Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/TuRAimkG7nUfxwwnfG2ggisWEWQ.roa
File: TuRAimkG7nUfxwwnfG2ggisWEWQ.roa (raw, json)
Hash identifier: rJ770ZZ28gQ4Oy6pYNR7fhAhl+t7lmth+T2+S8AjKOM=
Subject key identifier: 4E:E4:40:8A:69:06:EE:75:1F:C7:0C:27:7C:6D:A0:82:2B:16:11:64
Certificate issuer: /CN=9A5C74AE3F8CD3B679AC56C473F450378591926B
Certificate serial: 1C82
Authority key identifier: 9A:5C:74:AE:3F:8C:D3:B6:79:AC:56:C4:73:F4:50:37:85:91:92:6B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mlx0rj-M07Z5rFbEc_RQN4WRkms.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/TuRAimkG7nUfxwwnfG2ggisWEWQ.roa
Signing time: Fri 17 Jan 2025 01:23:28 +0000
ROA not before: Fri 17 Jan 2025 01:23:28 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
119.16.0.0/16 maxlen: 16
125.169.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7298 (0x1c82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A5C74AE3F8CD3B679AC56C473F450378591926B
Validity
Not Before: Jan 17 01:23:28 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=4EE4408A6906EE751FC70C277C6DA0822B161164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b2:75:c5:0c:3d:7f:9d:ac:24:f0:12:a5:94:
06:31:62:45:63:ed:34:ed:c4:33:16:3e:a8:85:ab:
4c:19:19:91:77:05:24:05:91:57:27:85:0a:48:35:
3c:2c:73:2d:56:6e:8b:e2:1b:41:5c:7d:dc:85:25:
b3:52:34:28:5d:d6:9f:09:38:48:ed:f8:88:a5:4a:
3c:e5:3a:c2:22:3b:05:91:2b:63:cb:b9:ee:81:72:
51:03:dd:bc:f5:c1:3c:46:ee:7c:50:06:54:ac:6c:
8f:33:54:44:04:4b:1a:d7:63:bd:9c:5f:65:00:69:
26:6d:46:44:17:c6:9d:cb:6d:32:fb:71:b2:b7:20:
4f:8d:85:19:d8:c6:af:61:79:c3:0e:3c:c6:23:d7:
0e:0b:02:60:65:13:50:7c:dc:00:11:74:30:97:5e:
76:76:76:1e:44:dd:38:13:aa:28:21:b4:95:a7:4d:
aa:63:5b:7b:32:59:c0:6e:90:99:b9:5a:77:2d:89:
a3:63:b6:39:5d:1c:3a:89:e5:c6:b0:cb:5e:24:c1:
db:00:48:1f:d8:20:4e:b0:e3:7b:57:4a:6c:25:94:
17:b0:63:a5:ec:8d:01:c6:aa:1f:05:6f:a8:89:b2:
2b:f4:70:a3:5b:4b:1f:e7:24:54:f4:2e:3a:46:9c:
09:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E4:40:8A:69:06:EE:75:1F:C7:0C:27:7C:6D:A0:82:2B:16:11:64
X509v3 Authority Key Identifier:
keyid:9A:5C:74:AE:3F:8C:D3:B6:79:AC:56:C4:73:F4:50:37:85:91:92:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/mlx0rj-M07Z5rFbEc_RQN4WRkms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mlx0rj-M07Z5rFbEc_RQN4WRkms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/TuRAimkG7nUfxwwnfG2ggisWEWQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
119.16.0.0/16
125.169.0.0/16
Signature Algorithm: sha256WithRSAEncryption
98:34:c7:3a:5f:97:66:99:e1:09:ab:18:20:76:ec:01:f4:4f:
f8:3e:6b:e1:87:46:5f:83:3e:5a:61:f6:e5:9e:f0:9b:d1:e1:
10:be:21:87:48:c5:01:a9:91:be:6d:44:99:a7:7b:0e:3e:93:
10:3f:c7:9a:10:30:fa:fe:c5:24:1f:fb:43:2d:87:5b:3e:22:
b3:50:e4:1f:3c:18:2a:f3:db:69:b3:92:44:78:b9:79:81:6c:
97:4e:e3:57:cd:ad:d3:87:7f:f7:a6:6b:a5:1e:9a:4c:3f:5e:
f1:a6:a0:10:c8:db:04:2e:26:17:0f:16:09:94:ec:67:a4:66:
0a:d1:45:c7:ed:1f:b5:36:45:33:5f:cc:fb:0b:ac:ca:28:28:
da:11:40:7f:84:72:51:cc:9a:27:65:de:a5:c4:93:02:27:ff:
bc:6c:24:84:ad:3f:ff:e8:81:d1:19:c9:e4:75:7b:63:88:14:
0e:bf:a6:68:55:7e:71:d5:56:83:c1:bf:fe:30:fa:45:cc:d7:
b1:f4:22:30:cc:cf:19:02:ab:78:b2:2d:d5:3f:cc:33:93:2c:
6f:0e:26:a7:e6:4b:b6:ff:4c:87:dd:f2:e9:91:96:e4:60:85:
0b:f2:80:19:4c:0f:90:c8:ac:a9:3c:e6:90:b4:19:e4:03:b3:
53:68:19:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:39:34 2025 by rpki-client