Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3181/mkZoSud_BPjcfugCbo_tKUEp0Lw.roa
File: mkZoSud_BPjcfugCbo_tKUEp0Lw.roa (raw, json)
Hash identifier: yovEmheF3JrY06N8yXuLRT50i5W2qzSu3lgNvmfLK9Q=
Subject key identifier: 9A:46:68:4A:E7:7F:04:F8:DC:7E:E8:02:6E:8F:ED:29:41:29:D0:BC
Certificate issuer: /CN=136A39C7630A3C7491050D3E9DBD5B6F7906FD75
Certificate serial: 06CF
Authority key identifier: 13:6A:39:C7:63:0A:3C:74:91:05:0D:3E:9D:BD:5B:6F:79:06:FD:75
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/mkZoSud_BPjcfugCbo_tKUEp0Lw.roa
Signing time: Thu 29 Aug 2024 03:46:34 +0000
ROA not before: Thu 29 Aug 2024 03:46:34 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 38378
IP address blocks: 103.29.24.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1743 (0x6cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=136A39C7630A3C7491050D3E9DBD5B6F7906FD75
Validity
Not Before: Aug 29 03:46:34 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=9A46684AE77F04F8DC7EE8026E8FED294129D0BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:77:37:d6:80:f5:4f:c9:eb:3d:30:9a:10:f1:
01:40:0a:8e:5b:b5:99:93:97:aa:6c:1a:15:d5:1f:
de:d1:65:09:77:44:ac:71:ce:ed:e1:af:36:c0:e3:
c0:69:10:3d:67:9e:a6:ba:8e:54:f6:44:0c:8e:49:
12:d6:b1:64:d2:c9:d6:ff:5d:71:d5:a7:ac:21:50:
b4:46:4e:44:3d:1f:7d:48:d7:2e:a7:17:cf:18:c2:
60:87:e5:fd:91:fb:e7:61:b2:fa:d2:b5:b6:ca:3c:
8e:23:2c:07:80:f2:84:3a:97:33:ff:81:f7:21:4e:
91:0f:d9:b4:f7:7b:61:d0:8b:5e:0e:7b:8d:56:e2:
e7:56:5a:17:4a:55:b1:c7:99:24:9c:9e:bf:9a:a3:
ff:db:a3:93:84:dd:b9:9d:f4:6b:11:f4:b2:95:35:
59:ea:d9:a0:70:80:7f:b2:14:6b:27:0b:f0:02:ff:
48:0d:27:0c:ca:17:a8:07:c5:15:db:14:12:db:1b:
79:d7:ce:0e:c5:d7:17:16:95:6e:22:55:48:a9:f6:
51:9e:48:c0:19:ee:89:be:b1:91:3b:b8:ea:41:91:
a1:a1:4f:c8:18:f1:35:a8:5b:6c:05:8b:5d:af:44:
1e:e8:47:c2:d9:2b:51:76:69:40:1b:9f:5b:6f:ac:
05:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:46:68:4A:E7:7F:04:F8:DC:7E:E8:02:6E:8F:ED:29:41:29:D0:BC
X509v3 Authority Key Identifier:
keyid:13:6A:39:C7:63:0A:3C:74:91:05:0D:3E:9D:BD:5B:6F:79:06:FD:75
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/mkZoSud_BPjcfugCbo_tKUEp0Lw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.29.24.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:30:17:0b:26:48:cf:92:60:61:38:df:96:16:e4:5c:2a:33:
f5:05:12:5f:f5:9e:81:b6:26:f1:98:64:82:22:f4:0b:3f:18:
54:e7:7c:2c:ab:02:28:6e:3b:a5:c6:3b:e3:35:ef:d7:d3:97:
62:91:3f:7b:a7:7a:10:20:27:d0:c1:ad:60:dd:5d:9f:c9:22:
4e:1c:3e:4e:61:f2:8f:15:59:13:b0:a6:3a:99:7e:70:01:c3:
50:06:8c:d2:8b:8e:fe:ec:dc:f2:3d:e5:eb:5a:20:75:7d:17:
08:44:5e:06:a7:a3:fb:f5:f9:e9:a9:8c:fb:89:b5:d1:bb:ba:
d9:0c:c8:bb:5f:ab:f2:c1:ef:e2:f5:88:1c:c0:23:ce:5a:47:
77:03:59:fc:eb:56:fb:de:47:78:87:d7:d9:a8:a6:26:5d:53:
53:18:85:fb:8a:ca:dd:3e:7e:eb:5e:7d:ea:ce:86:20:2c:f4:
9d:03:fa:a5:0a:ea:e7:bf:5b:90:d2:b5:69:c4:2a:ef:6b:02:
92:ce:4d:45:0b:14:d6:62:69:46:3a:e8:36:de:1e:23:a5:2e:
e2:21:a5:3d:3b:4f:8f:8f:10:c2:28:c5:6f:27:dd:9b:4b:10:
1f:c3:c7:96:44:d2:05:d6:b2:03:77:23:dc:63:ad:98:14:98:
b2:06:11:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:33:58 2025 by rpki-client