Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2738/P_zn1bBIrBUhyvji1gbHOKtVhNc.roa
File: P_zn1bBIrBUhyvji1gbHOKtVhNc.roa (raw, json)
Hash identifier: R5ICvkhVFgRwlrgIYz/MhUorH6qql94PSSGMt2HSZGg=
Subject key identifier: 3F:FC:E7:D5:B0:48:AC:15:21:CA:F8:E2:D6:06:C7:38:AB:55:84:D7
Certificate issuer: /CN=8E3E027142C633D56598418DF6DEBC01BDD8008C
Certificate serial: 0CA6
Authority key identifier: 8E:3E:02:71:42:C6:33:D5:65:98:41:8D:F6:DE:BC:01:BD:D8:00:8C
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/P_zn1bBIrBUhyvji1gbHOKtVhNc.roa
Signing time: Wed 13 Mar 2024 01:22:08 +0000
ROA not before: Wed 13 Mar 2024 01:22:08 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 137798
IP address blocks: 103.116.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3238 (0xca6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8E3E027142C633D56598418DF6DEBC01BDD8008C
Validity
Not Before: Mar 13 01:22:08 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=3FFCE7D5B048AC1521CAF8E2D606C738AB5584D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1c:82:e7:56:f1:91:e3:dc:4d:36:e4:5c:be:
6f:de:10:c5:5e:cf:f9:87:cb:b0:db:7f:0c:72:cb:
36:1a:94:ad:ea:77:ba:e1:6c:64:0a:da:97:9e:09:
4e:43:c2:9d:68:29:71:f5:95:a4:d2:c8:14:f5:e9:
7b:36:a6:69:08:f6:ee:09:3e:91:ed:62:ae:3d:8f:
f4:3a:45:7e:64:93:bc:b6:92:50:dd:c0:dd:f0:66:
2e:ab:be:bb:c0:04:c8:9c:e4:c0:f5:2e:b9:93:1d:
2f:78:83:00:a4:62:32:48:8c:27:0e:71:53:89:9f:
c9:2b:c5:32:5a:b0:6b:e7:31:1e:ea:f9:cf:68:ca:
e7:ff:e4:4a:ce:f3:15:b9:d0:d1:a1:5b:7b:e5:dd:
96:be:f0:00:2f:a3:4a:fb:25:a5:29:eb:39:24:5e:
0f:9b:2f:57:1e:fd:a5:95:d8:d9:a9:52:d4:25:2b:
52:88:ba:73:c5:ac:9d:2b:68:6a:8a:39:b4:6e:39:
f6:ce:a9:86:65:12:9e:83:81:6e:f3:95:09:7c:86:
1f:da:13:3e:15:2a:e2:cc:35:01:0c:7a:c5:ab:e9:
8d:11:7b:ad:57:74:7a:56:d7:ae:40:71:e5:49:0b:
02:90:2a:34:e1:13:bd:57:f6:0a:a7:6f:99:a6:2d:
b7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:FC:E7:D5:B0:48:AC:15:21:CA:F8:E2:D6:06:C7:38:AB:55:84:D7
X509v3 Authority Key Identifier:
keyid:8E:3E:02:71:42:C6:33:D5:65:98:41:8D:F6:DE:BC:01:BD:D8:00:8C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/P_zn1bBIrBUhyvji1gbHOKtVhNc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.116.92.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:47:1e:b2:de:7f:6d:bb:09:12:97:8e:d1:fe:4c:60:b0:55:
67:1a:8b:40:58:fc:d4:b8:a1:51:00:09:4f:38:b2:cd:28:23:
b2:b4:51:9b:f8:df:12:02:7d:f5:d3:30:2a:71:1e:2b:2f:54:
17:6e:8a:3c:e1:09:81:9b:3c:0b:ed:0c:6b:a1:37:9d:d9:a8:
17:21:99:15:5d:0c:ec:7a:d8:75:27:59:5d:e2:c8:d6:1e:a6:
18:e4:4b:31:0d:75:f8:91:51:46:7f:b6:32:24:49:33:48:85:
d3:18:6c:b1:c7:d6:b2:09:ad:24:c2:00:78:4b:36:77:3c:d2:
d9:a2:d1:9a:06:14:f4:e7:43:21:ff:33:4e:ef:57:b7:ed:42:
f1:7c:5f:b3:2a:9b:19:88:bf:95:32:59:9c:b1:f1:1a:08:18:
f1:7e:b0:9d:09:d5:12:d5:2a:3b:6d:48:a4:af:b7:1c:24:16:
03:13:2f:fb:23:e7:5e:30:bf:49:e7:1f:30:27:37:73:41:7e:
3c:c0:c3:db:3c:2d:cb:b3:75:70:56:c9:4c:ce:8a:a2:ef:b4:
a4:00:4f:07:e4:51:59:d4:99:53:e9:03:2a:3b:02:97:bb:4e:
73:b6:b8:b9:a1:c8:1d:f4:fb:c0:08:94:56:f6:73:9f:06:57:
bd:b8:f9:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:47:21 2025 by rpki-client