Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/9jKzGzP-JI-87t7rdA3yjxyes6U.roa
File: 9jKzGzP-JI-87t7rdA3yjxyes6U.roa (raw, json)
Hash identifier: t57qnTR7mYZEgBMrkgIsZb42jPSIMcpKiCL+AbnXphs=
Subject key identifier: F6:32:B3:1B:33:FE:24:8F:BC:EE:DE:EB:74:0D:F2:8F:1C:9E:B3:A5
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 1462
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/9jKzGzP-JI-87t7rdA3yjxyes6U.roa
Signing time: Wed 11 Sep 2024 02:23:14 +0000
ROA not before: Wed 11 Sep 2024 02:23:14 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24373
IP address blocks: 103.221.36.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5218 (0x1462)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Sep 11 02:23:14 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F632B31B33FE248FBCEEDEEB740DF28F1C9EB3A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:84:66:d9:de:9d:34:3d:a1:78:f1:f6:d6:5f:
26:2b:e4:bc:4c:6d:34:8c:70:26:84:d0:22:63:7c:
c7:16:34:dc:84:3f:35:1d:6b:3b:cd:b1:13:6e:9d:
c4:8b:d5:5f:5a:21:32:83:96:b0:1d:39:f9:ce:08:
02:9b:37:d5:ba:cd:5c:86:4e:da:e8:02:0d:11:c1:
f0:f2:84:ee:62:ea:73:c7:88:24:1f:1a:e9:40:91:
3e:ec:13:2c:7a:7a:c8:7a:98:21:12:43:49:e8:95:
bf:5a:fa:2a:bc:f6:1f:09:9f:41:b9:8d:a2:22:e8:
7d:8e:a1:67:9e:ff:9e:f5:d6:80:ec:4a:ec:24:a7:
6f:b6:d0:93:35:e5:7f:0c:39:62:f3:00:6b:5c:71:
ba:5f:8e:54:81:51:4a:91:c4:33:30:39:68:7c:eb:
09:b8:a8:96:18:cd:ec:8d:ef:07:ee:3e:0a:5f:34:
5b:ea:05:e9:f1:1f:b9:01:ca:6a:3e:48:44:c1:4a:
fe:ec:7d:a2:6f:a2:f4:81:55:04:22:32:66:17:e4:
ea:9a:2f:8f:b7:da:61:b5:0e:11:f7:c8:50:f3:81:
3e:2c:de:bf:a0:be:3a:ba:ae:39:cd:3d:3c:d1:bf:
78:e6:5c:ee:0d:7b:bd:2b:0b:68:d7:cd:6d:8f:0f:
fb:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:32:B3:1B:33:FE:24:8F:BC:EE:DE:EB:74:0D:F2:8F:1C:9E:B3:A5
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/9jKzGzP-JI-87t7rdA3yjxyes6U.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.221.36.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:42:b1:32:52:49:bd:dc:6c:03:7e:77:e2:6f:53:fd:c4:4c:
c5:67:15:02:3a:60:db:ff:22:67:0e:26:ee:96:14:5d:4e:b3:
05:5d:af:04:93:35:08:9c:38:c6:46:6b:0a:58:7c:a1:66:e1:
d0:9b:8c:62:1d:61:5e:33:c0:4d:41:bb:80:23:3a:9b:bb:8a:
79:8b:8b:5c:a1:ec:20:d5:02:7d:12:7a:2e:30:8b:e5:83:4e:
ad:8b:2c:2f:1f:ce:85:ed:3c:1b:16:48:69:a7:66:4d:01:1a:
56:e6:80:85:b5:bc:66:98:0b:e4:dd:77:68:00:cc:a5:56:ca:
27:46:f3:f6:0a:47:c4:21:f9:ce:17:9e:59:a2:cf:fc:3a:b5:
ed:ab:f4:b9:0d:b9:73:37:da:a5:97:f1:51:c5:85:c4:63:9e:
a4:6c:56:b3:34:9b:6d:27:62:c0:9f:6b:25:b8:7a:02:1b:34:
8d:de:63:1a:49:37:83:63:4e:b5:01:b9:68:9f:5f:8a:71:2a:
07:ad:a5:fb:52:1b:19:98:1f:8c:8a:31:47:b4:82:cf:cf:58:
52:56:6f:64:76:5d:e2:a4:f1:e9:ab:eb:61:05:4e:0c:87:60:
a4:42:95:37:f9:9b:49:f1:57:1a:ea:f6:52:b8:75:53:39:1b:
31:94:b2:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:47:36 2025 by rpki-client