Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/UR-iOGxCGoR06uBC5_N8SrR8lSY.roa
File: UR-iOGxCGoR06uBC5_N8SrR8lSY.roa (raw, json)
Hash identifier: SNM494x91QDcmxmtWWM2QeTEO/6t4QIx8Rj/fk95mPM=
Subject key identifier: 51:1F:A2:38:6C:42:1A:84:74:EA:E0:42:E7:F3:7C:4A:B4:7C:95:26
Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D
Certificate serial: CE
Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/UR-iOGxCGoR06uBC5_N8SrR8lSY.roa
Signing time: Fri 06 Jun 2025 02:32:42 +0000
ROA not before: Fri 06 Jun 2025 02:32:42 +0000
ROA not after: Wed 27 May 2026 07:38:41 +0000
asID: 134810
IP address blocks: 240a:40c1:4000::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206 (0xce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D
Validity
Not Before: Jun 6 02:32:42 2025 GMT
Not After : May 27 07:38:41 2026 GMT
Subject: CN=511FA2386C421A8474EAE042E7F37C4AB47C9526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a2:0c:ef:17:d6:93:8c:fd:6c:05:5a:ee:84:
63:e3:9a:0f:64:c0:cc:83:20:df:78:75:ff:0c:f9:
cc:78:06:a5:45:6c:5b:8d:1f:80:a2:13:f3:75:43:
f2:06:9e:ca:81:46:c0:fa:a8:8a:f2:23:6c:e6:28:
fc:a7:46:87:97:0a:f9:58:63:ce:cc:76:78:73:7b:
87:22:c9:88:09:9d:d5:ff:cc:45:2e:c0:20:d4:32:
de:41:3e:97:90:56:2e:3d:a8:23:19:c3:fa:ee:ae:
3c:c1:7d:65:89:7c:05:70:5a:0f:d3:70:4b:63:51:
29:85:0f:b2:f3:9a:b7:56:f2:01:53:fe:f3:a4:9e:
af:2f:fd:72:d7:48:62:f3:a4:f4:dc:db:0c:5d:b6:
74:b8:cc:fe:2b:c7:68:5c:da:2a:c1:93:1d:e6:f2:
f6:f5:95:78:b5:cc:96:5e:29:68:df:d7:a4:8f:f0:
f3:ac:ff:1d:f8:95:04:99:99:7e:35:57:ae:f0:de:
29:97:18:b5:e1:cc:22:d0:b6:df:96:67:5e:13:c9:
ec:38:42:44:36:a6:5c:e8:fe:b6:4f:96:a8:04:8d:
01:f1:16:67:ee:16:29:34:18:f7:7f:e4:f5:15:6f:
17:38:94:98:aa:d7:af:c1:5d:c6:b0:f1:6b:d5:16:
4f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:1F:A2:38:6C:42:1A:84:74:EA:E0:42:E7:F3:7C:4A:B4:7C:95:26
X509v3 Authority Key Identifier:
keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/UR-iOGxCGoR06uBC5_N8SrR8lSY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:40c1:4000::/44
Signature Algorithm: sha256WithRSAEncryption
a5:a0:37:2a:16:a8:49:ef:fe:ba:31:59:35:c6:d1:9c:b4:54:
20:ee:fd:0d:0d:86:9b:48:19:4e:6d:73:e1:e7:ad:c9:e1:67:
0a:30:dd:95:f5:9b:3b:63:37:17:2b:1e:10:81:26:c1:80:54:
33:22:ee:59:34:7e:7e:1b:22:21:b7:5a:41:92:b0:59:d4:36:
0b:66:2f:ca:64:77:51:ee:45:a0:f4:b6:da:52:da:02:68:2d:
89:33:5f:8f:47:c1:65:1b:e4:a2:df:6a:9f:60:cb:11:01:9f:
5f:97:b5:0a:40:2c:ae:a3:13:a6:a1:62:20:ca:9e:87:a8:0c:
c8:77:19:ed:27:39:c4:91:64:2b:96:35:59:4d:21:4a:32:36:
af:26:66:d0:b4:a8:74:83:c4:9d:6b:68:a2:5e:aa:6d:05:6d:
a9:a8:0a:13:8f:78:96:92:44:bf:b0:5d:b5:de:0b:f3:e2:5a:
ae:68:e0:28:a4:10:56:84:ad:da:6a:94:6d:cb:ff:71:8a:18:
f8:5b:17:98:10:69:f1:72:13:58:37:9b:56:eb:e6:35:ce:39:
51:5a:a3:51:f9:38:c4:a8:67:70:6d:f9:0e:90:31:42:4b:7e:
86:3d:c6:e2:a8:b8:0e:ba:e7:61:70:c7:aa:c9:dd:9c:a1:c7:
1f:dc:8b:f3
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Jun 9 20:19:01 2025 by rpki-client