Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2391/21JK8UisU1QOQV3YA13HHsRLys8.roa
File: 21JK8UisU1QOQV3YA13HHsRLys8.roa (raw, json)
Hash identifier: +YAGBmrszXVSeNy4+NSdBSoUCZQ+XJDhDEO/WyJxXWU=
Subject key identifier: DB:52:4A:F1:48:AC:53:54:0E:41:5D:D8:03:5D:C7:1E:C4:4B:CA:CF
Certificate issuer: /CN=07A608409B251BCB1A6C030A1C21BA41CDBCBF56
Certificate serial: 07D8
Authority key identifier: 07:A6:08:40:9B:25:1B:CB:1A:6C:03:0A:1C:21:BA:41:CD:BC:BF:56
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/B6YIQJslG8sabAMKHCG6Qc28v1Y.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/21JK8UisU1QOQV3YA13HHsRLys8.roa
Signing time: Tue 13 Jun 2023 14:54:01 +0000
ROA not before: Tue 13 Jun 2023 14:54:01 +0000
ROA not after: Fri 07 Jun 2024 02:16:11 +0000
asID: 137443
IP address blocks: 219.234.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2008 (0x7d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07A608409B251BCB1A6C030A1C21BA41CDBCBF56
Validity
Not Before: Jun 13 14:54:01 2023 GMT
Not After : Jun 7 02:16:11 2024 GMT
Subject: CN=DB524AF148AC53540E415DD8035DC71EC44BCACF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:41:0a:d7:7b:d8:a8:0b:c1:d4:45:a5:3a:
75:d8:b7:d8:ff:02:c1:fa:17:6f:de:be:93:ee:fc:
97:74:c8:c3:fa:17:b7:d1:de:75:2a:64:9a:2f:ed:
69:ff:3a:d4:ed:89:01:97:3f:5a:ff:98:16:9b:5e:
8c:3b:03:ae:2b:8e:64:0a:59:86:d3:07:ea:f7:05:
80:d5:db:e6:5b:37:5c:05:87:5e:1f:13:18:cd:74:
d0:20:00:fc:ee:3b:48:b4:b3:d4:5e:af:93:9a:0b:
2e:33:01:74:5c:f7:8f:76:21:d3:d9:1f:5e:0e:71:
50:02:e3:6b:aa:d4:b4:26:ec:4b:a9:ac:26:03:c0:
b9:c8:04:05:4d:05:9e:d3:ee:54:fd:92:e8:38:36:
a4:d6:dd:ed:bb:95:84:4b:d6:5b:b1:c1:fb:9b:ac:
09:1b:08:8e:a6:5b:25:74:10:b2:c1:cf:71:31:60:
ee:e2:a1:67:2c:5b:97:6d:5a:10:de:37:05:d0:aa:
f9:ed:7e:c3:c8:93:10:fd:d7:9f:9f:e0:d9:f6:b2:
9b:9c:a1:58:0f:44:8b:16:2b:7f:32:0b:22:88:79:
81:0e:da:21:20:3c:e4:e2:1d:eb:a9:95:16:45:b8:
b5:b9:b3:2e:63:08:bb:dd:9b:3b:aa:ed:54:e5:94:
a8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:52:4A:F1:48:AC:53:54:0E:41:5D:D8:03:5D:C7:1E:C4:4B:CA:CF
X509v3 Authority Key Identifier:
keyid:07:A6:08:40:9B:25:1B:CB:1A:6C:03:0A:1C:21:BA:41:CD:BC:BF:56
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/B6YIQJslG8sabAMKHCG6Qc28v1Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/B6YIQJslG8sabAMKHCG6Qc28v1Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/21JK8UisU1QOQV3YA13HHsRLys8.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.234.8.0/21
Signature Algorithm: sha256WithRSAEncryption
a6:c8:cd:fa:7e:db:01:89:9c:40:9d:f6:be:73:d5:bd:63:7b:
cc:87:fa:07:b9:07:0a:d1:46:84:9e:e4:c3:27:a4:4c:fc:61:
f3:ca:96:3d:94:a4:40:ba:73:d1:4d:6e:30:57:9c:4a:bd:62:
b2:79:56:cb:1f:3a:77:de:c1:24:d4:ad:04:01:1d:6d:c5:8a:
be:b1:fc:d4:21:70:55:9f:d3:6d:a2:18:e6:c8:25:39:52:b3:
42:fd:d7:d4:4c:de:88:54:3c:20:b6:75:e1:eb:38:84:47:26:
17:bb:02:de:86:26:73:53:3c:27:52:5b:6a:c9:e6:87:4e:aa:
9b:30:40:d8:c8:ad:59:43:10:42:0a:e2:ab:62:29:57:4f:3a:
24:55:5f:b5:54:b7:1c:6f:79:cc:78:0f:51:c4:d4:ec:d7:30:
5e:fc:9a:38:a3:d3:fe:b2:b0:d7:77:0e:c6:4d:20:06:ef:3a:
fe:c5:08:b4:3a:71:61:05:bc:43:49:38:95:6e:87:bc:78:a3:
70:33:fa:e5:38:38:fd:26:37:4d:a7:0b:8c:c1:f9:19:05:d6:
34:14:42:09:49:65:71:ef:08:74:9c:74:ae:b1:48:3b:30:43:
fc:2c:41:f7:db:b5:ab:a4:bd:f6:ca:d9:59:b1:22:55:55:ff:
ce:42:98:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:59 2024 by rpki-client on console-fra.rpki-client.org