Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/qD4-YvnszP53c3NAzOkqFDI1M10.roa
File: qD4-YvnszP53c3NAzOkqFDI1M10.roa (raw, json)
Hash identifier: BEny4MgBwJLCMyruv7fd4IKlEjxYrDrYtCsCJXcrksc=
Subject key identifier: A8:3E:3E:62:F9:EC:CC:FE:77:73:73:40:CC:E9:2A:14:32:35:33:5D
Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9
Certificate serial: 0F94
Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/qD4-YvnszP53c3NAzOkqFDI1M10.roa
Signing time: Tue 26 Nov 2024 06:40:35 +0000
ROA not before: Tue 26 Nov 2024 06:40:35 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 55990
IP address blocks: 113.47.220.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3988 (0xf94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9
Validity
Not Before: Nov 26 06:40:35 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=A83E3E62F9ECCCFE77737340CCE92A143235335D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bb:0c:7e:f7:b3:b8:34:53:d7:f8:37:09:3b:
4a:6a:98:a3:f2:46:d9:16:8f:d9:37:4b:8b:15:fc:
99:12:f4:d9:8a:05:72:1d:87:c8:e2:ec:9b:83:ae:
21:f6:67:11:20:a4:ac:6b:7f:6d:0a:4b:dd:42:01:
06:0a:99:6f:e4:52:db:49:51:6e:11:f3:1e:c5:68:
56:06:02:9f:e0:88:61:fc:6f:b7:f6:f5:57:b8:07:
9f:29:46:93:2e:48:0f:47:ec:73:3b:96:d1:4a:c5:
3d:16:36:b3:15:5a:2a:ce:09:0c:6e:1c:09:9d:6b:
68:f4:18:96:a9:0a:b4:84:c9:23:1d:52:4f:00:a4:
a2:0d:a5:55:68:d0:47:d0:45:b4:57:b4:3d:8c:dc:
90:92:5f:16:65:7a:c7:95:3c:2d:65:39:2a:5f:d2:
63:c9:23:a2:a6:2d:21:78:8a:ec:e4:30:03:f7:97:
df:a7:0e:1c:60:2c:22:df:10:24:af:c4:4f:63:d7:
01:c9:5f:00:9a:9d:42:21:c1:91:ac:91:1e:8d:b6:
e4:ea:f8:6a:f7:7e:0f:c4:8f:20:90:a9:15:38:cc:
1b:78:ff:79:9a:15:bd:78:30:76:82:90:9d:e3:44:
5c:c9:7a:8a:10:bf:09:69:5f:a9:15:f7:43:4f:be:
a4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:3E:3E:62:F9:EC:CC:FE:77:73:73:40:CC:E9:2A:14:32:35:33:5D
X509v3 Authority Key Identifier:
keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/qD4-YvnszP53c3NAzOkqFDI1M10.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.47.220.0/23
Signature Algorithm: sha256WithRSAEncryption
43:d0:0a:9c:73:1e:a5:d7:72:9c:0e:2d:71:3f:2f:03:9f:87:
4e:ed:ea:33:8d:f8:90:9c:72:fc:38:b4:31:1a:1d:3b:71:b1:
4e:0d:ef:5e:17:84:68:bd:a7:55:9b:a1:46:ab:e0:3a:e2:82:
8c:66:bb:63:3b:e3:36:18:e3:e0:82:84:a0:43:ea:42:ac:12:
72:46:a8:b7:d6:f2:94:77:69:d4:d5:87:76:2b:f8:26:f9:8d:
6a:17:bd:d4:9e:6d:cf:b3:3a:b4:d8:38:28:63:08:56:1d:d9:
5f:39:95:d8:39:ea:f9:08:4d:45:b8:fb:b0:f9:eb:47:a4:3a:
84:cd:f9:be:7e:59:49:a3:1d:c8:24:f4:67:14:08:64:4c:e5:
59:be:f3:b8:40:81:74:93:23:12:f5:3d:18:07:c9:71:ba:2c:
a3:1e:b3:38:87:66:5a:44:e1:70:3e:45:3a:b4:a7:08:ab:b9:
9a:56:1d:12:2d:f5:52:ff:7b:52:62:50:6b:37:48:fa:9e:a9:
8d:a5:ec:17:95:09:80:01:21:86:f3:b6:b4:ff:76:c3:99:36:
6e:4e:10:1d:73:12:c2:ac:22:39:b8:59:e9:2f:7e:38:00:83:
5a:72:c6:9c:f2:12:af:ff:0d:cb:10:1a:78:7d:a9:0e:32:87:
03:de:85:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:39:05 2025 by rpki-client