Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/nWxT4RYlEY5Aret9o0t0WZLlzV0.roa
File: nWxT4RYlEY5Aret9o0t0WZLlzV0.roa (raw, json)
Hash identifier: iOXZTU/yrX1KRmPP2U0zN+Z9WjuSxTrE9F05Jz7zG64=
Subject key identifier: 9D:6C:53:E1:16:25:11:8E:40:AD:EB:7D:A3:4B:74:59:92:E5:CD:5D
Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA
Certificate serial: 06
Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/nWxT4RYlEY5Aret9o0t0WZLlzV0.roa
Signing time: Mon 15 Apr 2024 08:45:59 +0000
ROA not before: Mon 15 Apr 2024 08:45:59 +0000
ROA not after: Tue 15 Apr 2025 07:02:50 +0000
asID: 146788
IP address blocks: 117.124.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA
Validity
Not Before: Apr 15 08:45:59 2024 GMT
Not After : Apr 15 07:02:50 2025 GMT
Subject: CN=9D6C53E11625118E40ADEB7DA34B745992E5CD5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:82:79:9a:ec:dc:b1:5a:fc:14:2a:d4:2f:b5:
03:58:a4:65:f4:0d:08:93:d0:ba:83:73:f1:0d:80:
51:f1:0d:c5:25:87:73:c8:e9:08:10:f6:39:b7:c4:
94:be:af:71:7a:4b:23:c6:01:77:88:7a:10:dc:4e:
b6:3e:d9:ff:11:40:ca:97:4e:d9:61:ac:1b:f3:a9:
a6:35:ec:a5:01:6c:aa:40:06:83:af:39:97:be:95:
2f:73:1e:e0:30:b0:3a:7b:4f:6c:4b:16:a8:27:95:
0e:79:94:5f:25:0d:be:62:ef:53:42:2b:9e:ce:f5:
f2:cc:97:d9:f2:df:44:ca:d2:7e:9a:92:09:af:4c:
25:92:e2:d4:96:1c:3f:11:a5:6a:4b:01:5d:24:32:
f6:48:aa:ea:3e:f8:6f:de:e0:08:45:ed:f0:78:ad:
10:8c:6c:22:2b:38:e4:62:94:05:3e:73:24:65:ca:
52:45:c7:b5:ad:fe:d5:90:91:2d:e3:5a:ea:1b:87:
0c:a6:10:8e:61:f5:d3:92:d0:69:e1:c1:fd:ce:a9:
62:4c:35:93:02:d1:48:46:28:03:99:cc:95:8c:29:
7c:53:36:75:ab:8a:40:3c:08:36:ba:3f:b9:95:b6:
12:4f:59:07:dd:bb:be:d5:1e:d3:38:7d:db:a2:9c:
46:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6C:53:E1:16:25:11:8E:40:AD:EB:7D:A3:4B:74:59:92:E5:CD:5D
X509v3 Authority Key Identifier:
keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/nWxT4RYlEY5Aret9o0t0WZLlzV0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
117.124.0.0/16
Signature Algorithm: sha256WithRSAEncryption
43:14:b0:cf:4b:01:7b:9e:6b:be:15:b8:23:5d:38:fe:ba:3a:
8e:36:36:69:e4:49:f4:a0:06:d7:63:3d:92:e0:6d:d5:af:41:
55:d2:fd:38:27:d9:70:51:a1:70:89:99:13:c8:22:96:7f:0f:
e7:df:be:17:e4:4e:18:78:0c:fd:fc:66:32:84:92:71:f1:bb:
fe:0e:33:01:9a:14:62:3f:a1:e0:94:30:de:16:9a:76:fd:55:
1c:a1:fd:e7:58:83:f7:78:a2:fa:80:49:1d:7a:7c:a9:31:15:
f3:91:18:e5:9b:8f:0e:20:4e:4e:08:f4:e6:7b:7c:5a:9a:2a:
29:65:6d:d2:ac:a0:17:19:df:12:ea:b6:ab:dd:ae:96:28:f9:
ac:b8:81:14:8c:4e:99:f5:00:2c:27:23:d6:6a:4c:cb:bb:e8:
98:76:c9:0c:e7:46:c1:a7:6e:92:c7:e6:ee:76:cd:d3:89:ff:
ae:dd:4d:41:64:0b:11:50:5c:83:cd:84:bb:01:cd:c6:fb:c7:
9b:a1:3a:54:5f:63:47:7f:8c:e7:bd:53:d2:80:6b:e7:c7:9d:
40:de:66:49:81:75:a5:a9:a4:5f:7b:69:6b:3c:06:c5:a0:00:
e1:e8:fb:2a:e9:f9:d3:49:15:90:63:c3:00:08:76:37:84:ed:
c9:2c:32:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:29:39 2025 by rpki-client