Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2537/s2hryaQNiIOAMIqA0l--mlyLBgo.roa
File: s2hryaQNiIOAMIqA0l--mlyLBgo.roa (raw, json)
Hash identifier: 4i6rh3RaTIvUhkRpnaoqqL5aso+Wc0dinv2pELtWbRg=
Subject key identifier: B3:68:6B:C9:A4:0D:88:83:80:30:8A:80:D2:5F:BE:9A:5C:8B:06:0A
Certificate issuer: /CN=7B5DC95599BE4DE454A99C0C25753D1E00C7414F
Certificate serial: 04
Authority key identifier: 7B:5D:C9:55:99:BE:4D:E4:54:A9:9C:0C:25:75:3D:1E:00:C7:41:4F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/e13JVZm-TeRUqZwMJXU9HgDHQU8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/s2hryaQNiIOAMIqA0l--mlyLBgo.roa
Signing time: Mon 25 Dec 2023 07:04:09 +0000
ROA not before: Mon 25 Dec 2023 07:04:09 +0000
ROA not after: Tue 24 Dec 2024 06:51:56 +0000
asID: 152092
IP address blocks: 103.97.56.0/24 maxlen: 24
103.97.57.0/24 maxlen: 24
103.97.58.0/24 maxlen: 24
103.97.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7B5DC95599BE4DE454A99C0C25753D1E00C7414F
Validity
Not Before: Dec 25 07:04:09 2023 GMT
Not After : Dec 24 06:51:56 2024 GMT
Subject: CN=B3686BC9A40D888380308A80D25FBE9A5C8B060A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:54:08:74:2d:4e:93:cb:c6:7a:41:a7:a4:f5:
62:75:18:1e:ea:19:08:27:39:cd:9f:59:66:f6:86:
6e:d8:ea:9e:b9:df:46:79:c5:88:2e:82:d4:f8:d4:
10:70:e0:89:8a:29:26:26:e4:d3:05:96:b5:e0:51:
28:e6:09:4a:62:5a:85:23:4d:85:2f:7f:00:17:c6:
e8:8a:2d:b7:8d:ef:f6:8c:5c:4f:ed:c2:70:b2:03:
21:ca:a6:77:13:60:1f:c0:d2:66:7f:27:1b:84:9c:
c6:f7:1f:17:54:22:2d:7d:a9:a6:7b:47:9f:48:7a:
93:6e:a0:1d:3c:d2:d0:31:24:d6:57:f0:f2:c3:cd:
ff:a1:2a:90:86:40:38:9a:f7:df:9b:73:bd:ce:e9:
9e:2d:af:fa:e8:72:e6:66:32:75:9a:3b:33:63:84:
73:1c:8a:28:3e:33:08:c0:20:e8:27:39:71:2f:64:
7d:8a:1e:19:40:b4:5c:50:8c:48:9d:1a:4f:d2:01:
c6:82:74:3f:44:91:7e:8d:d3:1f:47:b8:75:60:0f:
fa:bb:f8:41:b8:e9:60:20:cf:1f:38:99:f6:c4:33:
68:19:e2:7e:93:52:b3:60:c8:b8:b6:09:52:1a:2f:
6f:19:04:4e:08:fd:ff:19:4a:6a:bf:6d:49:61:6a:
be:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:68:6B:C9:A4:0D:88:83:80:30:8A:80:D2:5F:BE:9A:5C:8B:06:0A
X509v3 Authority Key Identifier:
keyid:7B:5D:C9:55:99:BE:4D:E4:54:A9:9C:0C:25:75:3D:1E:00:C7:41:4F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/e13JVZm-TeRUqZwMJXU9HgDHQU8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/e13JVZm-TeRUqZwMJXU9HgDHQU8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/s2hryaQNiIOAMIqA0l--mlyLBgo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.97.56.0/22
Signature Algorithm: sha256WithRSAEncryption
15:2a:ed:e7:78:3a:97:7d:99:fe:e1:1b:68:d0:99:48:30:57:
af:d9:fb:6a:3d:60:79:92:96:b2:f2:46:cc:60:2e:4d:65:02:
06:12:8a:4f:70:f7:f5:a0:09:2d:5e:31:61:f7:d6:d3:99:3b:
8b:25:4f:e4:ff:94:57:67:33:f5:8f:3d:2a:f3:8f:86:16:c9:
43:49:99:a1:98:fe:d0:3a:0d:89:76:74:1d:a5:2d:78:13:a5:
6c:26:95:5b:6b:b8:f4:01:01:3f:93:98:a0:c5:b3:91:44:3b:
c4:1d:d3:b4:a2:dd:af:c8:8c:8b:84:93:d4:cb:60:2c:2a:ff:
b9:4c:bf:9f:2a:a8:25:ca:ab:e2:a9:6f:3f:2f:1b:9b:aa:cd:
b5:f5:73:9e:12:ed:1b:bb:5c:07:ce:7e:f5:47:c1:4e:08:d8:
ee:b0:df:04:c3:0a:a9:a5:3a:b2:7b:35:c3:5f:18:bf:69:af:
eb:40:36:b9:51:b2:ba:5d:a2:f2:91:61:57:cb:64:59:bb:39:
c2:dc:cd:b3:30:bb:ab:a8:ad:f1:54:95:1a:3c:ea:8b:f1:7a:
57:da:50:2c:d4:aa:9a:b1:02:bf:84:0c:24:52:da:6b:24:38:
f0:57:bb:36:d5:cb:1e:26:fb:8d:dd:d1:9a:5b:52:4f:8c:dd:
e5:bc:6d:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:25 2024 by rpki-client on console-ams.rpki-client.org