Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2537/bsOYEuyrpdoWccX_T0v0wagrVGY.roa
File: bsOYEuyrpdoWccX_T0v0wagrVGY.roa (raw, json)
Hash identifier: /5uv4S9ommlGpSb0EnHn5QZZnosKIQ54MZPud2Cpdvw=
Subject key identifier: 6E:C3:98:12:EC:AB:A5:DA:16:71:C5:FF:4F:4B:F4:C1:A8:2B:54:66
Certificate issuer: /CN=FB653B26775041687D362D4CEF768E58F99EC075
Certificate serial: 08DE
Authority key identifier: FB:65:3B:26:77:50:41:68:7D:36:2D:4C:EF:76:8E:58:F9:9E:C0:75
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-2U7JndQQWh9Ni1M73aOWPmewHU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/bsOYEuyrpdoWccX_T0v0wagrVGY.roa
Signing time: Fri 21 Mar 2025 03:31:07 +0000
ROA not before: Fri 21 Mar 2025 03:31:07 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 137443
IP address blocks: 103.97.56.0/24 maxlen: 24
103.97.57.0/24 maxlen: 24
103.97.58.0/24 maxlen: 24
103.97.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2270 (0x8de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB653B26775041687D362D4CEF768E58F99EC075
Validity
Not Before: Mar 21 03:31:07 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=6EC39812ECABA5DA1671C5FF4F4BF4C1A82B5466
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:37:d4:ae:cc:df:b2:24:0b:21:57:d8:f9:99:
ee:bd:41:6c:03:6b:df:97:28:eb:7a:ce:93:2b:f4:
db:90:dd:76:08:0b:e0:30:82:1b:d5:2e:87:d3:d4:
3f:a6:e3:6e:2f:0c:2d:3c:5c:ba:77:78:01:09:79:
9a:49:db:75:a6:6b:66:a5:67:7d:3d:e6:68:a2:5b:
b5:fa:c4:6b:38:eb:6e:99:cf:54:49:df:39:ef:5d:
2b:51:6a:59:fe:58:23:10:0a:66:b0:7e:e1:9f:a0:
c9:07:14:11:dd:5e:dc:67:57:bf:94:6d:bf:73:bf:
0d:4a:44:ae:81:0d:58:7e:42:55:45:ed:d4:b5:0a:
98:0d:ae:d6:8f:2b:4c:73:bb:17:2a:b5:ab:9d:e4:
d0:79:34:76:b8:45:6b:0b:a9:b6:65:b7:55:9a:9a:
ef:62:40:a9:01:db:2c:04:66:c5:e2:06:d2:26:aa:
d8:30:8e:24:e0:62:35:76:3d:63:b8:c6:fb:d4:19:
b9:db:e6:3b:1d:06:f7:73:0a:a6:f6:26:f3:7e:15:
57:22:c3:b5:3c:33:a5:86:d1:f4:93:fd:23:da:de:
c5:23:34:d3:8f:07:6a:d5:e9:42:e2:9b:df:a3:3a:
5a:37:46:13:bb:3d:b5:c7:20:7b:8c:bc:be:79:60:
2a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:C3:98:12:EC:AB:A5:DA:16:71:C5:FF:4F:4B:F4:C1:A8:2B:54:66
X509v3 Authority Key Identifier:
keyid:FB:65:3B:26:77:50:41:68:7D:36:2D:4C:EF:76:8E:58:F9:9E:C0:75
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/-2U7JndQQWh9Ni1M73aOWPmewHU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-2U7JndQQWh9Ni1M73aOWPmewHU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/bsOYEuyrpdoWccX_T0v0wagrVGY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.97.56.0/22
Signature Algorithm: sha256WithRSAEncryption
34:41:fb:85:9a:7b:0f:c0:64:df:82:c5:15:59:df:74:6c:0a:
80:e5:c6:8d:1c:be:d4:b8:8b:29:80:b9:ac:b2:07:52:3d:11:
24:ad:04:1b:10:63:d9:18:5f:0f:fc:cc:e3:23:aa:c8:ab:1a:
ae:6e:a0:13:c1:44:e4:a8:72:00:e8:b1:6c:a9:c0:be:27:d9:
7d:cf:f2:2d:fe:d1:e4:5f:46:e9:6b:c7:de:eb:68:21:36:18:
71:b3:83:6f:9c:6b:3d:9b:7f:fb:ff:b2:a6:53:e6:10:ae:38:
cd:48:5a:43:9f:0f:b6:8e:de:29:8e:5d:2c:99:66:42:02:19:
41:9c:e3:f7:7f:f5:bb:90:bb:db:ee:03:47:41:2d:04:7d:7e:
e7:3d:12:91:05:a2:a1:c3:f7:51:cd:c3:9b:61:77:cb:04:4c:
f1:e8:6f:c9:14:d7:3d:9d:34:90:29:82:a0:44:0b:04:9c:28:
6d:bb:f8:f5:34:75:5d:0e:45:be:95:20:87:06:23:ea:0e:95:
a0:fe:7b:a5:01:e6:8c:e5:e0:33:7d:34:0d:24:bf:d5:83:bb:
2e:19:91:94:8d:42:d9:37:e9:39:30:6c:ab:bf:2b:e7:26:4f:
1a:b4:e8:0a:c3:c3:04:f9:57:58:83:a6:bf:86:6a:49:66:e6:
27:0a:80:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:39:41 2025 by rpki-client