Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2620/dOSta52KUWLRQXow8DO16QZG06I.roa
File: dOSta52KUWLRQXow8DO16QZG06I.roa (raw, json)
Hash identifier: qFb6tfTCWUI+agKIHP3fivjKNnrNlOBNBwv5xJsaGCc=
Subject key identifier: 74:E4:AD:6B:9D:8A:51:62:D1:41:7A:30:F0:33:B5:E9:06:46:D3:A2
Certificate issuer: /CN=CDEF7111DE98BD756D92B34D394DA2D39EFF9B8E
Certificate serial: 03
Authority key identifier: CD:EF:71:11:DE:98:BD:75:6D:92:B3:4D:39:4D:A2:D3:9E:FF:9B:8E
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ze9xEd6YvXVtkrNNOU2i057_m44.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/dOSta52KUWLRQXow8DO16QZG06I.roa
Signing time: Wed 01 Jun 2022 07:07:47 +0000
ROA not before: Wed 01 Jun 2022 07:07:47 +0000
ROA not after: Thu 01 Jun 2023 06:58:54 +0000
asID: 58593
IP address blocks: 2404:7940::/32 maxlen: 64
2406:e500::/33 maxlen: 64
2406:e500::/48 maxlen: 64
2406:e500:1::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CDEF7111DE98BD756D92B34D394DA2D39EFF9B8E
Validity
Not Before: Jun 1 07:07:47 2022 GMT
Not After : Jun 1 06:58:54 2023 GMT
Subject: CN=74E4AD6B9D8A5162D1417A30F033B5E90646D3A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:11:09:d9:6a:a3:68:2e:66:96:95:a2:ed:bf:
ee:a7:fd:30:07:4e:2e:cc:e2:5e:72:a6:6c:f2:7e:
c8:ed:e4:ce:fc:f6:1d:4a:05:bf:8f:cc:47:58:ed:
cc:85:cc:70:9c:ab:a3:1b:c2:a8:29:8f:96:c0:28:
7f:55:fe:bb:df:db:c3:90:bb:4b:d4:83:4e:b1:46:
64:bf:96:b1:a8:f4:c5:54:ff:4b:26:d8:6f:c6:4c:
6d:ab:f5:54:a2:52:45:43:38:c4:0d:9d:09:c6:28:
d7:3f:15:a9:53:2d:1d:1a:54:f3:54:2e:6d:b2:0c:
97:f5:eb:3f:19:2c:56:fe:c8:f6:71:a6:74:05:37:
5c:a3:bf:27:ef:28:ca:1f:59:0e:f9:22:c5:c5:2e:
7f:b6:ed:69:35:b3:a9:5f:e8:37:05:1f:24:c1:25:
7b:fd:e4:e0:1c:0e:f2:fe:79:50:a7:9f:fe:76:49:
f7:74:14:49:34:de:6c:06:f3:ed:5b:a8:18:3f:d2:
e2:a0:6d:fc:d1:06:a5:c6:87:51:2f:66:4d:7a:1e:
33:ef:78:e9:8a:14:b8:43:89:99:09:65:23:32:0e:
39:5e:77:b2:73:72:e6:4e:be:a5:34:01:75:4b:b8:
76:ad:f7:82:0d:ce:4e:91:a0:63:cf:5e:e1:c7:92:
1f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E4:AD:6B:9D:8A:51:62:D1:41:7A:30:F0:33:B5:E9:06:46:D3:A2
X509v3 Authority Key Identifier:
keyid:CD:EF:71:11:DE:98:BD:75:6D:92:B3:4D:39:4D:A2:D3:9E:FF:9B:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/ze9xEd6YvXVtkrNNOU2i057_m44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ze9xEd6YvXVtkrNNOU2i057_m44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/dOSta52KUWLRQXow8DO16QZG06I.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:7940::/32
2406:e500::/33
Signature Algorithm: sha256WithRSAEncryption
6b:74:94:58:11:39:91:f7:89:3c:7f:2d:c5:67:6c:23:92:39:
44:c9:91:d8:fd:eb:9c:b3:13:3e:ee:f2:f9:fb:d1:ed:b5:e3:
68:e7:8e:61:45:a8:a6:bb:45:60:1e:57:33:24:d0:39:8d:00:
1f:71:52:88:a3:47:68:6d:da:3d:e5:8c:e3:4b:90:a3:b4:93:
31:5b:db:b6:79:30:18:a7:87:39:7b:bd:b2:f5:1c:03:8a:4f:
0a:a6:7c:e6:ca:3c:c6:94:14:1f:86:c9:73:40:f9:f2:94:ac:
8b:33:94:69:39:05:80:44:1f:e4:25:36:8c:3e:20:57:3e:96:
bb:12:d5:35:8c:db:19:14:29:de:82:f8:79:99:01:46:e0:cc:
23:5c:3c:79:dc:18:5c:ff:86:84:7b:aa:e1:4d:e5:ea:6d:89:
cd:5c:d7:eb:b3:38:d8:f2:b9:73:b1:7b:08:4a:0d:f0:07:f2:
3e:af:d9:7f:52:cf:01:d9:11:16:ed:3b:a2:34:7f:fe:14:76:
50:05:3b:f3:f9:c0:3e:ad:c3:21:88:58:c5:1b:d5:d7:05:e8:
fe:21:ea:6f:1c:47:13:a5:df:4f:a2:0e:4e:e1:a6:9d:bf:cf:
5b:23:6e:3f:f4:b3:ac:d2:18:5c:a3:16:76:e9:cb:d2:58:42:
25:22:aa:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:25 2024 by rpki-client on console-ams.rpki-client.org