Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/pWBRHXuapo4OaXohb7ODM2gglTI.roa
File: pWBRHXuapo4OaXohb7ODM2gglTI.roa (raw, json)
Hash identifier: DcolUwu9qIF4oAvgDi542Lh6blNSv0oNQ9eGHajzt6I=
Subject key identifier: A5:60:51:1D:7B:9A:A6:8E:0E:69:7A:21:6F:B3:83:33:68:20:95:32
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 1849
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/pWBRHXuapo4OaXohb7ODM2gglTI.roa
Signing time: Fri 17 Jan 2025 01:24:51 +0000
ROA not before: Fri 17 Jan 2025 01:24:51 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 13444
IP address blocks: 103.221.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6217 (0x1849)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Jan 17 01:24:51 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=A560511D7B9AA68E0E697A216FB3833368209532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:10:4d:5b:29:e9:25:7f:62:50:37:97:35:d5:
a3:e3:08:b6:52:7e:0e:f7:ea:91:09:3b:93:d0:c3:
9f:f0:20:20:8a:90:84:bf:56:42:e1:51:4d:cf:1e:
f5:e4:bf:f9:23:e0:35:20:9e:d2:ae:83:af:63:5b:
3e:b9:4b:33:17:80:fc:70:d7:f9:5a:ac:44:95:97:
eb:d4:a1:55:08:3a:be:e0:45:21:42:4b:9a:3b:ae:
9f:c0:5d:9e:de:67:c5:1b:bb:4a:af:29:6c:f7:05:
37:0d:6a:1b:db:fc:a3:4a:c9:d7:b9:28:f1:03:89:
0b:e4:fb:c2:57:b8:40:75:2a:9c:ea:fa:d4:ec:69:
4a:ce:29:0b:c0:8f:a5:09:3b:d1:51:79:2d:11:84:
c1:2c:83:7a:83:65:2c:2f:69:d1:ab:d7:db:c2:d5:
43:98:08:0a:df:f3:76:c6:2d:9e:91:ce:67:a6:56:
fb:36:19:fd:de:ad:a1:86:c9:93:e1:cd:74:79:6f:
4b:1c:5d:c5:8c:cd:65:45:54:2f:c2:21:56:2e:64:
d8:d7:e7:65:e5:5f:cf:52:c3:92:ce:f1:36:f0:4e:
bb:34:fd:95:92:8f:4c:56:a7:7b:0f:3f:24:4b:fd:
a8:86:48:54:b9:9e:ce:69:2a:ae:7e:a9:2a:f2:e8:
64:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:60:51:1D:7B:9A:A6:8E:0E:69:7A:21:6F:B3:83:33:68:20:95:32
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/pWBRHXuapo4OaXohb7ODM2gglTI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.221.14.0/24
Signature Algorithm: sha256WithRSAEncryption
94:16:cf:1b:24:3e:7e:05:df:7d:a5:f7:92:57:3f:27:aa:c7:
8b:c9:a8:c9:3a:9b:fb:52:50:0a:ef:cb:fb:76:6c:b7:f7:f7:
9e:b7:ab:69:c8:cc:81:75:31:91:cb:df:ae:48:3b:12:6e:e8:
cf:db:55:dc:53:ae:4f:2c:a5:31:db:17:2e:7c:d0:f9:cc:bf:
e9:c5:30:d7:f7:b3:7f:58:50:85:4c:e7:d0:65:bd:64:5e:1e:
a7:6a:1a:ca:1c:db:45:e5:f8:16:9a:b9:1a:4f:e7:0c:80:ea:
b6:4f:ea:c2:4b:a7:ed:80:4b:51:c3:2a:c0:cd:76:3d:f5:e4:
d6:99:3e:d7:da:4d:0f:ab:15:45:20:63:26:1e:11:0d:2f:6a:
5e:81:da:42:a8:4c:e7:57:39:66:23:52:bf:3a:e4:a8:0a:cf:
ba:23:aa:08:eb:c9:ef:26:8b:59:f6:33:e0:4c:73:3b:11:4f:
56:64:85:39:2e:2d:d1:c3:78:ed:43:86:3a:0f:84:17:df:96:
79:46:62:ae:39:8f:a7:ea:88:2a:a6:2f:af:f4:f1:47:58:0f:
c2:f4:fa:af:3b:5d:92:2a:5e:7b:b0:0b:e2:1c:8a:c7:e6:5c:
a9:48:93:0b:85:e2:f9:44:92:5e:00:07:3d:aa:ec:c0:da:4f:
7d:b0:bc:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:33:54 2025 by rpki-client