Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/59stqTAGvFuKM9PfMDusxqe5Btc.roa
File: 59stqTAGvFuKM9PfMDusxqe5Btc.roa (raw, json)
Hash identifier: 7owmdboO8zmSkyQffCAiGJfGckbrcj7c6mnG0RIpXHY=
Subject key identifier: E7:DB:2D:A9:30:06:BC:5B:8A:33:D3:DF:30:3B:AC:C6:A7:B9:06:D7
Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221
Certificate serial: 1251
Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/59stqTAGvFuKM9PfMDusxqe5Btc.roa
Signing time: Tue 20 Aug 2024 12:56:46 +0000
ROA not before: Tue 20 Aug 2024 12:56:46 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 984
IP address blocks: 180.223.124.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4689 (0x1251)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221
Validity
Not Before: Aug 20 12:56:46 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E7DB2DA93006BC5B8A33D3DF303BACC6A7B906D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ed:c4:50:b3:aa:11:72:6b:f9:9c:5c:d0:50:
52:8f:6b:34:a7:b0:30:2b:f7:66:d2:59:65:56:31:
95:27:2a:0c:87:87:e5:27:e7:06:17:ab:1b:c9:ee:
d6:16:a7:e1:5f:1d:7d:36:18:e0:51:68:b0:c3:f7:
7d:95:87:09:3b:a3:46:f3:96:94:31:19:dc:37:11:
8d:41:6d:bd:b7:1f:0d:0c:b9:4c:ec:bf:e5:e2:55:
21:ad:74:5d:08:85:67:e1:0d:94:fc:5f:03:0b:84:
95:5e:98:28:92:5e:e4:d0:b1:8a:d9:c4:c0:f8:a1:
00:71:1f:56:4c:6c:9e:48:b9:68:72:02:f9:22:1c:
a8:6e:f0:6a:a1:66:80:33:ec:11:94:04:80:82:35:
c6:97:de:6d:fb:16:18:3c:b9:50:46:2e:cb:b1:7f:
72:df:6c:91:f0:9e:cd:60:fc:54:38:94:a4:25:d2:
0e:d4:41:98:4b:65:72:21:cf:6d:97:1a:9a:f6:d2:
f6:9f:8b:f8:9a:b0:ca:e2:0d:7c:fc:b9:b6:23:c1:
34:08:7d:25:c6:06:fc:97:2d:42:06:1e:fe:30:f9:
58:7d:30:cc:fd:5e:82:e1:00:7b:f2:d4:ac:bb:e5:
f2:48:79:ea:0f:97:8c:33:26:b9:0f:37:d6:ce:50:
05:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:DB:2D:A9:30:06:BC:5B:8A:33:D3:DF:30:3B:AC:C6:A7:B9:06:D7
X509v3 Authority Key Identifier:
keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/59stqTAGvFuKM9PfMDusxqe5Btc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.223.124.0/23
Signature Algorithm: sha256WithRSAEncryption
c8:84:25:e3:bf:7b:04:09:9f:0a:c5:ea:1e:3c:32:dc:9b:bc:
26:06:2a:81:ae:1b:23:99:31:71:4a:38:8d:b4:a2:9a:75:b4:
95:4a:1d:36:ce:6c:08:c8:10:42:d0:b8:1a:04:04:2e:4b:55:
ae:0c:29:29:32:40:4b:02:9d:28:41:01:bc:e5:72:8e:0e:61:
fa:cf:ec:43:a9:b1:e5:d4:27:c3:a1:87:b8:ea:9b:d7:b7:45:
20:5d:5b:25:11:03:33:e8:d0:af:96:75:6d:3a:d1:25:04:04:
44:50:0d:d2:7d:0a:74:76:90:a0:aa:ed:e7:73:23:ae:af:51:
a1:80:7a:28:64:a4:ea:08:4d:5d:7e:de:0e:a2:41:5d:48:16:
27:b8:68:24:2c:a9:1d:cf:94:42:37:5c:84:ac:f2:2d:46:01:
3b:eb:1d:9a:09:a8:9f:92:24:fa:e5:85:02:61:44:39:a7:6c:
21:55:f5:f9:21:c6:99:bd:a8:be:62:49:5a:40:a2:f8:e8:4b:
6c:30:ce:d4:a9:fc:3b:1f:33:68:89:60:6b:68:3f:46:29:b1:
83:2e:38:d9:da:1f:5a:76:57:13:6c:40:ea:39:1a:fd:47:47:
16:a1:55:f3:a1:5c:d0:e1:ca:80:c3:17:59:08:0a:48:b5:df:
10:e6:f8:cc
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICElEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw
QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNDA4MjAx
MjU2NDZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEU3REIyREE5MzAwNkJD
NUI4QTMzRDNERjMwM0JBQ0M2QTdCOTA2RDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDl7cRQs6oRcmv5nFzQUFKPazSnsDAr92bSWWVWMZUnKgyHh+Un
5wYXqxvJ7tYWp+FfHX02GOBRaLDD932Vhwk7o0bzlpQxGdw3EY1Bbb23Hw0MuUzs
v+XiVSGtdF0IhWfhDZT8XwMLhJVemCiSXuTQsYrZxMD4oQBxH1ZMbJ5IuWhyAvki
HKhu8GqhZoAz7BGUBICCNcaX3m37Fhg8uVBGLsuxf3LfbJHwns1g/FQ4lKQl0g7U
QZhLZXIhz22XGpr20vafi/iasMriDXz8ubYjwTQIfSXGBvyXLUIGHv4w+Vh9MMz9
XoLhAHvy1Ky75fJIeeoPl4wzJrkPN9bOUAXzAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQU59stqTAGvFuKM9PfMDusxqe5BtcwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD
IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz
MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvNTlzdHFUQUd2RnVL
TTlQZk1EdXN4cWU1QnRjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAbTffDANBgkqhkiG9w0BAQsFAAOCAQEAyIQl4797BAmfCsXqHjwy3Ju8JgYq
ga4bI5kxcUo4jbSimnW0lUodNs5sCMgQQtC4GgQELktVrgwpKTJASwKdKEEBvOVy
jg5h+s/sQ6mx5dQnw6GHuOqb17dFIF1bJREDM+jQr5Z1bTrRJQQERFAN0n0KdHaQ
oKrt53Mjrq9RoYB6KGSk6ghNXX7eDqJBXUgWJ7hoJCypHc+UQjdchKzyLUYBO+sd
mgmon5Ik+uWFAmFEOadsIVX1+SHGmb2ovmJJWkCi+OhLbDDO1Kn8Ox8zaIlga2g/
Rimxgy442dofWnZXE2xA6jka/UdHFqFV86Fc0OHKgMMXWQgKSLXfEOb4zA==
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:29:52 2025 by rpki-client