Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3272/sJSUiMpH4Z1WN6mdCubWgDorjXY.roa
File: sJSUiMpH4Z1WN6mdCubWgDorjXY.roa (raw, json)
Hash identifier: fpNiWBDBvWgxRhgPfNcZhJbnrL81qpDF+708K4TPJ9g=
Subject key identifier: B0:94:94:88:CA:47:E1:9D:56:37:A9:9D:0A:E6:D6:80:3A:2B:8D:76
Certificate issuer: /CN=FD341E841C183777F8F91DF4FCDA0BB9EFA061BF
Certificate serial: 0847
Authority key identifier: FD:34:1E:84:1C:18:37:77:F8:F9:1D:F4:FC:DA:0B:B9:EF:A0:61:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_TQehBwYN3f4-R30_NoLue-gYb8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/sJSUiMpH4Z1WN6mdCubWgDorjXY.roa
Signing time: Tue 27 May 2025 00:35:15 +0000
ROA not before: Tue 27 May 2025 00:35:15 +0000
ROA not after: Fri 03 Apr 2026 08:00:09 +0000
asID: 211392
IP address blocks: 157.66.42.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2119 (0x847)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FD341E841C183777F8F91DF4FCDA0BB9EFA061BF
Validity
Not Before: May 27 00:35:15 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=B0949488CA47E19D5637A99D0AE6D6803A2B8D76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d8:1e:a5:7e:7e:53:e7:dc:14:5b:0a:3e:d2:
c1:a0:6d:34:ce:5e:87:84:87:e3:3d:8e:be:14:99:
50:74:87:e7:1b:b9:04:43:f9:3f:ac:24:83:44:1f:
b1:2b:a6:a2:4a:6c:68:8b:7d:3d:f3:f3:c5:c2:5b:
80:a4:be:ea:70:9c:38:65:f0:fb:c2:d5:4d:bc:17:
6e:bf:72:61:7d:6f:90:3a:fd:df:b9:67:78:ad:78:
68:d6:e5:47:34:54:da:a1:94:46:31:64:d1:62:eb:
6d:3e:87:1f:21:85:ab:fb:b3:65:b6:f0:49:d0:7f:
69:f2:5c:8f:cd:30:94:e2:1f:7b:a1:78:0f:01:d2:
b1:26:dd:eb:8c:49:9f:d3:84:8c:da:8a:e1:2f:13:
39:28:d8:6a:7a:a1:89:3f:82:b3:66:d1:f2:52:7a:
f1:67:5d:a0:1a:b3:8e:12:53:81:7a:ee:f6:36:cf:
14:dd:cd:c6:82:c4:0b:65:88:11:ad:a4:85:98:a6:
d8:bf:b6:06:31:44:08:54:8d:2d:1d:98:bf:cc:80:
cb:2a:1d:8f:1f:1d:4a:95:de:58:18:5c:09:34:8e:
5f:e3:ed:0d:f2:66:c1:af:e0:11:67:b6:34:0f:61:
21:ff:f8:7a:92:b5:6e:fb:c3:63:67:14:93:5a:f3:
7f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:94:94:88:CA:47:E1:9D:56:37:A9:9D:0A:E6:D6:80:3A:2B:8D:76
X509v3 Authority Key Identifier:
keyid:FD:34:1E:84:1C:18:37:77:F8:F9:1D:F4:FC:DA:0B:B9:EF:A0:61:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/_TQehBwYN3f4-R30_NoLue-gYb8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_TQehBwYN3f4-R30_NoLue-gYb8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/sJSUiMpH4Z1WN6mdCubWgDorjXY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.66.42.0/23
Signature Algorithm: sha256WithRSAEncryption
07:1f:32:f8:c5:eb:a3:8d:88:da:16:da:76:d6:2a:43:ca:0e:
38:d8:2e:a8:8c:ef:04:8e:33:89:76:d7:35:2c:c8:26:58:05:
93:ff:06:ad:81:86:62:ac:f2:b6:13:52:a4:a2:f0:d3:14:04:
c1:7c:71:f5:20:35:f4:5e:cf:0c:c7:39:b7:af:2a:29:d6:bb:
03:8f:8b:ec:9e:92:40:2b:ac:e6:10:a2:6e:a1:08:b8:81:b1:
f5:72:48:7b:f5:57:68:52:34:54:55:5d:08:b9:02:f3:71:9d:
82:16:1e:24:90:3e:dc:da:60:72:73:11:1f:31:80:93:6e:c3:
c0:a6:a7:dd:64:a7:e0:ad:76:f3:38:53:a4:a3:be:2e:01:59:
fe:e9:1a:8e:f5:29:06:4a:3b:b1:eb:c7:1e:7f:26:5c:87:5b:
86:10:b9:28:f2:fc:e0:12:37:a2:60:74:a1:37:5b:ad:38:fd:
dc:4e:8d:85:be:63:54:69:b8:e0:bc:2d:f0:83:98:d5:1d:d3:
70:14:0c:56:f5:81:a8:89:a2:a8:37:bd:6c:5c:11:58:d8:60:
b1:f3:fe:08:68:cb:82:9a:12:df:fc:04:a2:d3:51:33:95:cd:
4d:71:79:eb:50:a8:c3:96:34:f9:ce:5c:92:77:b6:68:ff:52:
04:ba:54:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 00:57:01 2025 by rpki-client