Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/9t6uL1DSg7svkp-XH4FVpjFMlAw.roa
File: 9t6uL1DSg7svkp-XH4FVpjFMlAw.roa (raw, json)
Hash identifier: S2FkcKC5VMbfhYO+fPOrvuv+AyW2r1UzIhNoMapMlGQ=
Subject key identifier: F6:DE:AE:2F:50:D2:83:BB:2F:92:9F:97:1F:81:55:A6:31:4C:94:0C
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 1516
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/9t6uL1DSg7svkp-XH4FVpjFMlAw.roa
Signing time: Wed 11 Sep 2024 02:30:07 +0000
ROA not before: Wed 11 Sep 2024 02:30:07 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 13444
IP address blocks: 103.6.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5398 (0x1516)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Sep 11 02:30:07 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F6DEAE2F50D283BB2F929F971F8155A6314C940C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:43:b1:52:94:fa:4a:3f:ba:a1:85:ee:b7:7c:
63:ec:0c:2f:67:fb:38:48:72:97:ce:33:69:1f:3a:
d5:55:92:66:2f:12:62:62:76:54:00:f5:f9:08:13:
7e:d4:3a:62:cf:6c:2e:d8:9a:f1:07:b4:79:e3:6b:
c1:90:1c:2c:f0:0b:e9:69:d6:69:5a:34:da:3a:c9:
74:1f:00:2e:d9:35:52:ee:ae:24:1f:0f:4b:2e:34:
92:af:50:b3:2d:48:40:15:76:61:d1:d7:59:20:0e:
3a:46:35:23:68:63:7c:84:ca:a7:3f:02:72:85:56:
35:e9:ec:35:47:ab:6a:e4:82:2f:97:a6:18:b2:b5:
96:5c:34:1d:01:88:b9:de:91:1a:83:9d:e5:df:60:
67:4a:68:df:ec:c2:71:5f:b1:b1:b1:ff:10:ae:82:
52:b9:f5:6a:89:c3:ac:3f:c4:2f:24:7f:63:04:06:
0f:b4:71:59:db:a7:bd:26:d5:50:bf:bd:e8:18:67:
66:88:f0:b5:e3:94:f7:fd:32:a5:69:4e:ae:8e:5f:
86:33:24:7c:24:d4:dc:b0:ce:f2:94:3b:a0:d5:f2:
f9:52:d2:e9:94:c3:bf:cc:22:e3:f8:f6:84:6f:df:
78:f3:ef:f2:91:17:cf:ce:73:2d:96:5b:d5:09:9e:
84:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:DE:AE:2F:50:D2:83:BB:2F:92:9F:97:1F:81:55:A6:31:4C:94:0C
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/9t6uL1DSg7svkp-XH4FVpjFMlAw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.6.111.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:1f:3b:f7:01:3b:d6:0f:74:d7:f8:a0:f4:f0:76:b9:84:a1:
18:a6:30:33:a9:61:4a:04:ec:a7:af:9a:0c:6e:74:68:d0:0c:
2f:69:ed:8c:c7:93:d0:86:d8:9a:e9:1a:96:28:7e:af:09:8b:
65:40:dc:a7:40:15:1b:88:1b:17:8b:84:5a:40:f2:73:65:76:
f7:0d:c8:97:b6:e0:a7:66:5d:fa:a6:62:14:3b:6e:a7:7b:5b:
d4:1b:08:3d:46:de:eb:64:68:61:e9:34:f9:1b:d2:88:ec:6a:
9b:97:9b:4c:10:44:29:7c:c9:f1:f6:30:70:cc:e0:2f:74:7f:
33:02:79:80:cf:38:5a:e0:2c:28:79:de:8f:ff:09:64:93:af:
42:ae:ea:f0:97:4f:41:35:e3:6f:80:35:d6:27:46:9a:e0:6f:
04:b6:14:89:a5:d2:1b:ff:22:c7:22:31:91:13:12:0f:93:13:
3d:c4:bc:f7:8e:80:11:18:7e:36:f0:35:43:59:c3:b0:4f:44:
63:59:ff:0e:7b:97:d4:b5:ce:ab:45:19:53:1a:99:e5:9b:2e:
4e:7c:27:53:50:b4:c9:b3:3c:c3:8c:d4:46:55:51:4d:89:63:
c7:ba:a0:99:6e:ae:8f:28:02:d4:be:4d:d1:fb:77:fd:bf:57:
08:40:3b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:47:53 2025 by rpki-client