Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/U8qYK1vhTwjjfQbu9OUqI1QJjSs.roa
File: U8qYK1vhTwjjfQbu9OUqI1QJjSs.roa (raw, json)
Hash identifier: 1a/FsTYZDKFc/XEXXk6OeQ/g1pafF8X8fgrHFrKYdfA=
Subject key identifier: 53:CA:98:2B:5B:E1:4F:08:E3:7D:06:EE:F4:E5:2A:23:54:09:8D:2B
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 1392
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/U8qYK1vhTwjjfQbu9OUqI1QJjSs.roa
Signing time: Mon 02 Jun 2025 04:09:23 +0000
ROA not before: Mon 02 Jun 2025 04:09:23 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 119.16.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5010 (0x1392)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: Jun 2 04:09:23 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=53CA982B5BE14F08E37D06EEF4E52A2354098D2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:af:d1:f2:91:5e:d3:a2:4a:be:5d:35:4a:81:
69:4d:77:07:12:53:95:eb:f8:f1:ed:16:6c:e7:0c:
4b:d5:ac:99:7b:75:72:e8:68:84:21:d4:d6:b4:b9:
06:83:4f:13:b2:e5:99:fd:fe:94:a5:8f:08:e7:82:
a0:77:8f:46:da:52:4e:ea:2e:06:0b:7a:37:7c:64:
9b:50:57:e0:3d:e5:be:56:e4:f6:bd:53:4b:3f:ba:
b6:e6:b1:aa:65:7e:5a:b9:e5:ac:be:c2:2f:1d:a7:
0d:fb:1d:ae:39:f9:1c:d9:5b:95:d5:03:7d:b0:c9:
04:08:17:59:f4:1e:17:af:8d:d1:a9:73:0c:db:7c:
41:9a:8c:ad:aa:9b:f4:ac:c3:64:b9:4f:b0:f9:bd:
81:3b:9e:75:e3:79:81:b6:0c:b9:4e:ad:e2:f2:59:
56:0b:e7:05:f3:14:cc:0f:1a:db:d1:18:9b:6c:84:
0c:20:cf:8e:d5:68:8b:6a:3c:aa:eb:4f:9c:78:29:
63:28:95:ae:8c:ee:95:1f:b7:86:55:83:23:95:00:
a7:97:f2:91:6d:07:5e:b0:4d:ce:d2:15:35:4e:0c:
00:9b:59:4f:0e:88:df:2d:d5:b4:02:a1:db:86:30:
79:79:18:e8:30:17:05:b1:4b:35:de:e6:9f:61:cb:
94:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CA:98:2B:5B:E1:4F:08:E3:7D:06:EE:F4:E5:2A:23:54:09:8D:2B
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/U8qYK1vhTwjjfQbu9OUqI1QJjSs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.16.0.0/16
Signature Algorithm: sha256WithRSAEncryption
40:d2:5c:c8:ce:d5:83:b2:df:8c:69:d5:42:13:c0:8b:cb:dc:
fb:5b:83:d5:81:e7:17:69:cc:21:a9:b7:21:6c:ad:c1:28:9e:
b2:84:09:a1:fc:a6:f4:67:3c:93:38:2a:f2:4a:a7:32:75:af:
bf:35:99:88:24:f0:ed:41:a7:f6:dc:fe:0d:79:50:eb:2f:af:
ac:f1:4f:01:6e:12:be:ca:b4:2a:a3:0c:f5:65:62:78:40:51:
3f:a8:b4:3b:7b:2d:a8:a3:c8:ad:75:1c:72:43:db:e3:e7:20:
ca:f7:3f:22:b3:1a:37:71:12:c8:8f:46:bc:fa:88:7e:5a:b0:
f1:35:43:50:cb:c1:25:f0:91:c4:b5:78:f8:2b:9e:9d:b2:fe:
9c:f6:1e:c2:8d:6d:b6:aa:1a:e7:dd:6f:77:53:5e:7a:42:3b:
2e:4a:e7:6a:f1:e7:ab:d5:3e:b8:0b:23:4a:e8:0d:e9:29:d6:
67:b5:e6:f9:64:55:a9:ed:4a:f2:c9:89:23:70:f0:3f:62:74:
42:07:d2:ea:c7:5c:a1:ec:90:18:f8:43:fb:df:7c:79:f0:eb:
8a:36:53:c9:85:73:4f:02:da:b1:af:0a:d9:97:4c:95:08:4a:
5c:f9:fc:44:8d:dd:b7:50:9b:8b:9d:a9:70:5d:2b:aa:08:e8:
a7:48:62:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 20:06:59 2025 by rpki-client