Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3171/p7Jqn23IuE0FpQRuz5kgUIxzbOs.roa
File: p7Jqn23IuE0FpQRuz5kgUIxzbOs.roa (raw, json)
Hash identifier: ME+EBRtckuYtQG4SD53RhFtatuorO97DAlg/zpUiSps=
Subject key identifier: A7:B2:6A:9F:6D:C8:B8:4D:05:A5:04:6E:CF:99:20:50:8C:73:6C:EB
Certificate issuer: /CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156
Certificate serial: 0F57
Authority key identifier: 02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/p7Jqn23IuE0FpQRuz5kgUIxzbOs.roa
Signing time: Tue 15 Oct 2024 09:41:07 +0000
ROA not before: Tue 15 Oct 2024 09:41:07 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 137443
IP address blocks: 103.218.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3927 (0xf57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156
Validity
Not Before: Oct 15 09:41:07 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=A7B26A9F6DC8B84D05A5046ECF9920508C736CEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7d:6d:13:58:c4:74:fa:b2:8e:d0:2a:88:90:
bb:1f:cb:34:f5:55:09:d3:0b:38:05:75:68:97:0a:
56:1e:f4:97:0b:66:aa:2d:fc:34:6d:98:b2:45:15:
fd:10:e8:44:10:00:84:0e:75:c0:34:09:f4:37:09:
ca:5f:a6:35:ef:70:29:21:5a:cd:76:6b:37:d4:83:
69:96:98:5f:ea:58:c8:7c:e9:8e:32:31:bc:a9:f4:
1e:00:89:8b:56:a4:f1:6a:34:48:5a:5b:b5:0c:54:
ae:3e:ce:18:6e:b9:f8:89:74:fd:95:49:f8:f9:46:
87:83:88:75:d5:b1:01:d7:e1:c8:cf:cd:71:0e:8b:
91:21:2b:af:60:24:22:56:d0:f3:e6:c0:f5:42:61:
ac:f7:94:a6:20:d3:ce:5a:7f:af:81:38:36:1e:eb:
30:e0:dd:b8:7f:71:13:29:6b:97:0e:c1:31:7d:e2:
ac:8a:d3:9f:1c:0f:ff:02:e5:41:22:c1:3f:fe:ff:
ea:71:72:12:81:4e:cd:4d:f5:51:72:89:ea:ac:ae:
f6:c1:0e:33:f1:1b:50:d2:a5:16:c3:f6:a6:66:0a:
79:68:c8:ee:73:c4:2f:4b:44:71:7c:19:93:66:f8:
21:46:58:b6:58:d2:99:e3:cf:56:27:98:85:83:5c:
9a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:B2:6A:9F:6D:C8:B8:4D:05:A5:04:6E:CF:99:20:50:8C:73:6C:EB
X509v3 Authority Key Identifier:
keyid:02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/p7Jqn23IuE0FpQRuz5kgUIxzbOs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.218.93.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:7c:21:d6:a0:f0:28:05:18:14:1e:8e:55:b2:23:99:ab:23:
18:91:1d:6d:95:65:4f:10:05:e8:4d:dc:d0:6a:d1:ce:ab:ad:
d9:cb:31:b2:a7:bd:e3:23:99:36:3c:92:c1:f1:4b:eb:3d:45:
30:ac:19:4c:c7:3b:18:74:a1:9b:cd:16:bb:f4:cf:03:9a:9d:
9e:c1:0e:ed:58:7b:27:2d:7d:ca:c1:2c:ec:17:ff:55:45:69:
c8:be:35:99:8a:54:ea:65:e8:38:0c:97:2d:0e:62:f4:26:e4:
60:4b:5f:25:83:63:b0:fd:d3:6d:98:bb:ef:09:df:a7:6b:b8:
4a:ab:3f:f6:45:7b:c2:4e:f0:d5:63:d9:7e:82:21:0c:53:3d:
ec:62:6a:40:cd:60:15:c3:1b:d8:da:35:1d:79:7e:d2:1c:7a:
13:ef:3d:d0:6c:f3:f2:da:53:47:10:49:b5:9f:35:c8:c3:81:
2b:1b:ba:2a:1a:29:b0:7a:0e:69:c2:cd:d7:51:c9:9b:25:09:
15:4b:6c:8f:2d:7b:81:92:31:6f:54:31:63:b8:ec:69:31:d2:
4d:58:a5:24:48:ac:83:ba:9d:ce:11:83:05:1a:7a:4b:70:b2:
fd:2f:b6:53:37:8c:11:5f:3a:a0:be:b5:af:c7:c3:76:67:34:
2d:ea:80:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:47:12 2025 by rpki-client