Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/27/G5iEYI6Dwscu1XilnJmkTfSnjd4.roa
File: G5iEYI6Dwscu1XilnJmkTfSnjd4.roa (raw, json)
Hash identifier: x3CpaBWMVRnKyrGFZka1Ai0pi8wftnuSGn+H/aoW1IA=
Subject key identifier: 1B:98:84:60:8E:83:C2:C7:2E:D5:78:A5:9C:99:A4:4D:F4:A7:8D:DE
Certificate issuer: /CN=39E47899249325DB499BFC6910919D2F36003E9A
Certificate serial: 18BD
Authority key identifier: 39:E4:78:99:24:93:25:DB:49:9B:FC:69:10:91:9D:2F:36:00:3E:9A
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/G5iEYI6Dwscu1XilnJmkTfSnjd4.roa
Signing time: Fri 27 Sep 2024 03:02:22 +0000
ROA not before: Fri 27 Sep 2024 03:02:22 +0000
ROA not after: Sat 27 Sep 2025 02:42:48 +0000
asID: 17964
IP address blocks: 2403:8880::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6333 (0x18bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39E47899249325DB499BFC6910919D2F36003E9A
Validity
Not Before: Sep 27 03:02:22 2024 GMT
Not After : Sep 27 02:42:48 2025 GMT
Subject: CN=1B9884608E83C2C72ED578A59C99A44DF4A78DDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a6:1b:6d:1e:07:10:b1:c2:34:59:a9:5f:80:
5e:ab:23:ef:86:60:62:5f:81:2a:25:3f:fb:ff:2b:
15:96:6c:39:1b:3d:59:43:50:f7:ae:c2:ce:e7:da:
3d:fe:2a:20:6e:54:51:32:c4:0e:16:5e:03:85:09:
22:4b:1e:eb:7d:82:55:ad:c0:5e:aa:71:4a:10:8c:
f1:d6:7a:d9:05:3b:98:cc:96:ce:1c:e7:51:07:da:
1b:85:ac:55:69:db:c1:95:e5:18:65:bc:4d:9b:48:
02:92:6a:17:a1:4d:02:75:2e:47:a0:0b:ef:3f:b2:
11:1e:d8:e4:67:ce:f4:bf:e3:7f:df:a1:34:3a:fb:
95:d6:81:4d:ca:72:2a:7f:91:e3:ff:e1:a4:6b:bc:
58:12:21:d5:a5:3c:bd:d1:86:14:ba:cb:e4:27:db:
26:2a:ff:7a:fd:c7:fb:be:e9:33:0d:12:7c:52:f4:
58:b1:c9:fd:d4:23:5c:f1:c0:9a:1c:b4:6a:4b:61:
4a:55:72:68:f8:06:d8:87:d2:c8:3c:dc:f6:d3:ac:
aa:83:fd:1d:59:8d:a3:68:fc:5c:2e:c2:66:18:10:
83:40:3d:42:60:13:4c:ab:3c:4b:06:b8:12:1b:37:
b8:80:bf:a0:55:d2:59:5c:7f:58:8d:7c:20:5b:f7:
66:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:98:84:60:8E:83:C2:C7:2E:D5:78:A5:9C:99:A4:4D:F4:A7:8D:DE
X509v3 Authority Key Identifier:
keyid:39:E4:78:99:24:93:25:DB:49:9B:FC:69:10:91:9D:2F:36:00:3E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/G5iEYI6Dwscu1XilnJmkTfSnjd4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:8880::/32
Signature Algorithm: sha256WithRSAEncryption
2b:02:e3:74:01:83:82:e2:47:a6:d5:da:8c:eb:97:45:28:2c:
37:3b:4b:dc:aa:83:1f:ac:38:51:5c:6a:00:d1:40:7c:8c:c8:
16:0b:26:3a:9d:7e:0e:59:61:4f:c9:1a:ea:6d:68:10:6f:97:
df:70:3b:94:53:82:d4:ee:e2:6c:2b:05:90:38:13:e7:b7:d7:
ed:08:93:e1:cd:eb:b7:f8:60:75:c0:d8:a0:05:6f:ba:c9:a6:
c3:55:5e:d1:93:e9:e5:c3:73:fb:63:58:da:91:a8:4b:8c:83:
ac:65:6e:ac:a9:1b:68:bd:1d:04:fd:bd:02:29:24:46:3e:8c:
1b:48:24:df:fe:b5:b9:aa:94:2f:83:85:91:eb:3c:8b:8b:1f:
72:05:db:9b:e7:8a:6e:9a:b5:c9:9b:a3:ce:42:dc:9c:3f:3a:
e0:7a:ec:9d:eb:c7:70:2b:54:58:5f:30:3d:f9:ff:0f:a8:42:
aa:85:73:df:66:bf:81:a2:fc:25:7d:88:22:2b:20:36:db:6f:
1a:61:83:7a:5e:cb:06:65:21:62:72:92:e7:a7:56:c7:ed:68:
2d:ad:31:8f:95:1d:42:73:a8:aa:fa:96:ec:81:50:c2:cb:54:
c4:77:5b:b7:e6:b9:cd:cf:a0:d2:a5:4a:f0:a2:94:d0:76:f2:
d0:19:32:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:37:53 2025 by rpki-client