Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/wb3jLrO9nz2YxBaqHcWh8X3nvgs.roa
File: wb3jLrO9nz2YxBaqHcWh8X3nvgs.roa (raw, json)
Hash identifier: SIJtznd8DKb81XawAQ9VVkcmX3G5HLBofJzs92kFZYE=
Subject key identifier: C1:BD:E3:2E:B3:BD:9F:3D:98:C4:16:AA:1D:C5:A1:F1:7D:E7:BE:0B
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 12EC
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/wb3jLrO9nz2YxBaqHcWh8X3nvgs.roa
Signing time: Sat 29 Jun 2024 19:44:16 +0000
ROA not before: Sat 29 Jun 2024 19:44:16 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24373
IP address blocks: 2406:1e80::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4844 (0x12ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Jun 29 19:44:16 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=C1BDE32EB3BD9F3D98C416AA1DC5A1F17DE7BE0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7e:d6:55:40:41:21:d2:99:99:a7:27:0d:cd:
2f:87:a2:49:04:56:cf:75:18:c5:6b:8e:e9:d3:7c:
28:57:02:a3:9a:b5:7d:ed:4a:ef:ff:7a:9d:d9:6e:
9a:cc:5d:d0:7e:91:ad:91:72:57:8f:ea:6e:80:9c:
9c:09:f3:5a:b4:ef:02:66:82:36:af:a5:30:56:71:
4d:01:2d:9d:fd:d4:f9:2f:90:43:10:ee:22:d3:5a:
ab:47:34:aa:4b:0b:70:2a:e2:8c:0a:d3:8e:5b:4c:
04:59:63:02:e9:fb:6b:bf:1f:59:48:f9:46:1f:ce:
54:b9:a7:6d:c0:a9:b9:f1:e1:87:27:54:71:ef:84:
87:a2:78:2b:ef:bb:ac:bb:0c:de:2b:fd:6a:4a:1b:
62:4e:91:6b:b8:5c:9c:ba:65:e7:b1:32:71:e0:c5:
77:18:f2:21:c2:88:4f:53:61:bb:8c:3b:02:39:38:
39:c4:10:42:44:eb:32:7b:c5:1a:ca:27:f2:17:8c:
aa:b2:5d:88:55:e2:fe:45:bc:3d:ed:cc:38:3f:62:
aa:c4:95:3b:0a:62:4c:90:ce:77:24:49:7f:1b:50:
9f:7f:a8:9d:6e:45:8b:9f:c7:dc:88:95:83:e0:be:
ec:d8:de:1b:ad:70:e5:11:f8:5d:a1:9c:bc:c0:83:
5f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:BD:E3:2E:B3:BD:9F:3D:98:C4:16:AA:1D:C5:A1:F1:7D:E7:BE:0B
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/wb3jLrO9nz2YxBaqHcWh8X3nvgs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:1e80::/48
Signature Algorithm: sha256WithRSAEncryption
de:ce:66:17:72:6b:37:47:1d:66:67:17:bb:6d:7c:f8:03:48:
c7:c3:ce:a5:89:94:72:b9:b3:b2:cb:92:cd:d8:97:ae:a8:dd:
8f:9f:c1:87:9a:8a:e0:82:cd:eb:f8:7b:f4:15:f6:d4:44:f7:
45:4f:c8:b4:dc:76:1e:8e:9e:bc:6a:27:d3:92:1f:7a:d1:05:
db:27:e2:4c:13:6c:f3:8d:84:68:83:8b:fd:15:36:35:7f:21:
97:9c:59:2d:17:7f:8d:6d:53:c8:03:f0:4a:ea:3d:0f:89:4b:
f4:bf:64:13:1c:cd:04:b9:89:0a:23:3d:c4:4c:2d:2f:ac:4c:
ff:21:3d:ce:42:7c:06:5b:ad:49:b7:3f:ed:ec:3a:c6:67:0d:
ff:d2:74:b0:12:f1:eb:6d:df:6a:51:85:cc:52:9c:8f:d6:6f:
11:bc:e9:31:31:17:6b:68:e5:d3:64:6d:0f:5b:3f:df:35:87:
9f:e8:d1:6f:ad:e9:17:09:76:7e:a4:ea:79:cb:df:3f:dd:cd:
09:6d:a4:62:64:18:3b:66:33:64:f9:6c:3a:87:af:a8:22:e7:
55:fa:52:a6:f7:bd:4f:b1:eb:d2:14:e7:75:15:6b:51:f8:0b:
b3:32:b5:76:23:b1:42:1f:59:b1:68:ad:ff:c6:23:d6:dd:e4:
4f:61:61:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:39:38 2025 by rpki-client