Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/uMuddbXfkXUtuom97jReKU23tfI.roa
File: uMuddbXfkXUtuom97jReKU23tfI.roa (raw, json)
Hash identifier: m2lH38XvDzgxZn37weEGdQc51dQscucwMZ8rPHtpBKU=
Subject key identifier: B8:CB:9D:75:B5:DF:91:75:2D:BA:89:BD:EE:34:5E:29:4D:B7:B5:F2
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 1902
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/uMuddbXfkXUtuom97jReKU23tfI.roa
Signing time: Fri 17 Jan 2025 01:25:55 +0000
ROA not before: Fri 17 Jan 2025 01:25:55 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 24373
IP address blocks: 103.220.248.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6402 (0x1902)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Jan 17 01:25:55 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=B8CB9D75B5DF91752DBA89BDEE345E294DB7B5F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b1:03:13:b0:50:c4:b5:e6:94:19:bd:bb:1f:
58:2b:e0:73:8b:5e:1b:1a:b3:ef:77:93:fc:49:c5:
bb:56:08:db:fe:42:5c:5e:11:b8:5c:e6:54:79:fc:
57:fa:27:d5:19:b6:f2:69:c7:4e:3a:9e:cd:95:f4:
3b:ff:31:42:e0:c4:77:82:96:92:7c:f5:29:c7:06:
57:bb:a8:cb:1b:6c:c3:fd:fe:d2:15:5f:37:92:fd:
fe:b4:1e:1a:49:cb:a5:75:4d:da:61:f3:6b:f5:65:
b7:4a:63:6f:06:30:f1:29:7e:f9:99:90:08:ef:06:
94:ae:28:77:92:a2:11:99:72:77:15:0f:ea:76:58:
ae:00:d9:3c:88:66:08:80:37:a3:c2:a3:36:6b:ba:
fb:75:13:31:43:b6:cd:3f:2b:21:b8:bf:96:08:57:
fd:59:02:1b:ad:0f:08:c5:0b:4c:9e:ec:60:37:d1:
39:a7:01:b0:a7:02:15:ed:e6:e2:e2:5a:d6:3c:b2:
75:aa:96:bd:12:2f:56:59:05:ca:f8:c4:05:b2:eb:
69:b2:36:55:0a:40:0d:c2:8e:63:19:0c:5e:d1:26:
59:19:5a:12:d1:90:8b:29:56:ef:e9:7a:c8:e5:73:
5f:9a:6c:da:1f:f3:bc:63:75:59:41:0c:ba:75:55:
03:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:CB:9D:75:B5:DF:91:75:2D:BA:89:BD:EE:34:5E:29:4D:B7:B5:F2
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/uMuddbXfkXUtuom97jReKU23tfI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.220.248.0/22
Signature Algorithm: sha256WithRSAEncryption
46:fa:61:ac:cd:83:29:0a:e8:92:67:78:8e:c1:d6:1f:c0:3b:
90:20:5a:07:d7:8f:82:5a:a5:53:6c:21:bd:29:f8:59:27:42:
76:fa:68:3c:ca:3f:fa:78:36:d1:cb:ce:1a:c1:54:04:3c:34:
b2:c6:6f:52:0a:93:0f:fa:91:d7:46:96:8b:7f:44:a0:0c:11:
10:be:ad:97:6a:ef:ff:c1:94:0a:2e:e0:19:45:0d:e0:1c:86:
7a:65:29:4a:cb:eb:fb:41:cb:5a:e8:6a:71:c4:38:5c:be:93:
e8:2b:41:ae:18:67:33:06:46:fe:63:5b:f7:dd:8b:a9:2e:45:
0f:d0:02:97:ac:4d:ea:0c:a5:a5:e9:1a:c6:e9:df:b2:43:46:
51:b7:24:31:f3:2f:14:01:23:20:fa:ff:d7:ae:2c:fb:02:0c:
55:6e:68:d7:d5:2b:5d:aa:63:7d:6d:bc:bf:4d:cc:d2:8e:cf:
9d:d0:ec:08:ee:5f:f3:24:c2:f1:ce:31:2d:13:fd:22:ec:d0:
a2:b7:dd:27:1d:df:c1:40:0e:47:dc:a1:65:58:af:63:5f:0d:
64:e9:8d:e9:10:eb:66:13:27:54:c2:64:da:84:1a:fa:ef:b6:
24:dd:c3:8d:0f:62:18:7b:65:19:3c:f9:95:b6:5b:98:0f:57:
7b:1c:75:04
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICGQIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC
NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTAxMTcw
MTI1NTVaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEI4Q0I5RDc1QjVERjkx
NzUyREJBODlCREVFMzQ1RTI5NERCN0I1RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9sQMTsFDEteaUGb27H1gr4HOLXhsas+93k/xJxbtWCNv+Qlxe
Ebhc5lR5/Ff6J9UZtvJpx046ns2V9Dv/MULgxHeClpJ89SnHBle7qMsbbMP9/tIV
XzeS/f60HhpJy6V1Tdph82v1ZbdKY28GMPEpfvmZkAjvBpSuKHeSohGZcncVD+p2
WK4A2TyIZgiAN6PCozZruvt1EzFDts0/KyG4v5YIV/1ZAhutDwjFC0ye7GA30Tmn
AbCnAhXt5uLiWtY8snWqlr0SL1ZZBcr4xAWy62myNlUKQA3CjmMZDF7RJlkZWhLR
kIspVu/pesjlc1+abNof87xjdVlBDLp1VQNRAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUuMuddbXfkXUtuom97jReKU23tfIwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c
9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3
L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3VNdWRkYlhma1hVdHVv
bTk3alJlS1UyM3RmSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAJn3PgwDQYJKoZIhvcNAQELBQADggEBAEb6YazNgykK6JJneI7B1h/AO5AgWgfX
j4JapVNsIb0p+FknQnb6aDzKP/p4NtHLzhrBVAQ8NLLGb1IKkw/6kddGlot/RKAM
ERC+rZdq7//BlAou4BlFDeAchnplKUrL6/tBy1roanHEOFy+k+grQa4YZzMGRv5j
W/fdi6kuRQ/QApesTeoMpaXpGsbp37JDRlG3JDHzLxQBIyD6/9euLPsCDFVuaNfV
K12qY31tvL9NzNKOz53Q7AjuX/MkwvHOMS0T/SLs0KK33Scd38FADkfcoWVYr2Nf
DWTpjekQ62YTJ1TCZNqEGvrvtiTdw40PYhh7ZRk8+ZW2W5gPV3scdQQ=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:42:55 2025 by rpki-client