Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/1EN9NcKBLRA7869ojTRikV6rinY.roa
File: 1EN9NcKBLRA7869ojTRikV6rinY.roa (raw, json)
Hash identifier: 8mwCYve14C7io75CRjXOGB+oEVdUShBkhQpB0o8X5Fg=
Subject key identifier: D4:43:7D:35:C2:81:2D:10:3B:F3:AF:68:8D:34:62:91:5E:AB:8A:76
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 1CA7
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/1EN9NcKBLRA7869ojTRikV6rinY.roa
Signing time: Thu 17 Jul 2025 03:51:34 +0000
ROA not before: Thu 17 Jul 2025 03:51:34 +0000
ROA not after: Fri 03 Apr 2026 08:00:09 +0000
asID: 25734
IP address blocks: 103.221.8.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7335 (0x1ca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Jul 17 03:51:34 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=D4437D35C2812D103BF3AF688D3462915EAB8A76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:74:3a:d9:1c:51:e4:fa:8a:de:9e:0e:4e:6f:
e7:a5:82:11:69:28:cb:45:69:7a:03:fa:fc:52:53:
7d:af:9d:f4:85:6f:78:97:01:b2:b8:07:11:4c:01:
2f:8b:d4:c5:00:7d:9e:a5:c5:a5:1b:6e:d1:d2:3b:
43:09:ae:2f:07:79:c2:1d:9d:0c:b4:75:d8:2a:20:
9d:6e:9c:d7:0e:4e:78:3a:1f:85:3d:14:6f:d7:3f:
c6:45:f1:a2:11:18:66:66:97:91:bc:e7:22:c2:8e:
db:68:02:23:58:8b:75:98:a9:d5:aa:18:30:67:64:
7c:3b:1a:d4:8b:80:72:0e:aa:1a:33:de:5a:ad:c5:
6c:50:0c:6a:92:ce:f2:1a:6e:8a:2e:25:54:57:a6:
73:09:fe:2b:49:21:0d:06:a0:55:79:05:82:62:65:
1c:31:5c:63:0b:c2:b5:df:07:61:63:af:b3:b9:2b:
37:be:79:d5:e3:fe:29:de:9b:f8:a4:d6:b2:d3:e8:
c9:fe:fb:65:32:63:87:89:a4:a2:7e:1b:ab:07:2d:
58:e1:99:97:e4:13:2b:aa:cd:3c:48:1c:e7:07:06:
95:a1:88:62:a4:bc:79:b7:8c:9f:d0:96:36:e5:1f:
67:12:83:06:54:db:7c:b6:b9:23:2e:cf:49:2a:57:
b2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:43:7D:35:C2:81:2D:10:3B:F3:AF:68:8D:34:62:91:5E:AB:8A:76
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/1EN9NcKBLRA7869ojTRikV6rinY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.221.8.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:61:c5:37:0c:cc:98:23:63:d6:0c:24:92:ca:fa:27:d4:14:
d4:3a:f4:d3:d0:bd:db:63:9b:80:55:af:9e:e3:d2:49:20:17:
9e:b9:0e:ea:5d:d9:b0:3a:12:7c:60:8a:ce:93:d7:26:c4:d0:
f2:ca:fc:28:78:f1:73:63:65:db:01:4c:69:f6:c7:28:aa:78:
6b:fd:21:1a:eb:87:79:81:94:9e:9c:b1:0e:b6:8d:d9:61:a8:
d2:f1:41:0f:f0:4f:cb:f9:ef:b4:f8:e2:3b:b8:13:09:33:42:
be:41:28:d7:7f:f3:2e:ab:0f:2a:fa:16:dc:25:0b:8d:4a:b0:
ce:17:6f:1a:14:59:b4:0c:98:c3:6c:f1:12:23:58:c5:56:96:
eb:0d:dc:57:c0:f9:c2:42:58:96:65:d9:ee:c8:2a:91:c5:8a:
65:b9:b8:55:66:ae:5b:38:4b:71:01:7e:b5:ed:d3:63:d8:7a:
5f:1a:60:93:1c:dd:48:5a:52:74:f9:d8:3f:96:d4:73:09:cd:
24:51:70:3c:63:7a:9a:7a:f1:a7:4f:7f:28:eb:88:ae:30:45:
7f:e5:e4:87:f1:1a:13:bc:63:cb:6e:61:8d:8b:31:d7:3d:d2:
38:37:1b:d0:7a:df:3f:43:66:ab:53:3c:67:2c:ba:3e:5a:eb:
17:c7:5f:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 13:48:33 2025 by rpki-client