Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2391/AcRKqnSus4aXiAQK4uM98_68awY.roa
File: AcRKqnSus4aXiAQK4uM98_68awY.roa (raw, json)
Hash identifier: MCCstse3e6lmA8po1sLN242ySBCZUhsxgiG6cIlKke0=
Subject key identifier: 01:C4:4A:AA:74:AE:B3:86:97:88:04:0A:E2:E3:3D:F3:FE:BC:6B:06
Certificate issuer: /CN=07A608409B251BCB1A6C030A1C21BA41CDBCBF56
Certificate serial: 08BC
Authority key identifier: 07:A6:08:40:9B:25:1B:CB:1A:6C:03:0A:1C:21:BA:41:CD:BC:BF:56
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/B6YIQJslG8sabAMKHCG6Qc28v1Y.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/AcRKqnSus4aXiAQK4uM98_68awY.roa
Signing time: Wed 14 Jun 2023 19:24:05 +0000
ROA not before: Wed 14 Jun 2023 19:24:05 +0000
ROA not after: Fri 07 Jun 2024 02:16:11 +0000
asID: 137443
IP address blocks: 219.234.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2236 (0x8bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07A608409B251BCB1A6C030A1C21BA41CDBCBF56
Validity
Not Before: Jun 14 19:24:05 2023 GMT
Not After : Jun 7 02:16:11 2024 GMT
Subject: CN=01C44AAA74AEB3869788040AE2E33DF3FEBC6B06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:41:1a:74:b2:a7:ae:35:13:8c:92:18:4e:6b:
8a:71:dc:e1:ee:a6:59:08:1b:bb:57:f1:44:34:e7:
c5:01:4e:b4:90:23:3e:8e:d8:14:a3:c5:cf:84:2b:
c3:35:8a:40:1c:a7:97:1e:2f:3a:3a:bc:24:51:37:
2d:e5:56:1c:10:c9:62:1b:dc:9a:46:c3:a4:88:bf:
1c:79:4b:55:4a:ba:27:d5:12:0a:f0:35:a6:93:d3:
c1:df:66:e3:ff:8b:98:87:d8:c6:14:5a:95:d2:31:
02:d2:4a:ad:3a:27:f3:0a:93:d2:b5:5a:e6:5f:63:
13:e5:0a:0a:de:57:1b:d8:cb:02:82:65:89:d2:d0:
68:ae:36:1d:14:bb:bd:3c:1b:cd:b6:ae:27:c0:fb:
1f:f2:25:b3:a4:3a:b8:82:8d:ae:59:e9:4e:e6:fa:
a6:2a:5a:cd:04:44:f5:84:04:f5:3b:71:3c:3e:06:
cf:3b:a0:c6:cc:f9:1f:b2:ba:16:a2:49:9f:96:25:
45:15:2e:00:d5:ac:e0:81:75:1e:7e:4b:e8:61:e3:
99:97:bb:f9:5f:dd:57:5e:bf:82:b9:3e:bc:4e:ef:
bb:0f:52:04:5b:f9:c8:72:96:b0:dd:3b:e8:f6:5b:
22:c6:02:52:dd:6a:c2:1c:34:84:23:1c:d6:55:5f:
ee:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:C4:4A:AA:74:AE:B3:86:97:88:04:0A:E2:E3:3D:F3:FE:BC:6B:06
X509v3 Authority Key Identifier:
keyid:07:A6:08:40:9B:25:1B:CB:1A:6C:03:0A:1C:21:BA:41:CD:BC:BF:56
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/B6YIQJslG8sabAMKHCG6Qc28v1Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/B6YIQJslG8sabAMKHCG6Qc28v1Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/AcRKqnSus4aXiAQK4uM98_68awY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.234.8.0/21
Signature Algorithm: sha256WithRSAEncryption
8a:fd:42:70:6a:3a:fd:8c:23:99:77:fa:fe:c5:dc:ee:6c:75:
88:f6:5d:47:94:2a:35:02:47:0e:7e:bb:36:2c:51:ae:1c:2c:
6e:28:bf:08:87:00:1a:c0:fc:6e:24:d2:48:3d:75:fc:b8:df:
52:f3:3f:52:f5:11:cb:46:31:0b:a5:29:b2:00:18:99:c4:bc:
44:83:0b:6a:c6:08:d7:aa:57:6a:b9:af:63:e0:4d:41:85:1c:
df:9a:73:6e:36:1a:f8:5d:9d:ee:52:b9:37:bd:9f:da:fd:d1:
bc:d7:a6:79:a7:db:de:f0:75:77:00:3f:d5:d0:e8:24:aa:d4:
34:af:f1:cf:68:2c:cd:33:a3:de:1e:d1:f1:49:ce:b7:46:20:
7e:53:7a:df:7b:79:da:98:01:35:44:86:0b:21:c3:2e:84:bb:
21:89:5b:ae:c2:71:d1:e5:5c:e4:b0:87:71:c3:28:f7:0b:9f:
11:97:38:a7:c1:3d:30:19:4a:ba:ff:65:62:80:a8:14:3a:65:
9b:51:6f:95:16:d2:a0:fe:fc:20:b5:75:2a:9e:ca:9c:ed:14:
ae:39:2a:02:69:4b:71:83:7f:4d:e2:40:b9:d0:0b:94:aa:8b:
63:86:b2:14:53:50:3b:2b:22:77:d2:6f:4a:8c:04:14:5d:5d:
53:9e:8e:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:59 2024 by rpki-client on console-fra.rpki-client.org