Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/yvhNSPYbLwgA1dCPx7O-10A31p0.roa
File: yvhNSPYbLwgA1dCPx7O-10A31p0.roa (raw, json)
Hash identifier: GHuWHIQ2JVSETgMkJBEjObvFNK3ZtC/JhbXcUiKibG0=
Subject key identifier: CA:F8:4D:48:F6:1B:2F:08:00:D5:D0:8F:C7:B3:BE:D7:40:37:D6:9D
Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221
Certificate serial: 1C
Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/yvhNSPYbLwgA1dCPx7O-10A31p0.roa
Signing time: Mon 14 Mar 2022 06:11:50 +0000
ROA not before: Mon 14 Mar 2022 06:11:50 +0000
ROA not after: Fri 10 Mar 2023 09:35:39 +0000
asID: 12679
IP address blocks: 180.223.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28 (0x1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221
Validity
Not Before: Mar 14 06:11:50 2022 GMT
Not After : Mar 10 09:35:39 2023 GMT
Subject: CN=CAF84D48F61B2F0800D5D08FC7B3BED74037D69D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d9:46:88:16:40:27:a3:c3:b1:e5:3c:d4:e8:
e1:ee:c5:0d:b5:5f:e9:b6:74:e8:b6:62:71:f6:6c:
7b:99:6f:12:5a:a6:d9:4d:b3:73:cd:a3:e2:dc:b9:
0d:ab:2c:a3:cd:17:e1:c4:9d:0d:df:28:42:02:d3:
8a:14:2c:fa:48:b8:b4:93:45:3f:b1:e0:1a:cf:f1:
07:de:ba:bf:c7:a2:80:76:8e:41:62:ec:15:cf:2c:
0e:a0:d1:75:c7:20:d5:b9:f5:e4:11:16:e8:db:eb:
4a:80:dd:ec:c2:0a:3c:43:3c:9c:b3:5c:ab:cc:dd:
34:50:82:fe:51:17:86:55:0f:71:62:7a:b7:88:a1:
cb:86:2e:0b:c6:43:a4:cd:cc:b1:4a:34:49:bf:c8:
21:06:8b:be:72:d0:0c:fa:c6:d8:38:e6:84:d4:f3:
9e:5c:ca:a7:ec:fe:97:76:02:e5:7a:47:bf:70:40:
61:50:ee:20:9c:3d:ca:aa:bd:74:e2:72:b6:88:19:
86:c5:d2:a3:1e:e8:52:9c:74:4b:8d:bf:62:46:30:
c3:35:dc:9e:91:23:a7:68:b4:a8:b6:0b:b1:f5:0e:
41:58:5c:9e:51:75:d6:06:78:5e:4c:88:d2:d2:71:
fd:d0:4d:5d:32:7f:32:8b:3c:3b:81:9b:71:fd:fd:
f4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F8:4D:48:F6:1B:2F:08:00:D5:D0:8F:C7:B3:BE:D7:40:37:D6:9D
X509v3 Authority Key Identifier:
keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/yvhNSPYbLwgA1dCPx7O-10A31p0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.223.240.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:87:be:ca:5b:3a:53:19:5b:ab:bd:5c:f1:45:fa:77:16:74:
84:b9:30:85:67:5a:e9:58:b8:37:b4:b0:17:95:73:9f:7d:7e:
45:4e:90:e9:b3:e4:6b:82:2b:07:47:45:19:d1:29:9f:de:dc:
3e:47:d9:9c:c7:74:46:d0:63:c8:05:9c:7a:3a:6c:08:c8:bd:
bf:cf:8a:fd:f5:c5:34:8c:b8:ca:b4:6e:9e:7d:ae:19:61:45:
85:c1:55:d4:51:cb:b0:35:30:9e:57:d0:19:3b:79:21:e6:17:
07:f8:71:4d:58:e4:8a:13:6e:7d:44:63:08:a5:95:b3:1e:d0:
ae:60:32:4c:80:9f:3e:0e:dc:ca:3e:77:63:1a:c8:97:65:e4:
13:06:21:17:64:75:00:04:48:d0:45:a5:56:1b:f2:f6:d4:db:
3b:3b:97:49:bf:55:4e:05:94:6e:12:7b:4d:8c:17:ea:aa:ee:
65:4a:4d:e2:50:5d:3e:12:db:b1:66:5d:ed:7e:d7:79:27:d5:
d8:6a:3d:39:6d:29:e9:bf:ea:f8:c6:1f:86:24:c9:37:83:d7:
14:9d:2b:ad:57:2b:2f:c9:83:25:e2:92:62:d4:78:43:c7:d3:
86:50:63:9b:52:b1:84:a9:27:fc:bb:bc:c5:a6:e8:78:2d:10:
26:de:a2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:17 2023 by rpki-client on console-ams.rpki-client.org