Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/817/DFokCBiBvE9OArZsmWHf8Q4QvJc.roa
File: DFokCBiBvE9OArZsmWHf8Q4QvJc.roa (raw, json)
Hash identifier: GRuK7Ue5NSzhEQfu5z9yAgeM4bDJ/tY5VzuLVmMCaeg=
Subject key identifier: 0C:5A:24:08:18:81:BC:4F:4E:02:B6:6C:99:61:DF:F1:0E:10:BC:97
Certificate issuer: /CN=E5D7C1B0C298ED183371C9DFA49D5B5FCDDE984F
Certificate serial: 0759
Authority key identifier: E5:D7:C1:B0:C2:98:ED:18:33:71:C9:DF:A4:9D:5B:5F:CD:DE:98:4F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5dfBsMKY7RgzccnfpJ1bX83emE8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/DFokCBiBvE9OArZsmWHf8Q4QvJc.roa
Signing time: Thu 14 Apr 2022 06:48:17 +0000
ROA not before: Thu 14 Apr 2022 06:48:17 +0000
ROA not after: Fri 27 May 2022 04:59:52 +0000
asID: 59077
IP address blocks: 106.75.128.0/20 maxlen: 20
106.75.144.0/20 maxlen: 20
106.75.160.0/20 maxlen: 20
106.75.176.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1881 (0x759)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E5D7C1B0C298ED183371C9DFA49D5B5FCDDE984F
Validity
Not Before: Apr 14 06:48:17 2022 GMT
Not After : May 27 04:59:52 2022 GMT
Subject: CN=0C5A24081881BC4F4E02B66C9961DFF10E10BC97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ee:33:db:f1:b2:64:ce:ce:6c:61:8d:46:90:
e0:72:6a:89:e4:ed:79:0e:92:8f:5b:8a:b3:8a:8b:
40:6c:80:36:b6:20:e7:ef:1d:1e:e5:f9:f3:c5:b6:
90:f5:c5:1d:7f:c6:43:6d:57:ed:1f:7f:d7:5b:03:
b3:09:bc:aa:b5:55:e6:97:86:9d:fc:66:9f:4d:cd:
91:84:4c:c1:15:24:e2:cd:b6:bc:43:c3:a1:3e:89:
d2:5b:83:6e:2d:40:a5:2e:fd:cb:c8:bc:28:6d:a8:
75:8c:cf:f6:7e:11:1f:a1:07:9e:34:7d:3b:2a:4b:
2c:b6:3a:56:a3:a5:08:4e:19:b8:76:26:13:e6:11:
a2:f8:be:1f:9f:68:2c:f9:27:b0:7c:a9:9a:4c:77:
21:70:93:82:0a:b6:d8:91:53:4f:e3:66:12:dc:0a:
db:a5:e5:30:a1:8e:50:c6:c6:bb:30:d8:12:54:22:
13:f5:ba:fb:5c:fc:ef:87:9a:69:58:2c:b5:34:21:
b4:4e:98:00:76:1f:b8:f3:fc:0f:87:0a:b7:d8:62:
35:53:41:34:b3:5b:61:f8:e2:95:3c:8f:d1:8b:84:
11:e6:68:59:ac:8a:d8:46:e5:be:56:ed:c0:ea:f4:
e0:12:37:1d:6a:1d:db:16:57:f7:19:0b:d5:cc:78:
45:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:5A:24:08:18:81:BC:4F:4E:02:B6:6C:99:61:DF:F1:0E:10:BC:97
X509v3 Authority Key Identifier:
keyid:E5:D7:C1:B0:C2:98:ED:18:33:71:C9:DF:A4:9D:5B:5F:CD:DE:98:4F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/5dfBsMKY7RgzccnfpJ1bX83emE8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5dfBsMKY7RgzccnfpJ1bX83emE8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/DFokCBiBvE9OArZsmWHf8Q4QvJc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.75.128.0/18
Signature Algorithm: sha256WithRSAEncryption
b9:7a:fc:58:ad:19:4c:3d:c4:9c:ee:28:a4:82:f6:d0:ba:28:
35:87:ed:bd:2a:66:63:24:4b:45:55:48:a6:e3:f4:1b:74:99:
42:96:62:e3:ea:92:3c:d7:58:5c:0c:6c:7d:46:23:b4:e1:29:
3c:10:45:e7:62:93:cc:8a:0e:c4:7a:c3:a4:be:d9:bf:25:33:
db:d7:44:81:28:d2:7a:c3:88:af:af:02:ad:cf:4c:cb:51:13:
03:39:4a:36:95:41:05:f1:53:fd:d9:cb:61:e0:9c:1d:83:6f:
ea:b7:38:56:d2:bd:9d:09:ec:f4:36:6b:b5:c9:27:b4:cd:de:
d9:68:05:92:41:54:8d:08:07:30:3d:db:37:08:44:cc:82:aa:
7b:fc:18:9d:8d:9b:5a:14:a3:ea:40:9b:8d:6f:e6:45:32:02:
4e:89:1d:bf:79:60:52:5e:37:c2:65:61:68:8c:5b:03:e3:21:
cf:ea:df:dc:d1:17:ba:6b:1a:70:5e:df:d5:d7:2e:ec:73:65:
91:b3:68:f0:26:dd:bb:40:72:88:71:c3:9a:dd:b1:eb:48:23:
a4:18:3f:76:e2:fe:85:a8:0c:db:a5:29:1e:16:be:01:20:f8:
68:f0:1b:ca:4c:b9:4e:7d:64:48:01:bc:2d:be:35:33:11:4e:
aa:b4:fd:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:24 2023 by rpki-client on console-fra.rpki-client.org