Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/3EYvU4qEu6rlUm-yKIVI762pTLc.roa
File: 3EYvU4qEu6rlUm-yKIVI762pTLc.roa (raw, json)
Hash identifier: qIqao28T1FykpW3sdKjq0hofaaeJktPW5QGGqWYs+g8=
Subject key identifier: DC:46:2F:53:8A:84:BB:AA:E5:52:6F:B2:28:85:48:EF:AD:A9:4C:B7
Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054
Certificate serial: 1732
Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/3EYvU4qEu6rlUm-yKIVI762pTLc.roa
Signing time: Fri 24 May 2024 02:26:44 +0000
ROA not before: Fri 24 May 2024 02:26:44 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 56282
IP address blocks: 211.155.92.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5938 (0x1732)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054
Validity
Not Before: May 24 02:26:44 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=DC462F538A84BBAAE5526FB2288548EFADA94CB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:34:a0:64:9c:ca:bc:63:32:a6:08:40:b1:bf:
b7:dc:6a:7a:45:9e:a9:63:52:ff:31:d5:92:bd:08:
bc:6e:5f:d9:13:f4:99:cb:93:d6:55:4b:7b:6b:eb:
cf:7b:a1:c3:af:ac:15:aa:29:26:07:79:d3:f7:e8:
21:0e:74:bb:19:ce:a7:72:bc:35:83:81:74:ab:cc:
71:f5:5e:ca:0c:7a:89:6b:bc:93:f3:8a:04:73:1d:
e7:75:b8:d0:63:88:5d:98:32:96:00:c8:02:ca:2c:
f2:29:c9:f8:93:7b:e1:d3:b3:0f:54:83:5d:99:2b:
1f:0d:0f:00:59:6b:dc:f8:d8:51:38:a2:55:a9:b7:
f1:5b:2d:b8:f4:1f:f7:c2:0e:95:a5:99:64:0f:e2:
a9:a7:52:ea:49:4f:f6:76:1a:a9:b0:3a:28:2d:83:
53:b8:06:87:37:e5:b6:ac:0c:6c:62:0e:5c:86:96:
43:40:eb:39:33:0f:75:e4:11:ea:03:eb:3e:ba:08:
c0:ab:59:24:1c:3c:5c:81:2e:ae:d1:c0:d5:ed:a2:
16:1a:cb:8b:ce:9b:8a:8d:7c:86:d6:6a:c8:76:28:
e4:89:fd:80:f0:cc:f1:dc:9a:5f:d4:e4:18:85:fa:
67:48:1b:be:32:e7:35:8d:54:ef:b3:e6:d2:a0:fa:
98:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:46:2F:53:8A:84:BB:AA:E5:52:6F:B2:28:85:48:EF:AD:A9:4C:B7
X509v3 Authority Key Identifier:
keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/3EYvU4qEu6rlUm-yKIVI762pTLc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.155.92.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:5d:3a:14:65:74:b8:9a:32:05:d0:85:88:50:1f:24:06:6f:
49:01:81:21:da:0a:e4:19:47:6d:79:58:78:4f:1e:65:dc:30:
46:9b:40:34:8b:33:6d:2b:ae:51:5e:d8:70:09:a1:62:7c:f5:
83:88:fd:60:b0:fb:2f:a9:97:00:d7:91:e5:08:5e:c8:8b:5b:
a1:44:68:d8:f2:0a:ff:f3:3c:a5:fb:00:ac:1f:7e:a5:99:01:
2a:64:66:75:f2:87:db:a3:cb:01:08:67:88:d4:19:a5:6a:0c:
61:1c:43:5d:62:8d:10:55:55:e6:30:a9:6b:8a:e5:a5:dc:4b:
3b:98:a3:b8:6c:82:2d:1d:bd:43:30:e9:44:34:7c:93:12:78:
ed:a3:1e:99:10:ef:ae:c3:94:e5:58:ff:03:70:c1:06:16:16:
e8:d5:5a:c9:b6:a3:a0:f6:c5:56:0e:95:09:b9:69:fb:02:88:
72:be:d5:eb:b5:41:7a:db:c1:f4:e0:90:88:58:89:0b:6e:6c:
0a:b5:ab:04:ed:f4:41:0f:77:a2:62:de:c6:f1:74:b2:76:a5:
b6:8a:cf:f3:6c:95:64:d8:b5:5c:fd:60:ac:07:6f:a1:24:9a:
7d:6e:e7:ca:3a:01:65:b7:bb:f4:a9:ad:41:ac:7f:0c:e5:c8:
ea:e0:ad:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:39:37 2025 by rpki-client