Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3168/aP2G8WceCha1XwZzj-hwRiGJHlc.roa
File: aP2G8WceCha1XwZzj-hwRiGJHlc.roa (raw, json)
Hash identifier: 3Q88mqE0KQ0+u6mj6uuPAnWcwFW5K1ZbbZH7hOYV/0w=
Subject key identifier: 68:FD:86:F1:67:1E:0A:16:B5:5F:06:73:8F:E8:70:46:21:89:1E:57
Certificate issuer: /CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094
Certificate serial: 06E3
Authority key identifier: 24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/aP2G8WceCha1XwZzj-hwRiGJHlc.roa
Signing time: Thu 20 Jul 2023 06:02:55 +0000
ROA not before: Thu 20 Jul 2023 06:02:55 +0000
ROA not after: Fri 07 Jun 2024 02:16:11 +0000
asID: 211392
IP address blocks: 103.79.228.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1763 (0x6e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094
Validity
Not Before: Jul 20 06:02:55 2023 GMT
Not After : Jun 7 02:16:11 2024 GMT
Subject: CN=68FD86F1671E0A16B55F06738FE8704621891E57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c4:a6:45:2b:99:48:b7:1f:68:9d:77:e2:3a:
6c:0f:3b:8b:2e:52:35:33:3e:43:d6:d3:d8:54:89:
89:04:21:8d:db:3e:c6:eb:2d:e8:fc:9b:dc:55:1a:
3a:1e:96:13:37:7e:9d:6a:42:af:25:7d:92:10:09:
29:41:f9:13:19:84:40:10:51:04:c7:2d:c1:8b:37:
41:ff:4a:df:39:ad:70:de:c4:15:f6:64:a1:a2:46:
93:44:c8:9a:bb:70:dd:37:d7:85:43:fc:a9:20:ec:
c3:45:5f:cc:a6:e6:2b:cc:9e:f5:e1:4f:9c:91:58:
0c:cf:3c:cd:5a:d2:5d:06:a6:5b:ce:52:87:ee:bd:
50:4d:e7:f4:b8:13:0d:81:d2:1c:d4:14:65:36:5e:
c5:eb:31:c2:f0:51:cb:82:c3:b8:52:53:8c:54:d4:
e5:ae:45:2c:60:38:a8:c5:c7:2c:d9:c3:73:6f:cd:
0d:3c:8b:9f:a9:4c:17:7b:37:68:c5:12:40:b7:57:
4b:2a:6f:0e:aa:03:da:c8:86:d1:5a:42:41:ab:13:
05:39:b4:d9:84:88:f7:dd:63:19:f1:92:87:e8:97:
15:84:d2:1c:71:95:e1:18:ab:67:b9:65:12:b2:de:
9b:1e:f1:36:b7:3b:e4:75:3b:9e:4a:16:dd:2d:03:
6c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:FD:86:F1:67:1E:0A:16:B5:5F:06:73:8F:E8:70:46:21:89:1E:57
X509v3 Authority Key Identifier:
keyid:24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/JAmH9ApgMM36M97R7ufPTcfDAJQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/aP2G8WceCha1XwZzj-hwRiGJHlc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.79.228.0/23
Signature Algorithm: sha256WithRSAEncryption
29:a9:5a:36:df:19:62:e9:8a:4f:ea:a3:cb:e5:3c:9b:dc:e9:
c8:aa:a5:39:7b:05:a1:39:f1:93:50:6e:57:31:f4:ec:b0:b5:
99:1a:27:52:d3:b1:d5:85:09:32:0d:53:2c:8d:fa:cd:d6:ef:
93:71:1c:cd:59:14:fc:76:32:c6:f0:14:8f:f9:b5:74:3b:c6:
ca:d4:07:4a:77:47:30:e4:a4:74:29:a4:36:09:bc:88:e6:9e:
7f:8c:7d:92:3c:3d:8b:5c:f9:15:7e:27:6d:56:77:d2:26:e3:
ab:cb:d2:a2:ce:7a:b6:c4:d5:fa:29:39:04:8d:13:15:86:d2:
1a:ae:91:40:76:bd:55:f4:fd:ad:b9:33:5a:0e:99:a8:08:e1:
88:b4:9c:ce:ae:e0:b4:c6:91:5d:94:e4:79:d2:34:67:c7:3e:
77:d5:92:74:ba:5f:61:b7:ef:6a:f5:93:62:2e:4b:41:96:f1:
2d:3a:50:44:57:f1:32:81:19:44:75:ee:e8:92:31:e5:ce:86:
98:34:e6:2d:89:6b:54:e8:19:16:42:e6:35:ce:3e:f1:8a:89:
c8:b4:33:47:8e:aa:a2:ca:3a:62:91:d3:39:51:35:f1:ff:9b:
12:78:2c:4a:6b:7b:0d:fa:0a:e8:bd:d8:bd:47:fc:82:4f:fb:
67:fd:d9:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:27:32 2025 by rpki-client