Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/UBI3193ZFe8HGZb4h1YM1JydMiQ.roa
File: UBI3193ZFe8HGZb4h1YM1JydMiQ.roa (raw, json)
Hash identifier: S31pvLaULIElcyP7WWPy/CTTqaT9IK/gpsPTkPI/y0Y=
Subject key identifier: 50:12:37:D7:DD:D9:15:EF:07:19:96:F8:87:56:0C:D4:9C:9D:32:24
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 0CDC
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/UBI3193ZFe8HGZb4h1YM1JydMiQ.roa
Signing time: Wed 13 Mar 2024 01:21:58 +0000
ROA not before: Wed 13 Mar 2024 01:21:58 +0000
ROA not after: Fri 07 Jun 2024 02:16:11 +0000
asID: 59803
IP address blocks: 2403:1b80::/32 maxlen: 64
2403:1b80::/48 maxlen: 64
2406:1e80::/32 maxlen: 64
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3292 (0xcdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Mar 13 01:21:58 2024 GMT
Not After : Jun 7 02:16:11 2024 GMT
Subject: CN=501237D7DDD915EF071996F887560CD49C9D3224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:67:d1:8b:ac:63:42:14:c6:6e:7b:ec:6e:cf:
56:34:58:c2:a8:19:af:e7:55:81:b3:10:83:1b:58:
9f:a0:d7:e1:20:5f:61:08:1b:03:6c:7d:72:e7:f1:
a9:2a:db:e1:c2:e6:d5:ed:7e:b5:17:54:67:39:41:
94:04:5d:45:20:d2:da:4c:4a:7d:5e:e2:83:4f:da:
cc:d0:6b:d9:f6:1c:41:8a:f3:e9:ed:2d:d8:11:7b:
d3:da:d5:b8:6b:10:34:99:f8:34:27:70:cd:ab:67:
2e:77:70:3e:10:85:02:75:d0:f1:a4:33:48:81:45:
fe:8c:60:59:6d:49:9d:c6:c4:ad:df:af:31:d7:2b:
2b:02:6a:63:b8:d1:9e:c2:eb:74:36:08:f0:c9:36:
a8:57:4d:e8:73:b5:e4:2f:4b:43:03:b6:ee:37:ba:
66:fb:a5:fb:87:8a:61:42:97:b8:9b:b2:06:3f:19:
39:c7:93:89:3e:04:54:0a:0c:37:f7:92:53:fb:ae:
c1:4a:39:79:97:4f:bc:64:9c:0d:b4:31:8f:a2:d5:
c4:6c:e1:13:c9:0b:47:b2:18:f4:2a:24:32:ce:a2:
8c:56:10:79:69:3e:14:51:90:80:ca:22:ba:88:4e:
e0:7a:7c:44:72:d1:f0:c1:69:24:8b:00:65:51:a0:
87:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:12:37:D7:DD:D9:15:EF:07:19:96:F8:87:56:0C:D4:9C:9D:32:24
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/UBI3193ZFe8HGZb4h1YM1JydMiQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:1b80::/32
2406:1e80::/32
Signature Algorithm: sha256WithRSAEncryption
24:ea:8f:23:49:02:6c:c5:1d:ea:4d:81:12:6e:25:b4:e9:83:
73:28:4c:21:f6:b4:b4:24:1c:51:eb:13:1e:76:f9:d0:08:47:
a0:1f:6e:a8:86:e2:5b:45:82:c2:a3:af:ca:06:8f:ba:7c:f6:
a5:80:0f:d8:9b:93:0a:0a:e4:cd:bd:d3:c0:6d:a2:33:e5:a4:
db:c1:0c:7c:57:58:96:2e:38:68:b3:57:19:56:88:0f:58:78:
40:ec:dc:df:d9:31:bc:ce:2f:05:a4:a1:20:15:8c:ce:e4:00:
b2:18:28:6a:b3:17:82:ad:01:6a:39:9b:80:fd:e9:85:ed:2a:
84:44:5b:11:b5:12:94:bb:aa:8a:de:2d:7c:c4:35:8f:c0:b4:
da:ab:6c:ac:90:fa:4b:6f:ff:32:6e:0f:4f:ea:03:c4:61:a6:
9c:99:b6:a7:f4:b5:a5:bf:d3:32:a3:21:cf:b9:30:98:10:d9:
8f:5c:ed:e0:28:9b:f7:ac:3d:63:80:57:98:25:d5:70:af:7d:
77:80:dc:4e:5d:45:7c:50:f7:66:9f:81:ae:f8:c7:82:7d:b1:
53:41:81:50:96:3a:5e:84:d9:92:4c:c4:25:c9:88:5d:eb:6d:
81:3b:91:d4:f2:54:41:6d:24:40:31:40:0d:a8:b1:7a:9f:f0:
c3:f7:d0:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 04:05:12 2024 by rpki-client on console-ams.rpki-client.org