Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2391/cbG0uRxXpkvJUDxlbht-59TfocY.roa
File: cbG0uRxXpkvJUDxlbht-59TfocY.roa (raw, json)
Hash identifier: hvIqjXi8qfy5Xfyd+EIqc2e7Ve4HPsOuVlX14wLposc=
Subject key identifier: 71:B1:B4:B9:1C:57:A6:4B:C9:50:3C:65:6E:1B:7E:E7:D4:DF:A1:C6
Certificate issuer: /CN=07A608409B251BCB1A6C030A1C21BA41CDBCBF56
Certificate serial: 08D0
Authority key identifier: 07:A6:08:40:9B:25:1B:CB:1A:6C:03:0A:1C:21:BA:41:CD:BC:BF:56
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/B6YIQJslG8sabAMKHCG6Qc28v1Y.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/cbG0uRxXpkvJUDxlbht-59TfocY.roa
Signing time: Wed 14 Jun 2023 21:54:05 +0000
ROA not before: Wed 14 Jun 2023 21:54:05 +0000
ROA not after: Fri 07 Jun 2024 02:16:11 +0000
asID: 137443
IP address blocks: 219.234.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2256 (0x8d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07A608409B251BCB1A6C030A1C21BA41CDBCBF56
Validity
Not Before: Jun 14 21:54:05 2023 GMT
Not After : Jun 7 02:16:11 2024 GMT
Subject: CN=71B1B4B91C57A64BC9503C656E1B7EE7D4DFA1C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ff:13:44:e2:d9:3a:e7:cd:4a:a3:4b:ac:84:
9f:bd:cb:da:48:74:30:f1:b9:ef:2f:21:7c:7c:f8:
dc:a8:32:a4:bb:2d:35:ed:0d:86:e5:05:64:80:10:
6e:a9:9f:0c:44:b1:5f:eb:ed:c0:3c:1b:f1:af:95:
29:a6:54:0a:19:50:30:8c:e9:bf:01:ad:67:89:b1:
34:a8:dd:55:45:58:d5:1c:bc:8a:a4:1f:7e:87:2a:
cf:6a:1d:1d:c3:98:19:80:d9:31:e6:a4:eb:46:75:
1a:a1:e8:77:3b:39:06:49:60:b1:b8:89:9e:c1:c9:
a1:ee:ca:1f:29:83:94:bc:3d:37:af:7c:30:bf:ce:
ec:11:62:51:82:7b:46:58:9e:e1:7a:40:f3:ed:77:
cb:7f:f2:95:5d:6d:29:05:82:9a:66:ef:ac:17:70:
c0:35:83:52:3a:4a:8b:1f:6e:03:4b:3f:0e:a0:79:
39:ce:a1:fd:58:a0:7d:3b:3d:16:de:ce:6e:bf:aa:
e8:e0:ca:40:e7:05:ae:01:80:23:fc:2b:3a:ca:65:
7c:c9:3f:13:46:dc:76:b5:d7:cc:2b:fe:df:fe:1a:
3c:7a:ed:d6:25:75:e9:35:22:69:df:3b:ef:39:2b:
b7:d1:1b:5b:6b:46:b2:15:91:dd:a7:0e:f5:21:73:
4e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B1:B4:B9:1C:57:A6:4B:C9:50:3C:65:6E:1B:7E:E7:D4:DF:A1:C6
X509v3 Authority Key Identifier:
keyid:07:A6:08:40:9B:25:1B:CB:1A:6C:03:0A:1C:21:BA:41:CD:BC:BF:56
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/B6YIQJslG8sabAMKHCG6Qc28v1Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/B6YIQJslG8sabAMKHCG6Qc28v1Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/cbG0uRxXpkvJUDxlbht-59TfocY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.234.8.0/21
Signature Algorithm: sha256WithRSAEncryption
95:1a:62:f7:27:04:e8:e3:af:69:02:5e:17:59:29:1b:8f:68:
56:e3:3e:72:9d:7f:3b:2d:e2:47:7f:a6:9a:6a:59:d6:b4:71:
c1:35:fc:a6:3e:bf:12:0b:50:33:15:de:2e:36:41:75:d2:40:
bb:75:02:5f:76:3b:54:d8:81:65:bc:fc:0f:3d:11:3c:84:e1:
f1:53:6d:f5:ac:2c:f5:67:6a:63:db:2e:c0:98:47:77:03:ff:
d5:ae:fb:1a:77:48:7f:c6:2a:92:87:35:90:84:ad:e5:0c:6a:
fb:b0:81:b8:d4:e5:a0:e5:b5:28:1c:fc:0e:a4:c4:17:59:28:
fe:7c:28:53:3f:44:66:ee:2b:65:07:64:da:ec:4d:3e:19:0f:
d4:98:55:b5:82:5c:67:31:e0:9a:64:02:85:2d:f9:46:8e:ec:
83:db:82:62:ae:ed:58:00:e0:ba:08:19:09:e2:4a:69:2a:bc:
8c:21:8f:16:02:c3:3c:7d:9d:80:9a:79:31:3a:3c:08:cb:9b:
04:6d:e7:55:cb:08:7e:73:88:c3:33:60:5b:d8:bb:81:28:31:
38:98:c1:26:e6:73:f3:ba:c1:c5:f0:9c:0e:bc:ef:c1:8c:af:
41:bc:8a:0e:3b:5b:45:ec:fd:b6:95:1c:62:fd:d4:56:b8:1e:
60:c3:9e:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:01 2024 by rpki-client on console-fra.rpki-client.org