Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2618/xybbBi6KI2WCBlZPUU_EJEFp33o.roa
File: xybbBi6KI2WCBlZPUU_EJEFp33o.roa (raw, json)
Hash identifier: uKhpfiSFW/JaJzaa26g7fqIjZfggQQRITCSjYAE3m1U=
Subject key identifier: C7:26:DB:06:2E:8A:23:65:82:06:56:4F:51:4F:C4:24:41:69:DF:7A
Certificate issuer: /CN=0136041A2F53F26B420D6BD4FD0E9C2D77320971
Certificate serial: 4C31
Authority key identifier: 01:36:04:1A:2F:53:F2:6B:42:0D:6B:D4:FD:0E:9C:2D:77:32:09:71
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ATYEGi9T8mtCDWvU_Q6cLXcyCXE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2618/xybbBi6KI2WCBlZPUU_EJEFp33o.roa
Signing time: Tue 25 Mar 2025 15:31:12 +0000
ROA not before: Tue 25 Mar 2025 15:31:12 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 4808
IP address blocks: 163.53.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19505 (0x4c31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0136041A2F53F26B420D6BD4FD0E9C2D77320971
Validity
Not Before: Mar 25 15:31:12 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=C726DB062E8A23658206564F514FC4244169DF7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:13:bb:6c:80:d2:79:e6:75:f2:42:91:51:68:
2a:c4:af:00:e8:3d:f6:b8:62:6e:50:48:30:6a:ee:
38:1c:ef:9f:63:6a:6d:ac:aa:9c:c9:d0:89:a3:72:
55:83:27:ec:68:8a:47:5a:21:fb:9b:7a:ff:17:15:
b2:91:eb:72:0d:dd:c7:e1:10:3a:4b:9e:a8:fa:df:
f8:a3:21:3c:77:f2:ed:ed:f6:ef:d6:9d:0e:e5:68:
95:19:10:65:bf:ae:30:f7:2a:2a:d0:3b:7e:49:cf:
c6:43:d9:43:16:bc:ae:f6:d3:b2:46:bb:53:56:09:
d3:a7:c7:c4:fb:7a:a9:5c:6f:1d:70:69:94:47:b9:
7c:d0:46:0f:71:f9:65:30:9d:d4:22:41:79:b0:af:
da:36:65:99:85:43:33:83:df:54:9d:d8:91:75:5c:
f9:24:66:e5:b2:2e:b2:45:32:bb:e0:af:b7:f5:39:
00:f8:e0:b5:78:5c:20:83:9f:0f:e0:ba:4f:a7:04:
10:13:9b:d5:dc:54:ff:c0:46:0c:99:e1:09:f9:5e:
30:48:bc:52:de:65:ab:b2:e3:cc:27:f9:ad:32:19:
3b:f9:b7:54:7b:bf:91:99:7e:28:91:76:51:cd:0c:
94:73:3e:14:85:63:23:19:ac:fd:0c:3b:d6:ac:14:
57:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:26:DB:06:2E:8A:23:65:82:06:56:4F:51:4F:C4:24:41:69:DF:7A
X509v3 Authority Key Identifier:
keyid:01:36:04:1A:2F:53:F2:6B:42:0D:6B:D4:FD:0E:9C:2D:77:32:09:71
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2618/ATYEGi9T8mtCDWvU_Q6cLXcyCXE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ATYEGi9T8mtCDWvU_Q6cLXcyCXE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2618/xybbBi6KI2WCBlZPUU_EJEFp33o.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.53.44.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:47:03:51:f0:f3:a0:2d:8f:fe:6d:c2:c1:20:88:31:1f:15:
d0:07:5c:e8:01:86:15:95:66:fb:f5:9f:05:f7:14:00:85:69:
e8:4c:45:45:cd:0a:40:3b:39:c5:90:8c:0d:2c:bd:92:df:7f:
a9:4a:fa:2c:fc:c2:8d:85:35:3c:28:a9:7e:4a:33:6c:81:9f:
b4:af:28:f5:3a:a8:e9:55:5f:46:c2:fd:71:e6:57:d5:cf:fb:
63:f0:4b:0c:89:f5:63:a6:b6:9f:f4:cc:32:98:e8:d1:0a:4d:
f3:b0:01:53:44:29:78:95:f9:a0:8a:12:10:20:16:6b:72:9c:
42:00:81:85:0f:ba:d2:8e:7e:cc:c7:f2:03:39:20:d6:7b:2e:
d8:01:a4:35:7b:f8:08:0d:fb:2f:37:b9:41:33:59:ca:bc:ca:
bb:33:a8:99:52:98:ec:25:9c:ec:77:db:94:70:0d:66:0c:3f:
4a:a6:7e:f3:26:99:76:02:cc:ba:5b:e1:34:e4:91:5c:66:81:
aa:78:d9:3b:ad:95:49:38:0f:1c:d2:da:aa:3b:d6:89:39:e1:
f6:26:42:f3:3e:d0:9a:3d:2f:68:fc:ec:57:5a:1e:f8:7a:7c:
b6:74:c1:6b:3e:6b:db:c8:74:49:51:fe:83:1e:d7:09:dd:85:
67:9b:ff:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:35:01 2025 by rpki-client