Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3134/7GZTK5QwS8vnTmYs4X-8-_ZS4PM.roa
File: 7GZTK5QwS8vnTmYs4X-8-_ZS4PM.roa (raw, json)
Hash identifier: Fypc5S3wysoSbXk7yh6NHgb67GpfLGm2tLs4epy1xF8=
Subject key identifier: EC:66:53:2B:94:30:4B:CB:E7:4E:66:2C:E1:7F:BC:FB:F6:52:E0:F3
Certificate issuer: /CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B
Certificate serial: 0D
Authority key identifier: 1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/7GZTK5QwS8vnTmYs4X-8-_ZS4PM.roa
Signing time: Mon 24 Jun 2024 07:33:56 +0000
ROA not before: Mon 24 Jun 2024 07:33:56 +0000
ROA not after: Tue 24 Jun 2025 01:23:54 +0000
asID: 146761
IP address blocks: 103.183.26.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13 (0xd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B
Validity
Not Before: Jun 24 07:33:56 2024 GMT
Not After : Jun 24 01:23:54 2025 GMT
Subject: CN=EC66532B94304BCBE74E662CE17FBCFBF652E0F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6e:53:47:26:40:b2:3d:38:b8:e9:76:50:98:
d2:0a:25:4a:90:3a:b9:f1:8d:36:f7:c1:61:3b:70:
51:51:a3:be:e2:ef:fd:f3:2d:46:4d:5c:e9:2c:32:
05:68:91:31:75:76:31:35:b4:92:7e:74:54:95:8f:
67:5f:2d:58:7d:32:30:a9:6d:d6:5a:0f:53:3c:65:
be:b0:ff:02:54:e8:f3:71:a2:4e:a3:ac:f1:d7:7f:
26:a6:48:76:b5:5d:b5:ba:e0:71:23:e6:eb:f5:02:
2e:c5:ac:ab:b4:98:ac:07:a1:41:7b:54:23:e8:fe:
15:24:38:f4:bd:c0:9b:bc:56:dc:6f:a5:68:cb:dc:
0b:10:81:21:92:99:5a:c9:d0:4d:80:a4:d5:50:3d:
82:32:ec:4b:6e:9a:31:1d:4d:27:79:d9:c4:2d:3f:
d8:03:92:83:92:df:a6:bd:f0:c7:50:13:22:93:ed:
1a:b5:57:6d:47:2c:19:37:a7:5d:cb:ed:8c:fe:50:
52:11:05:d6:32:d0:e7:84:02:94:b0:a8:b7:95:e7:
42:23:3b:87:8a:80:ea:80:f9:14:24:5f:ef:0c:80:
e1:8e:c1:6f:45:89:28:d1:9c:d9:a2:00:eb:97:b6:
b2:e7:7d:f7:8a:4e:8b:b5:f2:0e:6c:b5:b6:ed:ce:
df:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:66:53:2B:94:30:4B:CB:E7:4E:66:2C:E1:7F:BC:FB:F6:52:E0:F3
X509v3 Authority Key Identifier:
keyid:1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/7GZTK5QwS8vnTmYs4X-8-_ZS4PM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.183.26.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:38:45:9e:d4:f5:b4:6c:4f:31:a9:e0:57:e8:42:85:5e:c1:
02:17:1e:86:0d:08:e7:01:39:82:6d:71:67:60:bc:bd:4a:aa:
38:3e:f0:f3:0a:a4:ee:97:7e:5a:b5:4a:9c:5a:c4:df:be:73:
eb:43:ff:31:51:05:c1:7a:f7:d4:c3:54:87:d5:3b:93:58:3c:
1f:a1:fc:33:ce:45:ea:f7:05:75:e2:45:e9:b1:7b:e0:d0:b3:
2c:e6:2f:04:bc:56:2b:1a:1d:bb:34:3d:ce:06:da:c3:a7:54:
00:d2:fe:08:65:c8:4b:d2:70:7b:bc:47:88:89:bc:ee:21:d2:
5b:b5:49:2d:e4:dc:39:99:c8:a5:c1:58:67:ee:af:ba:59:b7:
81:4b:d7:f5:d5:57:f7:4f:fd:13:35:91:f7:fc:81:61:31:0a:
a4:5c:02:ec:ae:77:6c:94:49:7c:ec:73:97:6f:32:bc:f4:f5:
80:9f:ae:fc:c1:5a:36:9f:0c:be:fb:68:73:96:ea:8b:6a:96:
73:d0:20:fb:b1:57:09:ea:c5:eb:96:57:d3:fe:a9:81:bb:4e:
f1:e1:2a:55:dc:82:90:6a:fa:cd:3f:a5:7c:de:3a:bf:2e:1c:
40:61:15:1d:4b:dc:69:e4:fa:a7:fe:32:65:4b:6d:8e:62:c1:
d9:d2:b8:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:40:36 2025 by rpki-client