Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/bfkc36LOlvHpx-8TVw4HPjgvS1A.roa
File: bfkc36LOlvHpx-8TVw4HPjgvS1A.roa (raw, json)
Hash identifier: lKXj8gkYWYL1jlM6VsJHE2A5nrTSQuUqliQa+d8vifI=
Subject key identifier: 6D:F9:1C:DF:A2:CE:96:F1:E9:C7:EF:13:57:0E:07:3E:38:2F:4B:50
Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D
Certificate serial: 1C
Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/bfkc36LOlvHpx-8TVw4HPjgvS1A.roa
Signing time: Tue 27 May 2025 08:11:33 +0000
ROA not before: Tue 27 May 2025 08:11:33 +0000
ROA not after: Wed 27 May 2026 07:38:41 +0000
asID: 56048
IP address blocks: 240a:4090:7000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28 (0x1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D
Validity
Not Before: May 27 08:11:33 2025 GMT
Not After : May 27 07:38:41 2026 GMT
Subject: CN=6DF91CDFA2CE96F1E9C7EF13570E073E382F4B50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a4:92:93:1d:60:47:67:f9:12:bc:df:cf:41:
62:2a:68:4c:bc:6c:a3:fc:ad:61:4d:78:ed:45:5b:
72:4e:3f:07:cd:94:05:87:21:aa:0f:54:64:6d:1d:
c5:32:b8:a4:df:5e:4a:19:01:82:0a:63:19:e7:fb:
b0:21:24:b2:a5:b2:52:1f:50:5e:1b:a1:a6:25:ff:
35:79:87:3c:16:24:20:4f:8a:66:bd:3a:46:b0:ab:
ca:82:06:6d:47:35:2e:5c:0a:d0:7a:4e:09:c5:d5:
cc:f4:d9:ed:26:b5:f7:3e:ea:bd:4b:50:24:9b:e5:
cb:f7:8f:6c:10:06:33:98:72:d5:9a:4c:bb:3d:50:
cf:84:11:0a:99:7c:91:8e:a0:32:e0:77:09:bd:3a:
9c:90:a1:73:a0:7d:da:dc:c8:34:94:49:5c:2b:50:
ae:b9:11:d8:7a:cc:cd:01:43:76:3e:16:21:cc:9a:
3a:4e:e2:2d:01:04:6e:b9:89:bd:3a:cd:58:66:c7:
40:4c:42:f1:14:e0:86:c1:bc:14:bd:e4:17:f5:b1:
48:09:fa:96:b3:e6:cc:b7:38:e4:5f:af:6c:6d:aa:
da:cb:b8:55:bc:c6:58:98:1c:b2:36:3f:b8:8a:d8:
2d:6b:66:60:0e:bb:fb:be:4d:76:ca:e9:b7:cc:57:
fe:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F9:1C:DF:A2:CE:96:F1:E9:C7:EF:13:57:0E:07:3E:38:2F:4B:50
X509v3 Authority Key Identifier:
keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/bfkc36LOlvHpx-8TVw4HPjgvS1A.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:4090:7000::/40
Signature Algorithm: sha256WithRSAEncryption
d9:e9:85:79:02:81:b2:25:83:f5:af:08:2e:63:6a:5e:9b:c7:
7e:1a:4b:a0:14:59:9a:6a:27:4f:9c:ba:7d:ee:b8:06:87:65:
d6:62:99:ba:0d:aa:ed:56:40:9b:7f:a6:da:d6:e6:bb:d5:10:
e7:75:ca:44:8d:a1:ec:8b:2c:d6:60:e8:ea:9d:c8:b9:a5:e4:
71:e0:09:05:c8:45:3c:23:d5:19:03:30:f0:00:e5:39:6e:98:
25:68:4c:23:b3:86:6e:07:31:19:e2:1b:6e:33:d2:51:49:5d:
18:73:04:01:d6:d8:96:98:01:d3:d2:a8:2c:a9:d8:46:4a:4c:
f6:41:9f:26:15:cd:9b:4b:0e:2b:18:ce:98:a2:85:88:65:e6:
3b:a4:28:ff:c1:96:be:07:05:af:09:87:23:da:6a:a3:28:78:
f4:ea:92:7e:c7:1e:41:e0:b8:3d:e0:cf:e3:70:e5:5f:b7:05:
2e:03:9b:b6:e6:8a:a8:42:d5:9e:53:56:62:aa:81:d0:44:38:
36:26:94:d4:e2:ce:ef:6c:a8:a9:2a:c7:95:18:8e:9f:cd:14:
b1:7f:c3:50:a3:6f:72:16:2f:d6:cf:5b:71:ea:2a:41:e4:f5:
d2:59:7a:90:76:68:8a:21:29:fa:eb:e5:a0:d2:ee:2e:03:a9:
03:d0:2f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 20:26:37 2025 by rpki-client