Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/JAAM_qTg819VfXqE36iP42yom7o.roa
File: JAAM_qTg819VfXqE36iP42yom7o.roa (raw, json)
Hash identifier: bAhB+1R880xqf+LmFXfentvaXK9HuETKnawHKULvEqg=
Subject key identifier: 24:00:0C:FE:A4:E0:F3:5F:55:7D:7A:84:DF:A8:8F:E3:6C:A8:9B:BA
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 1498
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/JAAM_qTg819VfXqE36iP42yom7o.roa
Signing time: Wed 11 Sep 2024 02:23:32 +0000
ROA not before: Wed 11 Sep 2024 02:23:32 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 17621
IP address blocks: 103.24.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5272 (0x1498)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Sep 11 02:23:32 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=24000CFEA4E0F35F557D7A84DFA88FE36CA89BBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:45:c4:73:24:9e:f4:7f:ff:1b:c6:52:3b:35:
ff:06:18:92:2e:eb:6f:a2:dd:48:2d:84:b0:2b:0c:
48:88:db:2d:57:25:65:aa:eb:14:a1:d7:4e:13:3c:
00:06:6d:db:89:e4:f8:18:57:a4:8c:54:76:a5:ac:
af:57:a8:84:93:95:71:03:ad:99:7f:d3:96:3b:2a:
0c:2e:58:1d:d7:4c:6f:ce:93:2c:24:32:b8:8d:de:
ae:c8:64:fa:b9:7d:5b:f2:3a:2a:05:ca:bd:72:00:
56:2e:02:98:47:5c:7d:ea:ff:81:57:e0:3f:50:f3:
cc:75:af:a4:e7:b3:e6:af:14:03:ca:3b:d1:8f:78:
8e:24:6f:ce:ed:29:56:59:09:0e:7c:a5:85:3a:de:
f4:79:67:00:31:88:45:41:41:b2:bd:26:12:9b:db:
d1:92:18:ab:a0:75:2e:93:2b:fb:d6:1f:10:49:1a:
34:43:5e:bd:67:80:65:53:fd:67:f6:a0:6f:44:b7:
80:34:18:cd:58:07:fa:85:98:d3:16:78:79:06:dd:
76:40:5f:34:8e:3a:53:f6:51:9c:2e:6a:e0:8e:77:
40:2d:55:49:1b:86:a6:2f:6d:0f:38:21:68:ac:22:
ed:0a:c3:08:e5:3a:1c:98:61:d8:33:ce:f8:d3:78:
ee:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:00:0C:FE:A4:E0:F3:5F:55:7D:7A:84:DF:A8:8F:E3:6C:A8:9B:BA
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/JAAM_qTg819VfXqE36iP42yom7o.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.24.116.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:c2:57:ac:78:de:18:3c:b9:a8:73:ff:42:8c:2a:a9:da:eb:
59:91:9e:7a:10:3e:37:3b:74:fa:73:c1:20:e4:1a:ed:b3:a0:
eb:4c:e0:85:c0:68:d1:23:41:8e:cb:6d:4f:ee:07:0a:90:4a:
b7:43:6e:c4:83:a2:18:e6:d2:51:64:27:39:9a:4c:35:f6:07:
9f:0f:79:09:d9:81:06:f5:43:0d:f5:9d:ea:07:d7:46:b1:14:
8d:0a:34:8e:e4:35:3f:66:65:87:d1:84:e1:b8:52:2e:b3:db:
4b:d0:1f:ae:22:02:c7:4e:1b:3b:e3:f2:1d:1a:51:cd:5f:dc:
54:a4:29:35:96:a7:fc:d0:09:f3:e9:1f:86:bb:73:05:12:63:
13:dc:d4:2a:82:e4:d0:17:2a:69:83:f8:35:6e:9a:ae:dd:3d:
46:e5:66:9b:65:d5:bb:7d:99:5f:18:fe:48:a3:c1:ea:0c:fd:
88:19:2b:58:7f:89:7f:64:77:93:76:c2:aa:d0:e5:3e:e7:6b:
c5:c9:9e:05:32:91:7a:57:fe:85:0f:4e:50:f2:2b:fc:2d:46:
a7:47:ac:5e:a8:3b:cf:34:b0:69:d7:7c:3f:59:b4:86:d4:c5:
0c:10:c5:58:e1:2c:e8:36:64:19:cb:6e:23:54:f8:c3:c4:4e:
f7:c4:67:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:44:53 2025 by rpki-client