Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/YOI2_GKn-Bqg758MVzMqw0IngJ0.roa
File: YOI2_GKn-Bqg758MVzMqw0IngJ0.roa (raw, json)
Hash identifier: kV8rM6FbR46xGaUPHRXB98WCsNCuRhUFj9+aPIJ93eg=
Subject key identifier: 60:E2:36:FC:62:A7:F8:1A:A0:EF:9F:0C:57:33:2A:C3:42:27:80:9D
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 1505
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/YOI2_GKn-Bqg758MVzMqw0IngJ0.roa
Signing time: Wed 11 Sep 2024 02:27:32 +0000
ROA not before: Wed 11 Sep 2024 02:27:32 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 13444
IP address blocks: 103.221.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5381 (0x1505)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Sep 11 02:27:32 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=60E236FC62A7F81AA0EF9F0C57332AC34227809D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4b:8d:97:83:37:7d:7b:67:49:8e:3b:13:74:
a7:39:f5:0e:08:9c:57:1c:3d:6e:56:89:ba:c8:d5:
74:b3:e1:4e:dc:b1:5e:7f:22:40:25:8c:1a:52:a9:
3e:f6:ba:39:7d:f3:7e:c0:62:a9:85:64:84:13:4c:
05:a0:a9:a8:ab:fb:7d:2c:80:4f:9e:b3:bc:2a:b6:
91:75:97:33:ed:aa:ca:ea:7d:c3:53:c1:a1:aa:78:
f0:99:8e:ba:ba:0d:c6:d8:96:e5:cb:d6:30:6b:35:
db:a9:a5:8f:9a:50:90:80:86:81:08:d7:45:af:32:
cb:71:08:9f:0f:0b:78:03:ff:f9:bd:e3:a7:b0:80:
e7:68:37:00:e1:db:80:50:42:39:b8:31:f4:c3:38:
c5:c6:7f:72:3e:da:a7:4e:6c:79:8a:dc:99:aa:b4:
84:34:12:12:5a:5c:3d:fc:02:20:8f:7f:63:5c:4f:
67:cb:45:5f:b1:2e:95:0f:45:0a:9a:ed:0f:b5:a4:
ee:63:7d:a9:23:41:9f:72:9c:19:1b:bb:07:08:c7:
78:ca:72:b9:08:6a:bd:f5:96:21:e8:4a:71:08:1f:
08:aa:4b:19:92:31:24:e1:c2:3a:e1:0a:d0:92:4e:
f9:b6:3c:27:45:7f:c1:00:0c:3f:9b:2a:03:bf:61:
42:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E2:36:FC:62:A7:F8:1A:A0:EF:9F:0C:57:33:2A:C3:42:27:80:9D
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/YOI2_GKn-Bqg758MVzMqw0IngJ0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.221.39.0/24
Signature Algorithm: sha256WithRSAEncryption
56:be:4e:de:dd:cb:e7:5f:e1:be:c8:2d:ca:ba:7f:d8:b0:8b:
78:52:c1:70:09:35:75:28:b3:33:0e:44:a5:65:f9:e6:06:40:
b5:41:85:8b:31:94:ba:15:d6:66:f9:16:be:54:32:8b:6c:31:
67:3b:75:36:3f:d9:6f:8c:79:9d:16:e0:bd:9d:de:5b:8d:0e:
5e:8d:fb:41:26:25:df:d6:7a:d6:63:59:47:7e:ec:e6:30:6d:
18:f5:56:e6:c5:1e:4e:9d:df:39:f5:14:94:f4:5f:91:6d:53:
23:07:d1:f4:c7:6b:38:ba:85:ed:23:0f:e6:97:4b:69:cc:fc:
fc:58:34:c4:e0:e3:54:c5:cc:a5:29:9d:b8:8f:1f:b2:e8:99:
d9:b2:7b:1b:75:ce:54:d5:6a:5f:93:3b:08:09:23:6c:4d:e1:
93:4e:d3:f7:ab:c5:c2:a0:0b:8b:12:c2:4b:63:e2:22:86:1a:
6f:c3:67:01:cc:1a:85:fe:cb:29:99:a7:49:34:b1:58:3f:d1:
9d:1d:fc:0f:db:a3:31:6a:05:93:65:24:4b:88:fc:a8:16:d4:
d5:19:30:61:f4:93:b0:ca:41:af:26:5f:c0:ff:3f:0e:36:a9:
d6:cc:63:58:8a:f2:29:0c:8d:d5:42:dd:aa:82:42:ba:9f:71:
03:f0:af:31
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICFQUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC
NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNDA5MTEw
MjI3MzJaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDYwRTIzNkZDNjJBN0Y4
MUFBMEVGOUYwQzU3MzMyQUMzNDIyNzgwOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqS42Xgzd9e2dJjjsTdKc59Q4InFccPW5WibrI1XSz4U7csV5/
IkAljBpSqT72ujl9837AYqmFZIQTTAWgqair+30sgE+es7wqtpF1lzPtqsrqfcNT
waGqePCZjrq6DcbYluXL1jBrNduppY+aUJCAhoEI10WvMstxCJ8PC3gD//m946ew
gOdoNwDh24BQQjm4MfTDOMXGf3I+2qdObHmK3JmqtIQ0EhJaXD38AiCPf2NcT2fL
RV+xLpUPRQqa7Q+1pO5jfakjQZ9ynBkbuwcIx3jKcrkIar31liHoSnEIHwiqSxmS
MSThwjrhCtCSTvm2PCdFf8EADD+bKgO/YULvAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUYOI2/GKn+Bqg758MVzMqw0IngJ0wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c
9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3
L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L1lPSTJfR0tuLUJxZzc1
OE1Wek1xdzBJbmdKMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABn3ScwDQYJKoZIhvcNAQELBQADggEBAFa+Tt7dy+df4b7ILcq6f9iwi3hSwXAJ
NXUoszMORKVl+eYGQLVBhYsxlLoV1mb5Fr5UMotsMWc7dTY/2W+MeZ0W4L2d3luN
Dl6N+0EmJd/WetZjWUd+7OYwbRj1VubFHk6d3zn1FJT0X5FtUyMH0fTHazi6he0j
D+aXS2nM/PxYNMTg41TFzKUpnbiPH7Lomdmyext1zlTVal+TOwgJI2xN4ZNO0/er
xcKgC4sSwktj4iKGGm/DZwHMGoX+yymZp0k0sVg/0Z0d/A/bozFqBZNlJEuI/KgW
1NUZMGH0k7DKQa8mX8D/Pw42qdbMY1iK8ikMjdVC3aqCQrqfcQPwrzE=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:36:35 2025 by rpki-client