8:
ab:52:26:0b:72:71:53:3f:af:d3:57:17:56:3c:89:78:70:09:
e7:70:f8:00:5b:59:7e:bc:ef:f7:aa:e7:05:8a:2a:35:76:0e:
97:90:1c:84:1e:18:6e:91:89:5e:62:f7:a8:9a:eb:aa:bc:96:
ba:8f:48:f9:6d:bb:4f:e3:43:2d:cf:28:97:66:f0:48:a5:8e:
3a:c1:3e:25:0e:ca:de:51:db:50:03:c5:4f:a6:eb:48:6d:5d:
78:4c:f1:9c:7a:31:fb:20:42:07:4d:85:a4:09:48:ac:d2:5e:
23:95:e8:b2:3f:a7:fd:26:3c:53:f8:75:f5:a1:9f:ff:e8:3e:
66:c4:87:40:2c:30:3b:2b:d2:6f:2c:54:91:f5:aa:8f:55:4f:
f1:c7:c1:fa:0d:1b:05:48:a0:3b:41:27:66:0c:47:80:3e:0c:
8c:c4:9d:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:07:08 2025 by rpki-client