Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/UvdC_wYgAscSPTNUHGZ1440tNzY.roa
File: UvdC_wYgAscSPTNUHGZ1440tNzY.roa (raw, json)
Hash identifier: OhYrwKYA7RZsdYUnjPPa2YIi4bVxDxs5poxJiqdvosk=
Subject key identifier: 52:F7:42:FF:06:20:02:C7:12:3D:33:54:1C:66:75:E3:8D:2D:37:36
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 181C
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/UvdC_wYgAscSPTNUHGZ1440tNzY.roa
Signing time: Fri 17 Jan 2025 01:24:36 +0000
ROA not before: Fri 17 Jan 2025 01:24:36 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 17621
IP address blocks: 202.89.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6172 (0x181c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Jan 17 01:24:36 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=52F742FF062002C7123D33541C6675E38D2D3736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:59:3f:f5:16:67:cd:24:eb:e1:2b:01:ba:1b:
cc:d4:ee:2c:d2:5f:7d:a6:06:31:3d:61:42:47:5d:
8e:e6:69:65:a1:06:c3:8b:0f:21:22:af:d4:e0:33:
36:10:a5:c9:ce:ee:cd:95:ed:be:b0:3c:be:b1:0b:
7f:d0:5c:0d:ed:aa:5f:66:b1:01:f0:81:a8:5d:74:
e5:af:11:89:d6:24:e4:a4:12:3b:41:36:c4:41:f8:
96:0b:c0:7d:8d:b0:96:aa:0b:a2:ac:b2:a7:88:08:
9f:73:db:cb:cb:f6:7f:c0:13:71:eb:51:b2:a6:8f:
66:16:21:71:18:c7:e0:61:fb:da:97:72:1a:41:0c:
35:13:8c:d2:9b:34:1f:90:39:99:c6:b3:96:1a:89:
26:48:3c:b2:a9:d6:9f:59:43:15:ac:9f:cc:f2:42:
13:13:03:28:c6:08:89:9a:14:fc:2f:13:07:ae:0a:
90:cb:d3:67:dc:67:2f:21:f7:c3:a8:93:7e:b2:b4:
b3:44:08:9f:92:d7:bb:c2:eb:82:0d:d4:36:0f:c6:
b4:15:a2:70:37:3e:95:b4:8f:33:5c:77:f1:40:36:
7f:49:89:d6:27:ca:5f:5b:22:1e:86:a8:90:cb:d6:
58:bb:ac:39:43:61:13:a4:1f:c1:30:d0:4f:31:df:
97:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F7:42:FF:06:20:02:C7:12:3D:33:54:1C:66:75:E3:8D:2D:37:36
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/UvdC_wYgAscSPTNUHGZ1440tNzY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.89.96.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:0d:8f:cc:85:56:f5:7e:9d:de:af:e0:d0:bd:cc:4d:eb:2a:
21:d5:01:38:bd:06:cd:28:7b:77:07:8d:29:19:c4:4a:a5:91:
29:86:1a:37:ae:a2:54:4a:9e:3f:30:d1:b1:a4:0a:bc:22:1f:
65:2f:bc:15:c1:65:f3:d5:6a:53:3e:68:ce:8e:62:8e:4e:c8:
7d:76:ba:e9:cc:fe:02:06:3f:29:4e:b9:fe:0f:72:54:28:c7:
5a:12:b3:c6:c5:d1:73:29:5e:32:e9:2e:ff:cb:ae:52:bc:77:
b5:9e:bd:eb:f5:01:44:69:cb:2c:b1:17:5b:3a:f9:ce:4e:21:
d7:2c:e2:ae:04:eb:66:61:89:b8:b9:a2:da:8a:b9:00:2d:22:
8f:ba:7d:6b:5a:a1:7a:f9:10:9a:c1:5f:03:93:58:7d:51:ad:
64:71:ff:90:06:fc:3f:2c:dd:d0:14:4d:9f:88:87:d4:5c:e5:
a8:5c:b5:fe:c8:28:79:fe:c3:28:7e:39:6e:84:e2:86:02:81:
a9:8d:73:ea:46:0c:a1:ff:78:2b:1d:1b:9c:f6:a5:4b:e5:3f:
32:3f:33:8f:25:7f:a5:62:e1:b5:20:f4:84:48:49:c3:72:c4:
45:2a:8c:74:2d:b9:3b:5d:e2:14:3e:01:b0:f2:d3:67:8d:68:
0c:98:27:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:39:08 2025 by rpki-client