Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/VGcX5Y7DU6qVKM6baU0nP-Mq5M4.roa
File: VGcX5Y7DU6qVKM6baU0nP-Mq5M4.roa (raw, json)
Hash identifier: XCxEKLguhQHDd5+O1ar6peYX7Gbbyt6TYu1kHubxVXQ=
Subject key identifier: 54:67:17:E5:8E:C3:53:AA:95:28:CE:9B:69:4D:27:3F:E3:2A:E4:CE
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 152A
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/VGcX5Y7DU6qVKM6baU0nP-Mq5M4.roa
Signing time: Wed 11 Sep 2024 03:54:53 +0000
ROA not before: Wed 11 Sep 2024 03:54:53 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 139259
IP address blocks: 103.6.110.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5418 (0x152a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Sep 11 03:54:53 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=546717E58EC353AA9528CE9B694D273FE32AE4CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b5:a5:fa:fc:fe:f6:1c:64:db:8d:61:4f:3e:
d1:f6:90:18:ac:82:e7:24:f7:08:9b:23:04:3d:39:
7e:1b:ff:c2:72:40:7f:d3:eb:8d:c4:65:fc:5f:57:
01:2b:5b:b9:6a:07:53:fc:67:3e:2b:4e:8f:5c:b2:
2f:6b:0c:24:db:04:69:9c:e1:4a:d2:78:99:12:80:
09:7d:88:85:de:d4:7b:4a:89:88:49:84:c6:c1:44:
6c:e6:57:16:6d:6f:d4:1d:7c:f1:a2:78:60:46:1e:
1d:c9:22:6e:f1:63:10:f4:5f:67:ad:6b:7f:4e:f4:
66:8a:1e:f8:2c:6b:81:c6:54:e4:0c:bc:67:dc:83:
3e:3c:2e:ce:11:37:3b:3d:41:68:b4:cd:cd:a5:07:
f4:6d:9c:94:f9:75:87:8a:68:d6:bb:c7:c0:18:4a:
60:fb:97:6d:a8:1a:91:ea:e2:cd:31:ee:d8:da:21:
3e:a7:b3:38:1c:e7:f3:9b:08:0a:17:a6:6e:41:22:
65:cc:04:0c:4b:0c:42:34:19:af:52:bb:aa:23:ff:
44:fc:92:e5:d3:f1:ca:bb:5d:25:65:1c:0e:48:9a:
15:2f:65:34:f0:b4:51:1f:56:29:7e:6e:32:44:27:
15:3e:bc:0b:65:c3:af:da:4b:5d:08:ed:4f:21:7c:
92:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:67:17:E5:8E:C3:53:AA:95:28:CE:9B:69:4D:27:3F:E3:2A:E4:CE
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/VGcX5Y7DU6qVKM6baU0nP-Mq5M4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.6.110.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:e3:ce:c1:71:81:b8:a4:4f:59:14:01:ac:3c:bf:b9:2d:0d:
78:23:95:10:b9:dd:79:c5:95:46:d7:a1:39:da:ce:11:97:e3:
f4:3f:2e:f8:c0:aa:5b:b2:09:98:09:0d:26:84:ba:cc:d8:8f:
aa:be:34:07:67:17:f5:52:88:8a:c4:0a:43:67:1c:eb:1f:0e:
39:2c:ec:9e:42:ac:48:02:7e:35:47:d5:82:dd:73:e0:ab:83:
2a:a9:19:83:35:b4:0b:6a:3f:58:8e:68:f1:a4:ad:2a:49:aa:
e3:2e:92:72:81:4e:69:c5:2a:e1:18:61:3b:27:ba:00:6b:c8:
b7:96:0a:ff:1a:aa:d8:3c:e7:26:3c:c7:2b:f6:34:31:bf:38:
c5:c5:70:c7:6b:ed:f8:47:d3:ad:ed:29:29:c2:99:fc:b8:8a:
4c:a9:60:2a:2d:8c:51:ac:89:18:81:4f:77:46:37:28:63:bf:
ed:42:ab:41:82:6d:2a:6b:72:32:02:ce:78:ad:91:91:07:c2:
6b:26:63:b3:86:8c:32:fe:bc:bc:bd:33:86:2d:a1:d3:c4:82:
8c:8c:30:f1:17:8e:d3:7f:38:1d:56:97:ae:7f:a1:ae:c4:e4:
2e:cd:e9:ab:01:ed:99:48:42:fd:1a:e1:56:b3:23:dd:ec:c6:
29:6c:00:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:44:30 2025 by rpki-client