Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/479/l-TaHzKFZnkvNxujpwF30Uz4zsg.roa
File: l-TaHzKFZnkvNxujpwF30Uz4zsg.roa (raw, json)
Hash identifier: siwGTEkCLfb8EFI0xBVYaGV1nissS2du22PG+F8DkU0=
Subject key identifier: 97:E4:DA:1F:32:85:66:79:2F:37:1B:A3:A7:01:77:D1:4C:F8:CE:C8
Certificate issuer: /CN=4C4C576BB50C6D4D394B27DFCF0B53544D0F567C
Certificate serial: 1894
Authority key identifier: 4C:4C:57:6B:B5:0C:6D:4D:39:4B:27:DF:CF:0B:53:54:4D:0F:56:7C
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TExXa7UMbU05SyffzwtTVE0PVnw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/l-TaHzKFZnkvNxujpwF30Uz4zsg.roa
Signing time: Wed 09 Jun 2021 20:30:12 +0000
ROA not before: Wed 09 Jun 2021 20:30:12 +0000
ROA not after: Fri 27 May 2022 04:59:52 +0000
asID: 38283
IP address blocks: 60.247.128.0/17 maxlen: 24
211.149.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6292 (0x1894)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4C4C576BB50C6D4D394B27DFCF0B53544D0F567C
Validity
Not Before: Jun 9 20:30:12 2021 GMT
Not After : May 27 04:59:52 2022 GMT
Subject: CN=97E4DA1F328566792F371BA3A70177D14CF8CEC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a4:3a:3b:bd:b8:09:e3:16:c5:a4:91:c7:0d:
ea:34:7f:79:38:03:ed:9d:ec:26:1a:fd:a2:b9:07:
5c:65:9b:97:8a:2d:80:94:91:ac:a1:4b:42:4f:4d:
b4:2c:88:88:3b:dd:c1:9a:ef:b6:be:e2:58:95:55:
8e:dc:d7:e3:ed:1f:4a:67:5b:e7:ae:96:ea:35:d0:
e1:71:64:c0:b3:d8:10:ed:b4:4f:af:d7:3e:2d:be:
70:84:0f:f8:e5:74:58:b7:ce:51:79:e8:8a:c5:29:
ec:78:71:dd:88:49:46:d4:71:a0:c8:06:0a:6e:56:
6e:cf:98:09:3f:e4:40:84:b7:de:c7:83:4f:c6:6c:
2f:5d:5e:c3:b8:25:4d:02:32:e9:1c:61:9f:34:b4:
db:3f:fd:9c:db:c0:c3:8d:2b:f5:60:b0:8c:09:07:
18:2a:82:f2:47:cb:07:fd:24:fa:1c:48:60:fb:05:
ef:90:30:d2:80:28:df:07:18:9d:01:b7:21:7f:f7:
db:48:81:ed:37:e2:cd:cc:a5:4d:80:73:86:2e:5c:
54:b9:06:6f:97:7e:46:d1:1b:bc:02:3e:a3:9a:01:
e1:b7:6a:bb:f6:d1:e7:75:e8:48:3e:b5:8d:a2:01:
bd:48:ac:ea:8f:7b:81:68:56:88:d8:07:58:9b:1b:
87:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E4:DA:1F:32:85:66:79:2F:37:1B:A3:A7:01:77:D1:4C:F8:CE:C8
X509v3 Authority Key Identifier:
keyid:4C:4C:57:6B:B5:0C:6D:4D:39:4B:27:DF:CF:0B:53:54:4D:0F:56:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/TExXa7UMbU05SyffzwtTVE0PVnw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TExXa7UMbU05SyffzwtTVE0PVnw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/l-TaHzKFZnkvNxujpwF30Uz4zsg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.247.128.0/17
211.149.128.0/17
Signature Algorithm: sha256WithRSAEncryption
78:6a:aa:2b:50:76:77:ae:8a:fe:3d:4e:fe:3b:91:06:b8:15:
cd:4c:b4:9f:b1:13:14:36:1d:a1:39:e0:64:a1:a9:bd:da:5f:
b5:56:51:cd:40:e7:f3:01:fb:a7:db:0a:e5:be:b0:86:eb:29:
3f:48:a9:9e:11:52:6a:7e:e6:76:31:af:ec:d9:b5:1b:d6:19:
15:f8:81:e4:b4:ec:c2:9a:35:06:b1:0a:73:b1:e8:d8:e0:7d:
be:42:b1:d7:d6:88:b7:0f:12:32:9e:14:86:72:a4:15:d7:81:
36:a0:c1:6b:bd:ec:d7:c0:f8:56:1d:35:86:f1:c6:0d:f3:d0:
4a:1a:8f:24:6d:98:f4:27:8b:4e:fe:0c:75:bb:b3:eb:f0:45:
63:08:2d:11:f2:88:66:11:e5:81:a8:a3:5f:7f:b1:7e:da:2f:
52:aa:a8:bf:d9:94:21:a7:49:09:4b:e8:4b:25:2e:f5:8d:26:
63:0d:3d:fb:6d:12:5e:01:63:3c:ef:b5:8b:5f:3c:bf:a7:f0:
23:7f:86:66:7a:d6:42:13:6a:cd:ea:e0:39:35:27:5b:13:42:
ce:a1:b3:b4:17:dd:1a:c3:80:e6:b7:02:cc:db:22:34:d0:4c:
9a:02:c4:ab:4c:9c:52:95:44:74:af:18:58:b6:24:b8:ca:a1:
73:8f:bf:3e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:22 2023 by rpki-client on console-fra.rpki-client.org