Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/242/PvTO3cD_bE3TRFFzApT2sULsyQ4.roa
File: PvTO3cD_bE3TRFFzApT2sULsyQ4.roa (raw, json)
Hash identifier: 9MZsZdRCYHzZBZDeVYtq466b6hxwc+eL2kRKh5dqAoE=
Subject key identifier: 3E:F4:CE:DD:C0:FF:6C:4D:D3:44:51:73:02:94:F6:B1:42:EC:C9:0E
Certificate issuer: /CN=0A6F972D24078F89088ED110A26DCDF90A9EBCEA
Certificate serial: 1297
Authority key identifier: 0A:6F:97:2D:24:07:8F:89:08:8E:D1:10:A2:6D:CD:F9:0A:9E:BC:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Cm-XLSQHj4kIjtEQom3N-QqevOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/242/PvTO3cD_bE3TRFFzApT2sULsyQ4.roa
Signing time: Fri 17 Jan 2025 01:29:09 +0000
ROA not before: Fri 17 Jan 2025 01:29:09 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 37963
IP address blocks: 59.82.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4759 (0x1297)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A6F972D24078F89088ED110A26DCDF90A9EBCEA
Validity
Not Before: Jan 17 01:29:09 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=3EF4CEDDC0FF6C4DD34451730294F6B142ECC90E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:49:5e:e0:ec:77:1a:3f:24:ee:58:71:16:b2:
4e:99:0a:08:5a:96:08:33:92:09:0e:98:d7:5f:32:
b9:fc:01:06:1a:26:cb:8f:5f:d3:17:22:72:7c:2d:
8a:7e:ef:e4:4f:86:18:76:8b:ae:2b:41:d3:be:83:
65:39:29:a1:bd:3c:af:bf:c0:89:4c:c8:6b:b7:af:
7b:8b:b4:01:d6:90:0e:77:da:d8:b3:60:cb:bb:bf:
08:d7:55:6c:c3:07:dc:75:b3:b2:53:8a:05:02:5d:
a2:5a:9c:93:0d:95:71:0e:65:9e:6d:e8:a2:22:57:
c4:01:98:76:4c:b5:f4:2d:e2:8c:89:8b:8d:92:fe:
96:ec:d1:fa:7f:06:bb:3a:d6:ef:b2:a6:2a:09:25:
3d:8d:12:dc:10:2a:74:0c:d9:41:b8:37:ed:bb:49:
4f:77:76:70:d3:87:b3:95:2c:66:0e:71:f2:9e:12:
86:97:f8:c5:fb:fb:f1:ba:93:ab:42:59:75:8d:af:
26:a5:1a:d1:a4:2e:80:a2:59:5e:d3:ef:07:5a:97:
35:0b:66:45:40:c3:36:71:84:d6:68:12:26:72:d4:
e2:6d:17:d6:ae:2e:a4:5e:82:e7:2d:24:64:35:5c:
35:46:d0:73:9e:27:f7:18:6b:ce:2f:32:a3:e5:87:
47:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F4:CE:DD:C0:FF:6C:4D:D3:44:51:73:02:94:F6:B1:42:EC:C9:0E
X509v3 Authority Key Identifier:
keyid:0A:6F:97:2D:24:07:8F:89:08:8E:D1:10:A2:6D:CD:F9:0A:9E:BC:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/242/Cm-XLSQHj4kIjtEQom3N-QqevOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Cm-XLSQHj4kIjtEQom3N-QqevOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/242/PvTO3cD_bE3TRFFzApT2sULsyQ4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.82.136.0/21
Signature Algorithm: sha256WithRSAEncryption
77:e2:c7:78:cb:72:73:5d:40:33:51:9a:4d:b9:8c:0e:d3:36:
c2:5b:32:9a:7e:f5:92:92:ca:41:9a:a3:91:59:b5:f8:25:c2:
89:f3:ef:34:0a:82:00:a5:6b:9f:ab:a8:ba:e1:94:ac:39:0f:
cd:88:68:a8:da:82:52:49:5f:d8:25:2d:22:14:15:07:12:1d:
58:d7:cb:93:9e:30:f7:61:61:39:c2:05:ae:3b:63:8c:6d:76:
c4:f0:ac:22:4f:04:7d:86:fd:3a:a9:21:db:b5:73:b3:44:b6:
7b:8c:be:1d:79:e4:a1:b8:d8:db:f3:a1:ce:28:1a:cc:a0:37:
9b:ff:df:46:cb:6b:c1:c5:1e:f0:f3:21:b1:b7:6f:d4:c4:d6:
d2:b8:a9:98:85:9a:6f:8f:60:80:0f:9d:54:18:a4:c9:96:c8:
a3:44:17:51:06:4c:b1:96:c2:bc:da:75:b5:46:8b:fb:9e:e5:
43:54:8e:74:08:a0:f7:af:e9:bc:52:70:2e:8f:e3:05:3d:c5:
99:2c:32:7f:4f:5e:0f:9c:da:d1:42:97:3a:6f:9c:92:22:ed:
f7:94:b1:70:3d:31:c6:00:b0:9c:c8:a5:35:ae:e8:52:ec:5b:
8e:af:a2:29:d8:ac:83:f0:a0:30:a6:78:c5:0b:f3:6b:d9:63:
43:d7:ed:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:18:21 2025 by rpki-client