Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/817/-bSRvcEp4om-glNV4qUKBtugJAw.roa
File: -bSRvcEp4om-glNV4qUKBtugJAw.roa (raw, json)
Hash identifier: /8NC4o8PYUpDIdH/IoZv0HXPLO0HFNxff28IHGD6OC4=
Subject key identifier: F9:B4:91:BD:C1:29:E2:89:BE:82:53:55:E2:A5:0A:06:DB:A0:24:0C
Certificate issuer: /CN=2A711AA7DC60049B0B0D884897E015B1171F37B9
Certificate serial: 1148
Authority key identifier: 2A:71:1A:A7:DC:60:04:9B:0B:0D:88:48:97:E0:15:B1:17:1F:37:B9
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KnEap9xgBJsLDYhIl-AVsRcfN7k.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/-bSRvcEp4om-glNV4qUKBtugJAw.roa
Signing time: Wed 24 May 2023 03:53:33 +0000
ROA not before: Wed 24 May 2023 03:53:33 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 59077
IP address blocks: 106.75.128.0/20 maxlen: 20
106.75.144.0/20 maxlen: 20
106.75.160.0/20 maxlen: 20
106.75.176.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4424 (0x1148)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A711AA7DC60049B0B0D884897E015B1171F37B9
Validity
Not Before: May 24 03:53:33 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=F9B491BDC129E289BE825355E2A50A06DBA0240C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7c:e7:75:52:18:5d:ab:5d:cb:0a:88:5a:49:
f2:f9:e2:83:19:87:50:e1:69:e4:9a:33:19:fc:e4:
14:82:a6:11:bb:f7:bf:ba:8f:88:2e:9a:f5:01:3a:
6e:f4:eb:78:15:6c:ef:a8:3c:2c:aa:bc:8a:2f:b2:
c9:ab:29:c8:88:bc:bc:be:4e:d6:86:2d:a8:f7:74:
46:02:17:34:04:27:27:50:1c:2f:33:c0:e8:dd:84:
83:bb:72:33:59:83:97:d6:f7:af:88:f8:77:e8:f7:
45:98:32:ce:15:11:66:97:64:75:3f:bb:ac:8e:e2:
b1:28:80:b9:3a:1a:de:ec:e5:32:01:17:ac:ca:b6:
43:96:79:7b:0e:bb:5f:40:1c:ba:70:3f:cf:35:1f:
e8:61:36:96:53:54:78:70:b5:67:75:a4:95:44:22:
e9:a2:2c:78:cf:5d:f5:8c:d5:90:bd:ca:a2:fa:62:
a8:66:dc:c1:33:45:9d:bc:af:78:65:10:0e:0b:41:
fb:bc:ff:57:99:12:00:da:06:e5:63:d5:5a:e0:64:
be:14:a4:c2:d7:05:56:e4:8c:8b:ab:77:9b:3b:33:
27:df:b1:68:93:1d:5e:ed:30:db:9a:39:da:5a:13:
7a:c2:84:57:43:81:d2:6c:b8:29:b8:6f:36:dc:87:
93:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:B4:91:BD:C1:29:E2:89:BE:82:53:55:E2:A5:0A:06:DB:A0:24:0C
X509v3 Authority Key Identifier:
keyid:2A:71:1A:A7:DC:60:04:9B:0B:0D:88:48:97:E0:15:B1:17:1F:37:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/KnEap9xgBJsLDYhIl-AVsRcfN7k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KnEap9xgBJsLDYhIl-AVsRcfN7k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/-bSRvcEp4om-glNV4qUKBtugJAw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.75.128.0/18
Signature Algorithm: sha256WithRSAEncryption
10:83:63:71:2f:21:c5:d7:52:fa:c9:7c:c6:92:e5:ad:87:1a:
e9:10:a5:d3:90:f0:e9:c4:f7:4f:a5:28:2c:7a:02:a4:6e:25:
aa:6a:69:52:0c:a4:32:28:a5:3c:ff:5c:ff:f5:66:ac:38:5a:
72:54:43:34:e7:e2:10:9a:d0:7b:cc:fc:65:28:bf:71:f5:34:
10:67:a2:03:92:01:73:2d:37:45:0e:28:79:ed:bd:2e:57:5d:
5d:b3:10:46:37:5a:95:70:91:09:6e:12:f7:eb:0d:3f:80:95:
77:d6:14:37:4e:b0:c0:39:98:ed:04:11:ac:1b:68:24:e4:4e:
74:65:85:aa:5b:45:d7:c6:79:0f:e3:6d:88:3d:a1:40:28:ab:
8d:36:6b:24:0c:50:45:9b:40:23:c8:4d:88:3d:fb:af:aa:ab:
a8:08:8a:78:73:a5:e9:19:95:c1:c8:92:db:7a:24:9c:98:26:
84:92:04:56:8d:c3:9b:b0:2f:86:e4:f3:23:d0:16:7b:c7:cb:
d1:9a:35:7b:7f:65:1c:68:eb:6b:5d:50:c5:8b:b1:d1:0b:80:
e6:c6:7c:88:7e:41:80:fa:09:fe:d2:23:bd:a3:91:e9:68:ab:
c5:8e:0d:3f:7a:d7:46:f1:31:b5:a3:16:07:8f:d9:ec:51:1d:
a9:8b:22:ec
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICEUgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE3
MTFBQTdEQzYwMDQ5QjBCMEQ4ODQ4OTdFMDE1QjExNzFGMzdCOTAeFw0yMzA1MjQw
MzUzMzNaFw0yNDAzMjcwMTEzMTBaMDMxMTAvBgNVBAMTKEY5QjQ5MUJEQzEyOUUy
ODlCRTgyNTM1NUUyQTUwQTA2REJBMDI0MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVfOd1Uhhdq13LCohaSfL54oMZh1DhaeSaMxn85BSCphG797+6
j4gumvUBOm7063gVbO+oPCyqvIovssmrKciIvLy+TtaGLaj3dEYCFzQEJydQHC8z
wOjdhIO7cjNZg5fW96+I+Hfo90WYMs4VEWaXZHU/u6yO4rEogLk6Gt7s5TIBF6zK
tkOWeXsOu19AHLpwP881H+hhNpZTVHhwtWd1pJVEIumiLHjPXfWM1ZC9yqL6Yqhm
3MEzRZ28r3hlEA4LQfu8/1eZEgDaBuVj1VrgZL4UpMLXBVbkjIurd5s7MyffsWiT
HV7tMNuaOdpaE3rChFdDgdJsuCm4bzbch5OFAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQU+bSRvcEp4om+glNV4qUKBtugJAwwHwYDVR0jBBgwFoAUKnEap9xgBJsLDYhI
l+AVsRcfN7kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODE3
L0tuRWFwOXhnQkpzTERZaElsLUFWc1JjZk43ay5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvS25FYXA5eGdCSnNMRFloSWwtQVZzUmNmTjdrLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODE3Ly1iU1J2Y0VwNG9tLWds
TlY0cVVLQnR1Z0pBdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAZqS4AwDQYJKoZIhvcNAQELBQADggEBABCDY3EvIcXXUvrJfMaS5a2HGukQpdOQ
8OnE90+lKCx6AqRuJapqaVIMpDIopTz/XP/1Zqw4WnJUQzTn4hCa0HvM/GUov3H1
NBBnogOSAXMtN0UOKHntvS5XXV2zEEY3WpVwkQluEvfrDT+AlXfWFDdOsMA5mO0E
EawbaCTkTnRlhapbRdfGeQ/jbYg9oUAoq402ayQMUEWbQCPITYg9+6+qq6gIinhz
pekZlcHIktt6JJyYJoSSBFaNw5uwL4bk8yPQFnvHy9GaNXt/ZRxo62tdUMWLsdEL
gObGfIh+QYD6Cf7SI72jkeloq8WODT9610bxMbWjFgeP2exRHamLIuw=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:19 2023 by rpki-client on console-ams.rpki-client.org