Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2391/kDXz0gwP3iGBc79TApXpVlmqB2w.roa
File: kDXz0gwP3iGBc79TApXpVlmqB2w.roa (raw, json)
Hash identifier: z/RPbctmdJdEFco08fIxK62f/ooERCfJh6MQm7fAcAE=
Subject key identifier: 90:35:F3:D2:0C:0F:DE:21:81:73:BF:53:02:95:E9:56:59:AA:07:6C
Certificate issuer: /CN=07A608409B251BCB1A6C030A1C21BA41CDBCBF56
Certificate serial: 0836
Authority key identifier: 07:A6:08:40:9B:25:1B:CB:1A:6C:03:0A:1C:21:BA:41:CD:BC:BF:56
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/B6YIQJslG8sabAMKHCG6Qc28v1Y.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/kDXz0gwP3iGBc79TApXpVlmqB2w.roa
Signing time: Wed 14 Jun 2023 02:24:03 +0000
ROA not before: Wed 14 Jun 2023 02:24:03 +0000
ROA not after: Fri 07 Jun 2024 02:16:11 +0000
asID: 4842
IP address blocks: 43.250.116.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2102 (0x836)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07A608409B251BCB1A6C030A1C21BA41CDBCBF56
Validity
Not Before: Jun 14 02:24:03 2023 GMT
Not After : Jun 7 02:16:11 2024 GMT
Subject: CN=9035F3D20C0FDE218173BF530295E95659AA076C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:24:76:a4:23:b7:26:8c:24:d2:24:88:02:06:
51:3d:86:f1:52:28:82:a4:33:4c:29:68:38:2a:a9:
61:9a:08:86:cd:d8:f2:07:d0:c1:40:8a:a5:0a:33:
eb:b2:91:53:f9:fc:34:05:cf:cc:20:78:b5:ef:6e:
e2:c8:29:c5:99:50:d1:8a:19:3c:a3:1d:c0:5d:39:
46:5c:7b:44:48:91:ed:45:f7:4d:c7:ba:12:9f:37:
4e:85:20:83:ac:05:33:68:89:1f:41:9e:2a:c1:6d:
a7:4d:7d:ac:37:6e:46:40:23:11:5c:a6:07:3f:ca:
de:57:57:c6:e8:ae:69:1e:4b:7a:15:89:0c:45:45:
e9:1b:57:9d:04:95:01:39:c3:46:c2:36:b6:64:12:
3a:9f:ea:db:c5:f6:68:c3:4d:e4:37:93:9a:ed:24:
89:90:14:12:a8:4d:c2:f4:a3:0f:4e:11:55:aa:66:
0d:0d:26:3f:27:51:4f:58:b9:b2:6d:95:ef:70:2f:
8a:fa:35:b0:ed:4f:e0:ba:95:eb:70:06:10:0d:cd:
38:dd:31:1d:4a:05:07:51:7a:71:c7:89:21:31:55:
3c:4a:8f:28:1b:73:48:7a:b4:8b:78:fd:15:40:3e:
4e:58:3e:15:61:fa:66:45:a6:a0:0c:4c:04:69:d4:
66:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:35:F3:D2:0C:0F:DE:21:81:73:BF:53:02:95:E9:56:59:AA:07:6C
X509v3 Authority Key Identifier:
keyid:07:A6:08:40:9B:25:1B:CB:1A:6C:03:0A:1C:21:BA:41:CD:BC:BF:56
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/B6YIQJslG8sabAMKHCG6Qc28v1Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/B6YIQJslG8sabAMKHCG6Qc28v1Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/kDXz0gwP3iGBc79TApXpVlmqB2w.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.116.0/22
Signature Algorithm: sha256WithRSAEncryption
65:89:04:b6:bf:47:ef:6f:fc:86:5c:05:4d:62:c5:e6:2a:ae:
0f:0d:39:d1:ef:ce:a3:93:67:7e:27:1a:cd:59:c7:62:84:50:
a9:39:b5:b7:7d:41:41:5c:74:90:3e:36:02:0c:4b:c9:7f:67:
3d:dc:98:b6:c1:8d:b6:82:11:5d:62:23:ed:4e:f1:91:ae:42:
1a:76:f5:3e:1b:95:1c:16:5f:8d:1d:8e:1b:92:94:5c:8b:69:
8d:f0:1d:cb:c4:5d:ed:ec:0b:dd:6a:c3:4a:5f:ca:31:9f:1c:
24:57:46:72:53:5b:9a:7b:7a:43:4f:ef:43:91:fa:0d:d9:35:
2e:a5:bb:71:d3:df:56:98:b1:94:11:50:67:ef:42:ea:81:3a:
3d:9e:81:7b:c8:0c:2f:ee:6b:bd:14:1e:42:90:48:e3:09:d0:
af:90:3c:72:d7:43:9e:c6:3b:6a:8b:47:e5:03:fe:fe:cb:3b:
29:85:55:79:fd:b8:93:e7:4e:42:b5:27:5b:aa:cd:99:c9:54:
14:84:0f:fd:f1:31:e3:c4:0d:04:08:cb:33:c1:0e:41:90:6a:
0f:75:b2:bc:d5:e3:83:1e:58:43:8d:0a:9d:c0:a0:c6:58:36:
a3:a2:65:bc:34:92:30:15:08:e1:23:29:35:89:08:94:32:e9:
68:24:3d:a9
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICCDYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDdB
NjA4NDA5QjI1MUJDQjFBNkMwMzBBMUMyMUJBNDFDREJDQkY1NjAeFw0yMzA2MTQw
MjI0MDNaFw0yNDA2MDcwMjE2MTFaMDMxMTAvBgNVBAMTKDkwMzVGM0QyMEMwRkRF
MjE4MTczQkY1MzAyOTVFOTU2NTlBQTA3NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/JHakI7cmjCTSJIgCBlE9hvFSKIKkM0wpaDgqqWGaCIbN2PIH
0MFAiqUKM+uykVP5/DQFz8wgeLXvbuLIKcWZUNGKGTyjHcBdOUZce0RIke1F903H
uhKfN06FIIOsBTNoiR9BnirBbadNfaw3bkZAIxFcpgc/yt5XV8bormkeS3oViQxF
RekbV50ElQE5w0bCNrZkEjqf6tvF9mjDTeQ3k5rtJImQFBKoTcL0ow9OEVWqZg0N
Jj8nUU9YubJtle9wL4r6NbDtT+C6letwBhANzTjdMR1KBQdRenHHiSExVTxKjygb
c0h6tIt4/RVAPk5YPhVh+mZFpqAMTARp1GZTAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQUkDXz0gwP3iGBc79TApXpVlmqB2wwHwYDVR0jBBgwFoAUB6YIQJslG8sabAMK
HCG6Qc28v1YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjM5
MS9CNllJUUpzbEc4c2FiQU1LSENHNlFjMjh2MVkuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL0I2WUlRSnNsRzhzYWJBTUtIQ0c2UWMyOHYxWS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIzOTEva0RYejBnd1AzaUdC
Yzc5VEFwWHBWbG1xQjJ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAiv6dDANBgkqhkiG9w0BAQsFAAOCAQEAZYkEtr9H72/8hlwFTWLF5iquDw05
0e/Oo5NnficazVnHYoRQqTm1t31BQVx0kD42AgxLyX9nPdyYtsGNtoIRXWIj7U7x
ka5CGnb1PhuVHBZfjR2OG5KUXItpjfAdy8Rd7ewL3WrDSl/KMZ8cJFdGclNbmnt6
Q0/vQ5H6Ddk1LqW7cdPfVpixlBFQZ+9C6oE6PZ6Be8gML+5rvRQeQpBI4wnQr5A8
ctdDnsY7aotH5QP+/ss7KYVVef24k+dOQrUnW6rNmclUFIQP/fEx48QNBAjLM8EO
QZBqD3WyvNXjgx5YQ40KncCgxlg2o6JlvDSSMBUI4SMpNYkIlDLpaCQ9qQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:25 2024 by rpki-client on console-ams.rpki-client.org