Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/464FpPDrSpTSW2eHgF33nE-jHpw.roa
File: 464FpPDrSpTSW2eHgF33nE-jHpw.roa (raw, json)
Hash identifier: 9wsFkR0XVEngwvWj//m0j5gvfe5qhyE2YYigdQ+rKQ8=
Subject key identifier: E3:AE:05:A4:F0:EB:4A:94:D2:5B:67:87:80:5D:F7:9C:4F:A3:1E:9C
Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Certificate serial: 0810
Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/464FpPDrSpTSW2eHgF33nE-jHpw.roa
Signing time: Tue 19 Nov 2024 12:40:41 +0000
ROA not before: Tue 19 Nov 2024 12:40:41 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 398704
IP address blocks: 58.66.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2064 (0x810)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Validity
Not Before: Nov 19 12:40:41 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=E3AE05A4F0EB4A94D25B6787805DF79C4FA31E9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:3b:43:32:d2:a2:98:fb:05:65:fc:14:e0:46:
d5:1d:7d:30:1e:46:92:de:60:54:14:83:c8:a4:e3:
e1:4c:68:37:e6:b9:3f:1a:fa:e8:44:d8:c6:b1:62:
2f:e1:24:1c:90:30:03:5a:16:2c:1f:ac:97:bb:ee:
83:f8:92:53:07:23:ef:d7:49:4f:c4:36:44:bc:83:
60:5b:a2:c5:90:fc:6e:6f:aa:43:a3:4b:25:67:68:
a7:9a:d4:17:96:a3:68:d3:9d:6f:03:cb:38:70:b3:
72:28:0b:12:a6:ff:b8:ed:61:37:36:95:5d:d1:0e:
8e:1b:de:de:dd:34:35:d1:de:16:0b:f3:f9:d6:c3:
96:90:41:69:f1:f8:7f:83:d9:e7:c7:99:bb:f5:85:
32:f6:c9:2f:71:cd:81:c2:88:99:34:ae:86:75:e6:
2b:3d:bd:d1:88:51:c8:91:f6:f6:1e:2d:a1:11:c2:
39:07:ac:67:29:eb:fc:83:66:43:5a:d3:55:e7:ea:
a3:86:8e:d3:ca:77:29:81:a8:cb:7f:2c:f3:69:9d:
44:19:e7:3a:61:64:8d:25:6f:72:e2:23:86:c8:39:
c0:da:d8:bb:42:7a:3e:85:56:b4:41:49:80:51:21:
72:b9:8f:c7:ad:eb:e9:58:ad:c8:4e:94:98:80:fb:
83:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:AE:05:A4:F0:EB:4A:94:D2:5B:67:87:80:5D:F7:9C:4F:A3:1E:9C
X509v3 Authority Key Identifier:
keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/464FpPDrSpTSW2eHgF33nE-jHpw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.66.180.0/24
Signature Algorithm: sha256WithRSAEncryption
62:16:67:f0:88:9a:32:a3:a8:24:03:30:f5:a4:31:53:32:be:
c0:3d:50:45:0f:cc:85:89:3d:f4:06:85:02:60:4e:c1:0e:e3:
0d:04:14:df:f0:56:08:ef:8f:5f:13:dd:6a:39:a5:af:1f:bc:
2c:3c:7e:44:90:43:f6:fb:d7:5d:d3:49:9c:a0:89:d3:51:fd:
2b:9a:f8:98:8b:6e:97:1a:63:70:ba:7b:17:fc:46:0b:e3:45:
32:28:49:c5:b2:5c:10:de:42:92:6c:25:e0:4f:3b:2a:29:6a:
e4:f2:e7:44:0b:fa:25:09:c3:a0:6a:b2:dd:10:e3:9e:38:22:
46:34:23:3d:b1:64:8a:ee:da:03:b7:e7:2e:a6:fb:47:86:6b:
f9:bb:f6:86:03:f1:47:74:ea:1f:13:a1:21:72:af:c4:1b:a7:
cf:99:98:1f:72:ff:ec:4e:15:1d:2c:6b:d3:4b:18:1e:34:5c:
0e:4f:55:95:ba:dd:fd:cb:ff:65:04:9c:99:2e:28:4d:83:7c:
4b:48:7e:e9:fd:46:c0:75:29:5d:46:57:84:e9:b8:28:9b:99:
c8:91:43:2b:cb:2c:e9:a1:ce:5e:5a:8c:c8:87:5b:1d:0a:24:
0e:13:ae:aa:b8:d8:fa:86:3f:71:d1:3b:ae:69:f6:4b:25:73:
69:a8:fb:08
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICCBAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTQ4
MUI0RTQwOTAxNUQ4RUI3RDAzRjM2MDM4ODMwRUMxMDk4QUJDMDAeFw0yNDExMTkx
MjQwNDFaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEUzQUUwNUE0RjBFQjRB
OTREMjVCNjc4NzgwNURGNzlDNEZBMzFFOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDpO0My0qKY+wVl/BTgRtUdfTAeRpLeYFQUg8ik4+FMaDfmuT8a
+uhE2MaxYi/hJByQMANaFiwfrJe77oP4klMHI+/XSU/ENkS8g2BbosWQ/G5vqkOj
SyVnaKea1BeWo2jTnW8Dyzhws3IoCxKm/7jtYTc2lV3RDo4b3t7dNDXR3hYL8/nW
w5aQQWnx+H+D2efHmbv1hTL2yS9xzYHCiJk0roZ15is9vdGIUciR9vYeLaERwjkH
rGcp6/yDZkNa01Xn6qOGjtPKdymBqMt/LPNpnUQZ5zphZI0lb3LiI4bIOcDa2LtC
ej6FVrRBSYBRIXK5j8et6+lYrchOlJiA+4NvAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQU464FpPDrSpTSW2eHgF33nE+jHpwwHwYDVR0jBBgwFoAUlIG05AkBXY630D82
A4gw7BCYq8AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNi9s
SUcwNUFrQlhZNjMwRDgyQTRndzdCQ1lxOEEuY3JsMGMGCCsGAQUFBwEBBFcwVTBT
BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw
MDAwL2xJRzA1QWtCWFk2MzBEODJBNGd3N0JDWXE4QS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtp
LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzYvNDY0RnBQRHJTcFRTVzJlSGdG
MzNuRS1qSHB3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNu
L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADpC
tDANBgkqhkiG9w0BAQsFAAOCAQEAYhZn8IiaMqOoJAMw9aQxUzK+wD1QRQ/MhYk9
9AaFAmBOwQ7jDQQU3/BWCO+PXxPdajmlrx+8LDx+RJBD9vvXXdNJnKCJ01H9K5r4
mItulxpjcLp7F/xGC+NFMihJxbJcEN5Ckmwl4E87Kilq5PLnRAv6JQnDoGqy3RDj
njgiRjQjPbFkiu7aA7fnLqb7R4Zr+bv2hgPxR3TqHxOhIXKvxBunz5mYH3L/7E4V
HSxr00sYHjRcDk9Vlbrd/cv/ZQScmS4oTYN8S0h+6f1GwHUpXUZXhOm4KJuZyJFD
K8ss6aHOXlqMyIdbHQokDhOuqrjY+oY/cdE7rmn2SyVzaaj7CA==
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:19:35 2025 by rpki-client