Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/xzHVOLOWTx71G1Kxv_dT9XwST4Y.roa
File: xzHVOLOWTx71G1Kxv_dT9XwST4Y.roa (raw, json)
Hash identifier: p6NKy4LhWW4YDK5/y12bFlKfVCa00XljZfOGF6roAuY=
Subject key identifier: C7:31:D5:38:B3:96:4F:1E:F5:1B:52:B1:BF:F7:53:F5:7C:12:4F:86
Certificate issuer: /CN=194ACC313935AF5433C2B9456D742682F961EABB
Certificate serial: 0767
Authority key identifier: 19:4A:CC:31:39:35:AF:54:33:C2:B9:45:6D:74:26:82:F9:61:EA:BB
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GUrMMTk1r1QzwrlFbXQmgvlh6rs.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/xzHVOLOWTx71G1Kxv_dT9XwST4Y.roa
Signing time: Sat 14 May 2022 14:37:17 +0000
ROA not before: Sat 14 May 2022 14:37:17 +0000
ROA not after: Fri 27 May 2022 04:59:52 +0000
asID: 59083
IP address blocks: 43.254.153.0/24 maxlen: 24
43.254.154.0/23 maxlen: 24
43.254.155.0/24 maxlen: 24
59.153.164.0/22 maxlen: 24
59.153.168.0/23 maxlen: 24
103.7.140.0/22 maxlen: 24
103.7.140.0/23 maxlen: 24
103.7.142.0/23 maxlen: 24
103.10.0.0/23 maxlen: 24
103.10.0.0/24 maxlen: 24
103.10.1.0/24 maxlen: 24
103.10.2.0/23 maxlen: 24
103.10.2.0/24 maxlen: 24
103.10.3.0/24 maxlen: 24
103.24.116.0/22 maxlen: 24
103.24.116.0/23 maxlen: 24
103.24.116.0/24 maxlen: 24
103.24.117.0/24 maxlen: 24
103.24.118.0/23 maxlen: 24
103.24.118.0/24 maxlen: 24
103.24.119.0/24 maxlen: 24
150.242.236.0/23 maxlen: 24
202.89.108.0/22 maxlen: 24
202.89.108.0/23 maxlen: 24
202.89.110.0/23 maxlen: 24
202.136.248.0/22 maxlen: 24
202.136.248.0/23 maxlen: 24
202.136.249.0/24 maxlen: 24
202.136.250.0/23 maxlen: 24
202.136.250.0/24 maxlen: 24
202.140.140.0/22 maxlen: 24
202.140.140.0/23 maxlen: 24
202.140.142.0/23 maxlen: 24
202.174.124.0/22 maxlen: 24
203.90.12.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1895 (0x767)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=194ACC313935AF5433C2B9456D742682F961EABB
Validity
Not Before: May 14 14:37:17 2022 GMT
Not After : May 27 04:59:52 2022 GMT
Subject: CN=C731D538B3964F1EF51B52B1BFF753F57C124F86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b0:6d:30:7f:b1:1e:c7:0d:48:26:1b:26:92:
b9:0c:66:d9:d9:a2:2e:12:57:8d:47:c2:66:36:62:
f8:23:d2:6a:c0:74:8c:89:02:f1:98:32:0c:29:ca:
ff:3e:8a:1e:8c:77:98:7a:40:d9:1a:c9:69:f0:21:
08:08:13:34:70:3e:a5:c3:50:82:c7:c1:39:71:9c:
68:af:39:18:e4:df:69:ea:72:09:58:e2:bf:7a:5e:
66:04:7a:24:82:5a:09:d6:cb:b5:f2:c5:4b:41:c8:
d3:64:29:ad:fd:22:7a:af:94:d6:56:76:96:9c:2a:
d2:8d:fe:20:9a:ba:93:97:e5:ad:ff:07:08:0a:88:
29:7c:24:2a:f6:e4:94:0a:d4:b1:88:6b:24:28:97:
9f:09:1d:9a:b9:e1:ac:11:34:45:c9:52:85:c2:07:
67:aa:7f:0c:91:06:35:e7:02:4c:01:f1:11:fb:49:
30:11:f1:cd:73:60:d3:ef:5d:77:62:4c:d0:ed:a7:
43:1b:41:07:13:1a:2f:ad:dc:f8:7a:7a:f0:f8:4a:
b0:ef:d4:de:91:23:59:e8:6d:99:99:f5:33:90:09:
59:4f:04:43:fb:d8:f4:ec:4a:c4:34:34:eb:fe:8d:
94:ee:a3:d1:d1:92:07:68:7d:94:ec:e8:4f:ac:f9:
7d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:31:D5:38:B3:96:4F:1E:F5:1B:52:B1:BF:F7:53:F5:7C:12:4F:86
X509v3 Authority Key Identifier:
keyid:19:4A:CC:31:39:35:AF:54:33:C2:B9:45:6D:74:26:82:F9:61:EA:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/GUrMMTk1r1QzwrlFbXQmgvlh6rs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GUrMMTk1r1QzwrlFbXQmgvlh6rs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/xzHVOLOWTx71G1Kxv_dT9XwST4Y.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.153.0-43.254.155.255
59.153.164.0-59.153.169.255
103.7.140.0/22
103.10.0.0/22
103.24.116.0/22
150.242.236.0/23
202.89.108.0/22
202.136.248.0/22
202.140.140.0/22
202.174.124.0/22
203.90.12.0/22
Signature Algorithm: sha256WithRSAEncryption
07:c5:b2:b2:61:80:74:4e:b5:89:37:2e:9a:8c:88:f0:75:f8:
a7:b2:85:63:cb:79:3e:d6:06:79:84:3f:84:7a:8e:c5:4a:8a:
77:7e:4d:04:97:3f:22:3d:fd:11:b8:7a:f6:89:3a:c1:8d:8b:
57:a0:aa:44:6c:21:bf:8a:96:69:6b:e5:e9:fe:38:98:84:79:
49:2e:71:64:d3:3f:a2:eb:1b:9e:d5:67:11:b3:61:85:23:c9:
95:f3:47:85:5c:c5:54:db:f6:04:63:c6:c5:13:46:0c:5f:02:
97:8b:be:68:32:6d:1a:a4:c1:90:c7:b7:6f:14:58:76:a8:3c:
91:3f:68:3a:97:71:3c:92:51:b2:f1:d1:f3:e8:71:d5:3a:e9:
c7:ee:3a:39:d7:2e:64:0b:53:0c:b6:c7:1b:35:65:c8:ea:f9:
06:10:96:f8:22:a2:97:f9:74:f9:01:75:10:1e:55:fb:12:c3:
33:90:b0:0d:a3:41:20:89:cc:16:f5:98:df:22:15:b6:e3:00:
01:91:f5:65:5b:16:0f:86:ea:ea:ac:7a:a5:61:99:e0:7e:00:
94:c7:76:c8:22:b9:ec:ca:1d:a8:2b:68:98:2c:da:9f:6e:fe:
96:96:7c:85:38:b7:75:73:6d:f7:14:69:e6:45:0c:34:22:88:
c6:fd:af:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:18 2023 by rpki-client on console-ams.rpki-client.org