Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/voO_EMSOKTjKrKX_dHzkHlycOqw.roa
File: voO_EMSOKTjKrKX_dHzkHlycOqw.roa (raw, json)
Hash identifier: p676Dq+fpdzzVbggeJSAZYb8Rr34INQAe+rVsIXPHYA=
Subject key identifier: BE:83:BF:10:C4:8E:29:38:CA:AC:A5:FF:74:7C:E4:1E:5C:9C:3A:AC
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 156B
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/voO_EMSOKTjKrKX_dHzkHlycOqw.roa
Signing time: Wed 11 Sep 2024 04:04:11 +0000
ROA not before: Wed 11 Sep 2024 04:04:11 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 139259
IP address blocks: 103.221.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5483 (0x156b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Sep 11 04:04:11 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=BE83BF10C48E2938CAACA5FF747CE41E5C9C3AAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:47:b8:73:7f:f2:88:f4:74:1f:db:2b:16:7b:
73:2c:94:1e:6d:86:ab:bd:18:97:fb:5e:ce:3a:2f:
da:c7:04:15:f1:ac:eb:51:22:c4:73:9f:23:66:16:
1b:bf:2c:fc:ee:03:44:08:93:7a:ff:54:ec:c1:97:
df:5a:0a:e5:ce:7e:7f:3b:82:c9:53:c0:c6:16:ec:
9a:b3:d5:fc:ac:ed:af:eb:6e:87:97:32:71:f4:44:
1a:6e:b9:74:5a:09:04:76:0b:93:c3:d9:aa:a5:8c:
50:54:97:af:36:ed:b5:86:e9:5f:8d:0d:26:de:fb:
66:83:11:61:a1:a1:bd:b2:b1:49:73:dc:f2:7a:d4:
6b:a7:92:3b:43:e6:1a:ae:62:7d:fc:93:00:da:e8:
ca:33:0e:35:6c:df:49:8f:8c:9c:db:53:2b:8d:74:
d3:dd:87:b9:af:24:b7:fe:18:e6:80:af:9d:8c:70:
b1:70:61:f2:38:33:95:a3:c3:45:c2:71:54:21:64:
86:1d:76:9b:80:67:d3:f1:45:19:aa:80:0a:d9:e2:
cc:44:64:09:a5:5b:e0:d0:59:e8:cc:1a:ff:b5:ae:
a5:f3:6f:89:ef:4e:14:01:d1:38:f4:7e:6c:ef:f6:
02:43:43:01:b6:56:2d:fe:90:2a:0f:ee:92:77:f0:
09:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:83:BF:10:C4:8E:29:38:CA:AC:A5:FF:74:7C:E4:1E:5C:9C:3A:AC
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/voO_EMSOKTjKrKX_dHzkHlycOqw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.221.93.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:f7:94:02:f4:b2:2c:1d:bf:17:5b:d2:1d:43:15:4c:c9:89:
5c:e3:a9:65:e2:c1:b7:03:fc:24:fa:bd:fa:4b:10:59:11:60:
b6:51:30:fb:50:4e:db:09:bc:04:c6:30:41:0f:e8:57:06:96:
9e:71:e5:77:08:2a:8a:42:80:aa:29:e6:9e:22:52:1e:7c:7b:
6a:fe:a9:13:d2:d7:27:39:54:2c:3d:64:38:9c:d0:9a:9c:c7:
36:da:66:49:12:b0:84:59:fc:f4:79:f1:6b:26:a0:34:69:e8:
d8:87:27:e6:cf:4e:fb:11:62:d2:a0:c4:75:f5:79:fc:22:11:
00:d9:03:d5:05:53:c6:56:e4:17:9c:fc:b3:56:23:d1:9d:55:
23:f2:0b:25:42:e2:1d:f9:85:ce:46:b1:81:b9:f6:6c:32:bb:
d6:f5:b2:2c:4c:0f:b0:6e:55:66:3e:2d:49:08:18:a4:92:58:
1f:9e:1d:04:38:70:62:68:be:03:4c:60:94:6d:0b:32:90:f7:
62:54:64:8f:8b:b9:47:67:67:c8:d5:4b:a2:88:8d:b3:d0:4f:
a0:9e:3e:de:39:8d:4c:7d:69:b2:48:95:8b:bf:49:c6:df:25:
86:97:91:31:ad:3a:63:b6:7a:c4:c6:f7:be:dc:22:46:b2:67:
4f:b5:ba:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:35:14 2025 by rpki-client