Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/27/-0d9Ih2_4xrstIEFPLAr5YDyDWE.roa
File: -0d9Ih2_4xrstIEFPLAr5YDyDWE.roa (raw, json)
Hash identifier: puWBp8oudYuH+BhgQnZwi091SZQ8sGEFcEdJYSj4y0Y=
Subject key identifier: FB:47:7D:22:1D:BF:E3:1A:EC:B4:81:05:3C:B0:2B:E5:80:F2:0D:61
Certificate issuer: /CN=9F2B6854BE70947F0785FF966203BB650BDD1682
Certificate serial: 0E29
Authority key identifier: 9F:2B:68:54:BE:70:94:7F:07:85:FF:96:62:03:BB:65:0B:DD:16:82
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/-0d9Ih2_4xrstIEFPLAr5YDyDWE.roa
Signing time: Fri 24 May 2024 02:25:18 +0000
ROA not before: Fri 24 May 2024 02:25:18 +0000
ROA not after: Sat 10 Aug 2024 07:41:13 +0000
asID: 17964
IP address blocks: 2403:8080::/32 maxlen: 64
2403:8880::/32 maxlen: 64
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3625 (0xe29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F2B6854BE70947F0785FF966203BB650BDD1682
Validity
Not Before: May 24 02:25:18 2024 GMT
Not After : Aug 10 07:41:13 2024 GMT
Subject: CN=FB477D221DBFE31AECB481053CB02BE580F20D61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:eb:5b:5a:ac:ab:d0:24:f1:df:77:38:d6:50:
02:6a:d0:af:b0:c7:b1:48:70:54:ab:24:c9:72:d8:
4d:8e:ce:8e:90:d2:b1:ca:0f:d4:7b:ec:30:7a:f8:
52:96:98:d9:ef:75:c1:cc:f9:03:50:e6:75:91:5b:
5d:dd:db:93:7d:ec:ef:b5:7e:f9:8f:a4:e3:ce:70:
2c:e6:c7:0d:fb:28:37:1f:7a:67:66:50:fe:45:23:
82:9d:0d:85:f5:90:ab:7f:d4:42:09:ef:36:36:ac:
0e:96:88:61:a1:74:b2:dc:8d:72:e4:01:b4:56:cf:
e9:d4:f7:48:e6:c0:5a:98:fa:aa:e5:a5:db:64:b1:
4c:45:9a:8e:a6:e8:8a:76:63:a0:a9:d9:a2:63:6f:
f5:51:5d:2f:b5:e6:4b:6a:04:8b:ba:0a:4b:a1:06:
62:bf:c6:39:79:d0:47:dd:8d:c6:f7:d6:3e:08:f9:
94:fa:99:f5:45:3c:4e:da:ca:13:a8:e0:fb:14:60:
b3:de:33:5d:98:a0:8c:c0:2d:81:ae:ff:88:82:12:
b4:83:a4:ac:5e:53:56:77:20:b1:5f:77:5f:85:85:
87:7a:45:4c:c8:99:bb:9d:c1:14:7b:0c:17:41:af:
7f:63:85:49:f1:c0:9f:4f:18:b9:9a:84:79:3e:2e:
93:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:47:7D:22:1D:BF:E3:1A:EC:B4:81:05:3C:B0:2B:E5:80:F2:0D:61
X509v3 Authority Key Identifier:
keyid:9F:2B:68:54:BE:70:94:7F:07:85:FF:96:62:03:BB:65:0B:DD:16:82
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/-0d9Ih2_4xrstIEFPLAr5YDyDWE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:8080::/32
2403:8880::/32
Signature Algorithm: sha256WithRSAEncryption
3c:b0:ad:cc:f1:b9:fc:29:55:cf:fa:c3:48:da:05:bd:38:8b:
0f:4f:94:33:a6:b9:04:39:3e:7a:ff:a2:b9:89:60:19:a5:51:
6b:61:db:fd:c7:65:eb:c6:ec:94:0d:ec:1c:f8:ef:15:75:42:
85:02:62:d4:c0:ac:94:3a:9d:3e:fc:8b:3a:53:fc:8d:81:8e:
20:d3:b9:87:d3:b7:a2:66:91:7a:99:b2:fd:24:b2:64:c6:8e:
31:b6:15:09:1c:67:68:f9:15:f4:27:96:52:8a:6f:c2:7c:2e:
60:91:25:ec:03:b6:bc:d3:a1:8e:96:48:fb:1d:41:98:c2:a1:
0e:5b:1f:7a:ef:9b:ba:76:a2:88:8b:84:ac:53:f4:37:69:96:
b9:9d:e2:30:6e:9b:1f:41:d1:27:b9:bc:9e:27:03:89:0a:83:
e1:d2:61:86:c1:5f:3b:bb:0d:63:71:bb:e0:8a:30:17:4b:79:
fc:26:d6:69:55:21:8f:07:6d:69:f4:7e:f2:cc:77:b2:8c:e9:
12:48:ba:01:af:67:bc:c1:99:f1:a6:47:8c:ee:f1:65:ba:4b:
24:0b:75:1e:07:6c:51:bd:73:53:46:25:5f:d3:2d:17:25:87:
ab:5a:19:d5:4b:b1:ef:ab:06:c8:9a:95:9b:ac:95:7c:60:6c:
b8:1c:6c:5f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Aug 10 09:26:57 2024 by rpki-client on console-fra.rpki-client.org