Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3238/bpEgYyX0uPVfPYoHSeDPjkhagFc.roa
File: bpEgYyX0uPVfPYoHSeDPjkhagFc.roa (raw, json)
Hash identifier: mbP1mQ+L1Vlf1gnB3Bgjm1yEzYWPJurPuNsJWnKBhLQ=
Subject key identifier: 6E:91:20:63:25:F4:B8:F5:5F:3D:8A:07:49:E0:CF:8E:48:5A:80:57
Certificate issuer: /CN=19C72CE7187A5E07E6D0F8E351BD798589B111CC
Certificate serial: 09DA
Authority key identifier: 19:C7:2C:E7:18:7A:5E:07:E6:D0:F8:E3:51:BD:79:85:89:B1:11:CC
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Gccs5xh6Xgfm0PjjUb15hYmxEcw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3238/bpEgYyX0uPVfPYoHSeDPjkhagFc.roa
Signing time: Fri 17 Jan 2025 01:27:03 +0000
ROA not before: Fri 17 Jan 2025 01:27:03 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 4837
IP address blocks: 103.21.103.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2522 (0x9da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19C72CE7187A5E07E6D0F8E351BD798589B111CC
Validity
Not Before: Jan 17 01:27:03 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=6E91206325F4B8F55F3D8A0749E0CF8E485A8057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ab:83:59:82:69:99:81:7e:3c:6e:a4:97:53:
ce:c0:6a:28:c0:33:6c:00:b2:8c:49:a8:83:b2:62:
8f:53:cb:71:bd:0b:32:3b:09:ae:9e:37:ec:6c:05:
d5:73:6a:6b:b3:af:31:ef:5f:53:8e:35:91:b8:39:
c6:6a:b1:3e:81:9d:2b:47:2b:31:18:67:2f:00:83:
c6:19:d5:58:d4:fd:f5:69:49:ef:af:d7:85:cf:0a:
c7:41:92:4a:0c:09:13:73:7e:b5:74:4e:2a:26:c3:
41:b3:dc:62:f2:33:8d:a6:39:5f:85:73:f8:70:51:
b5:a1:4c:aa:40:57:d7:11:50:1a:87:33:c5:55:9c:
7f:14:b7:95:84:33:fe:ec:c0:e9:9b:ca:0b:01:1f:
9b:e4:d6:96:73:dd:7d:81:b8:f1:71:cb:b6:88:60:
39:41:06:3f:08:ae:17:84:1e:07:5c:a2:65:6e:f1:
8a:4b:fb:f7:fe:18:d4:82:c1:8a:29:fc:ba:06:e7:
66:2a:bd:8a:98:b9:72:63:6b:f8:16:01:bc:98:51:
84:82:df:fc:55:33:b0:9a:56:2b:fe:85:f4:76:c6:
49:05:5f:ca:99:69:ef:8e:02:3f:1c:00:f5:61:62:
ca:40:15:45:5e:8f:e6:1a:ea:86:0f:02:9b:c1:36:
ce:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:91:20:63:25:F4:B8:F5:5F:3D:8A:07:49:E0:CF:8E:48:5A:80:57
X509v3 Authority Key Identifier:
keyid:19:C7:2C:E7:18:7A:5E:07:E6:D0:F8:E3:51:BD:79:85:89:B1:11:CC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3238/Gccs5xh6Xgfm0PjjUb15hYmxEcw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Gccs5xh6Xgfm0PjjUb15hYmxEcw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3238/bpEgYyX0uPVfPYoHSeDPjkhagFc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.21.103.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:f0:1a:a5:43:02:2e:2d:3d:e9:5a:c0:17:6d:f0:b6:79:13:
d6:29:f8:6e:e4:86:a4:38:2b:25:e9:5e:8c:0c:74:9c:a3:a6:
50:27:14:48:e0:67:92:7f:9d:80:87:fc:ef:2b:ed:5f:6e:0f:
5e:33:f4:17:f6:bf:47:e6:58:dd:4b:98:b7:6c:95:8e:63:48:
92:86:51:ce:85:b8:cb:eb:c7:4b:4b:76:aa:15:bc:c4:92:cc:
68:f6:fa:f4:c6:f1:48:e6:04:46:3c:81:3a:ee:59:b8:31:f9:
c5:b0:64:68:e8:ff:0e:5c:8b:ab:cf:f1:11:4d:93:cf:ea:d2:
43:54:d1:79:71:3b:2c:76:f4:bd:49:c4:18:ca:42:fb:0c:04:
01:f9:8c:e7:26:98:f2:45:2e:73:cd:f6:d8:6a:c3:12:94:02:
42:15:17:3e:65:48:c2:ad:d3:fd:89:85:75:01:3a:a0:13:03:
cf:6d:62:ad:34:35:5a:39:1d:66:22:e8:23:23:17:1c:46:a7:
6b:11:9f:03:ff:5b:65:b7:11:fc:d2:1f:3b:dc:0a:88:60:67:
60:e1:a9:10:7e:4d:2b:00:b2:fb:66:ec:5b:2f:bf:2a:ff:ac:
5b:3e:03:3c:c2:87:22:d3:43:70:97:23:fd:c4:cc:f2:46:61:
71:33:b8:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 06:11:26 2025 by rpki-client