Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2943/VcylARub8mZSef4yflS9wcetRkg.roa
File: VcylARub8mZSef4yflS9wcetRkg.roa (raw, json)
Hash identifier: ppcUX4GT6DPoQpfAw+ymbHChfU33r/5rAdK0ayKsrf0=
Subject key identifier: 55:CC:A5:01:1B:9B:F2:66:52:79:FE:32:7E:54:BD:C1:C7:AD:46:48
Certificate issuer: /CN=D5C2CE1261E59FD76D3E3FB00E5EBA8E44DA30C9
Certificate serial: 10
Authority key identifier: D5:C2:CE:12:61:E5:9F:D7:6D:3E:3F:B0:0E:5E:BA:8E:44:DA:30:C9
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1cLOEmHln9dtPj-wDl66jkTaMMk.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2943/VcylARub8mZSef4yflS9wcetRkg.roa
Signing time: Wed 16 Oct 2024 05:51:31 +0000
ROA not before: Wed 16 Oct 2024 05:51:31 +0000
ROA not after: Tue 14 Oct 2025 04:34:08 +0000
asID: 139148
IP address blocks: 2405:78c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D5C2CE1261E59FD76D3E3FB00E5EBA8E44DA30C9
Validity
Not Before: Oct 16 05:51:31 2024 GMT
Not After : Oct 14 04:34:08 2025 GMT
Subject: CN=55CCA5011B9BF2665279FE327E54BDC1C7AD4648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e2:2a:12:db:ca:ae:82:bf:6c:c1:00:62:00:
55:cc:df:e2:da:fe:a5:f5:2c:af:bc:da:12:09:70:
ac:f3:95:ad:66:3e:d9:37:11:6a:c7:d3:df:c1:9b:
55:bf:33:12:1e:47:a9:33:09:90:f6:5c:12:16:09:
0f:55:8f:69:6f:f7:dd:f3:aa:c7:d1:9f:d6:a3:79:
f4:7a:7b:70:71:49:d7:5d:a8:b7:dc:2d:92:3a:6e:
be:dc:f3:0e:2b:8c:16:6c:7b:1e:a9:1d:b3:33:eb:
7b:4c:9f:16:1b:bf:8d:79:8c:91:cd:aa:89:3c:ab:
18:df:73:19:ec:f2:c2:d8:7f:32:e9:73:48:97:4e:
0b:70:67:26:35:73:50:68:04:4c:d2:ac:15:e6:ca:
d1:87:22:29:73:3e:e2:29:57:84:4d:6b:21:f7:0d:
fa:5d:7f:c7:fc:10:ec:7b:30:46:97:d8:c8:e6:2a:
ce:ca:33:7a:a2:c4:d1:30:29:6c:de:80:67:08:f8:
1c:3d:33:3d:02:d8:98:18:2e:b6:00:9e:5f:a2:19:
fb:41:56:4b:b1:c1:99:76:57:15:01:1c:22:96:1c:
57:fb:fa:70:13:b8:07:b3:ca:f1:f2:8e:7c:b5:b4:
75:b9:17:ba:78:5d:dc:15:3b:df:05:25:2b:70:f8:
04:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:CC:A5:01:1B:9B:F2:66:52:79:FE:32:7E:54:BD:C1:C7:AD:46:48
X509v3 Authority Key Identifier:
keyid:D5:C2:CE:12:61:E5:9F:D7:6D:3E:3F:B0:0E:5E:BA:8E:44:DA:30:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2943/1cLOEmHln9dtPj-wDl66jkTaMMk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1cLOEmHln9dtPj-wDl66jkTaMMk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2943/VcylARub8mZSef4yflS9wcetRkg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:78c0::/32
Signature Algorithm: sha256WithRSAEncryption
58:43:0b:9e:22:b5:54:75:26:2d:95:49:5a:05:99:8b:af:f8:
1c:0b:66:5e:cc:d3:d7:0c:c5:ff:c4:79:8b:56:6f:ee:b0:0a:
92:f9:a3:30:54:56:a4:f0:42:ad:b7:c4:32:07:57:ef:4a:fd:
91:44:65:64:fa:03:1c:65:ae:b2:73:04:85:32:64:a4:5f:f5:
6e:e5:8b:2d:38:da:fd:91:d6:15:cc:52:1a:cd:07:8a:f3:43:
f9:a0:8e:d3:e2:62:b4:0d:c9:aa:f3:aa:c7:e3:73:a0:5a:dd:
fb:62:75:87:b0:cf:94:59:a4:b8:83:8d:cf:f6:36:ea:3c:0f:
31:ec:23:be:f4:d3:49:1e:a2:78:3e:c9:8e:78:aa:77:3c:ce:
e8:c9:ff:9b:0d:05:c8:72:04:dd:47:ce:24:a8:5e:76:54:de:
09:b9:57:0e:df:8a:75:85:8f:61:8d:44:14:34:97:16:43:5a:
d1:1d:8b:2b:37:2f:6f:21:2d:21:7e:ed:c1:bd:3f:a1:b8:b4:
10:d2:82:f4:dc:ea:59:bf:75:6f:49:c5:a3:7c:18:bc:01:bb:
c2:9d:99:bc:78:99:0f:bb:de:f6:d9:c0:92:6d:4d:a9:d9:c5:
b2:c3:1c:cf:57:85:fa:f1:50:78:90:4e:72:82:e5:af:87:67:
9e:03:83:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:29:44 2025 by rpki-client