Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/IXeiX71f_6gAR548Nobga3lVkz8.roa
File: IXeiX71f_6gAR548Nobga3lVkz8.roa (raw, json)
Hash identifier: smi9Kab98jhCPsMzxiV2ynWxTskxGQepYuwrRHTE0Ts=
Subject key identifier: 21:77:A2:5F:BD:5F:FF:A8:00:47:9E:3C:36:86:E0:6B:79:55:93:3F
Certificate issuer: /CN=9A5C74AE3F8CD3B679AC56C473F450378591926B
Certificate serial: 19D7
Authority key identifier: 9A:5C:74:AE:3F:8C:D3:B6:79:AC:56:C4:73:F4:50:37:85:91:92:6B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mlx0rj-M07Z5rFbEc_RQN4WRkms.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/IXeiX71f_6gAR548Nobga3lVkz8.roa
Signing time: Tue 03 Sep 2024 19:46:42 +0000
ROA not before: Tue 03 Sep 2024 19:46:42 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
119.16.0.0/16 maxlen: 16
125.169.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6615 (0x19d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A5C74AE3F8CD3B679AC56C473F450378591926B
Validity
Not Before: Sep 3 19:46:42 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=2177A25FBD5FFFA800479E3C3686E06B7955933F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:99:ae:14:d0:b7:c4:fe:6a:b9:0b:0c:38:26:
5f:73:49:1d:d9:2b:54:8c:36:18:a1:4b:69:27:9b:
28:85:8c:93:98:41:d5:59:41:8f:1d:f0:6a:fb:32:
70:71:80:f6:60:8c:1a:06:d6:8f:9e:d0:41:72:c0:
0b:f4:b4:b2:39:f1:8c:da:34:16:82:01:90:be:1f:
de:31:a8:2b:05:24:2e:15:4e:d4:fd:6c:ba:60:00:
97:b7:bf:db:d5:53:89:e8:d2:a0:8b:8e:08:08:5a:
e8:9d:cd:63:df:2d:79:60:25:be:b8:5f:fc:fc:9c:
61:6f:8a:b1:e5:3e:41:30:e8:3d:c6:d5:d1:ee:f0:
4c:1f:be:31:16:36:24:7d:f7:1a:a5:61:16:09:a0:
7c:28:26:be:fd:8a:9c:c0:5f:55:84:69:cf:39:e6:
11:8d:42:6f:97:84:2b:fa:8e:47:8a:a8:3f:26:ae:
c1:d6:4b:3c:0f:ca:66:4f:e7:ee:15:59:e3:25:78:
13:74:b6:95:45:2e:2f:bd:8f:6f:06:c6:95:6f:a8:
65:b2:11:2b:38:a4:97:69:58:20:08:56:03:6b:d7:
96:70:1d:17:1d:44:20:16:e4:b5:a8:9f:9b:c5:93:
d8:3b:25:51:ec:17:9f:bc:db:ac:ac:d7:7d:d9:91:
d7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:77:A2:5F:BD:5F:FF:A8:00:47:9E:3C:36:86:E0:6B:79:55:93:3F
X509v3 Authority Key Identifier:
keyid:9A:5C:74:AE:3F:8C:D3:B6:79:AC:56:C4:73:F4:50:37:85:91:92:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/mlx0rj-M07Z5rFbEc_RQN4WRkms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mlx0rj-M07Z5rFbEc_RQN4WRkms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/IXeiX71f_6gAR548Nobga3lVkz8.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
119.16.0.0/16
125.169.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ca:e5:92:c7:23:6b:0f:51:72:b1:0f:ca:ed:3a:00:2e:a2:75:
15:f6:5f:b5:d7:c1:21:26:54:92:99:7a:ec:3b:8e:af:ad:9f:
5a:10:90:ba:30:47:f9:ab:e9:10:eb:50:be:28:bf:69:d1:9f:
bd:7b:ba:4d:99:50:27:d3:d2:fe:19:96:e5:2e:7c:d7:b4:a2:
09:12:68:5b:05:a4:2b:c8:53:2f:20:34:dc:92:10:59:1f:ea:
dd:a2:bb:59:d4:41:64:52:58:58:23:89:ca:c5:2b:8a:ed:65:
b8:9a:68:92:57:78:dc:4d:2c:96:7d:d5:19:92:75:5a:57:37:
57:42:03:99:29:59:59:86:15:02:c5:32:9b:70:1c:95:a8:37:
43:e8:b8:40:ad:28:95:3d:1d:1d:39:df:db:b2:4d:8d:8d:16:
64:dc:41:68:ee:73:e1:5d:f4:66:3b:84:2c:33:58:b8:d2:00:
6b:9f:aa:e8:11:61:ae:1f:d0:51:f7:84:81:48:8e:40:72:f2:
5c:b9:f5:1e:89:a9:37:30:ba:e3:2f:c4:a8:12:2a:ce:a5:34:
84:88:ba:eb:ed:d6:b1:f0:0d:11:17:1a:ff:7a:a0:69:7e:2b:
a5:84:d5:d4:1c:ca:10:95:01:69:2b:0b:a4:c0:fd:ce:7d:d0:
b2:b6:92:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:47:18 2025 by rpki-client