Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2391/Usk0R5sf16Uk682SroHAsq1R34U.roa
File: Usk0R5sf16Uk682SroHAsq1R34U.roa (raw, json)
Hash identifier: 1jl1QUl1ymghPbT+vzCx6uGI03ZLjpchL2eyb9GntMM=
Subject key identifier: 52:C9:34:47:9B:1F:D7:A5:24:EB:CD:92:AE:81:C0:B2:AD:51:DF:85
Certificate issuer: /CN=07A608409B251BCB1A6C030A1C21BA41CDBCBF56
Certificate serial: 07D1
Authority key identifier: 07:A6:08:40:9B:25:1B:CB:1A:6C:03:0A:1C:21:BA:41:CD:BC:BF:56
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/B6YIQJslG8sabAMKHCG6Qc28v1Y.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/Usk0R5sf16Uk682SroHAsq1R34U.roa
Signing time: Tue 13 Jun 2023 13:54:01 +0000
ROA not before: Tue 13 Jun 2023 13:54:01 +0000
ROA not after: Fri 07 Jun 2024 02:16:11 +0000
asID: 139021
IP address blocks: 43.250.116.0/22 maxlen: 24
103.235.184.0/22 maxlen: 24
150.242.224.0/22 maxlen: 24
219.234.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2001 (0x7d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07A608409B251BCB1A6C030A1C21BA41CDBCBF56
Validity
Not Before: Jun 13 13:54:01 2023 GMT
Not After : Jun 7 02:16:11 2024 GMT
Subject: CN=52C934479B1FD7A524EBCD92AE81C0B2AD51DF85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:de:56:60:eb:d5:05:c5:67:ae:5a:6e:5d:5e:
a9:d8:c6:cd:07:f1:ca:ce:8f:2b:0d:da:c7:1a:38:
63:34:5c:39:99:2c:80:e5:c0:ae:3e:a1:e8:a7:f8:
76:99:79:ab:dc:e1:13:5b:0c:eb:1d:3a:e6:17:04:
53:2d:9c:1e:b7:39:30:7b:12:42:fe:08:d9:ee:ef:
33:b9:9d:a3:20:c2:60:aa:8f:b5:67:12:31:a3:8d:
38:1d:7e:26:22:f8:9a:f9:2e:df:a8:4b:7e:ed:c4:
bd:ec:21:2b:ce:fd:40:37:73:14:3b:5e:93:55:d4:
f8:3e:fd:39:90:4f:4d:81:0e:f3:b3:e7:95:08:94:
6a:d9:2c:46:e9:4d:13:a8:fe:3b:4d:2f:a6:13:91:
b0:82:b8:76:eb:23:9b:82:fd:c5:76:62:82:aa:d7:
d7:2f:b1:0b:4c:32:1a:b6:f6:4d:a7:7d:a2:38:ba:
06:28:ce:b7:a8:dc:7e:d0:0f:cd:2b:66:bd:49:e3:
8b:3f:f4:2a:85:01:81:3e:46:e2:5f:48:4c:8b:ed:
1d:26:e4:d6:d1:39:db:c9:f8:48:e4:32:37:43:b7:
cb:94:08:1c:43:26:43:77:99:16:21:68:ad:4c:e3:
c1:0d:58:33:e7:20:7b:05:a6:3c:82:05:68:33:3c:
16:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:C9:34:47:9B:1F:D7:A5:24:EB:CD:92:AE:81:C0:B2:AD:51:DF:85
X509v3 Authority Key Identifier:
keyid:07:A6:08:40:9B:25:1B:CB:1A:6C:03:0A:1C:21:BA:41:CD:BC:BF:56
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/B6YIQJslG8sabAMKHCG6Qc28v1Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/B6YIQJslG8sabAMKHCG6Qc28v1Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2391/Usk0R5sf16Uk682SroHAsq1R34U.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.116.0/22
103.235.184.0/22
150.242.224.0/22
219.234.8.0/21
Signature Algorithm: sha256WithRSAEncryption
0b:85:2c:02:5e:97:4e:4c:d3:3d:79:f8:98:8b:7e:ae:de:6d:
4e:e5:fa:dc:24:43:a3:5a:93:86:72:7e:f4:3f:7a:b9:06:59:
b1:62:73:a4:93:e9:e5:37:2b:9f:ec:9e:e2:35:fa:78:4c:de:
6f:a5:7a:de:1e:f8:53:a8:03:cf:eb:27:20:97:59:2d:17:5d:
82:e5:a3:c0:43:fb:db:ed:1b:5d:88:24:6a:57:e2:88:ac:4f:
8c:5a:0d:22:d5:63:37:b8:55:94:22:c1:d5:3a:ff:f8:a7:a4:
0a:35:0a:ac:81:6f:fd:40:c8:8f:5e:ee:26:6c:0d:9b:6f:45:
6a:9b:90:86:af:e3:77:9a:8f:60:5f:96:6c:72:fa:de:a3:0b:
0b:19:cc:fd:04:1e:08:e0:e1:b5:c3:b8:64:7c:e4:87:d1:b2:
1e:f2:18:bf:c4:70:66:67:57:87:c6:53:14:d0:b6:0c:b8:43:
b9:b8:b9:bd:1b:ae:ed:20:98:e7:44:da:17:0c:db:af:34:b3:
b8:b9:90:86:2e:e6:98:47:78:88:1f:dc:9f:72:9b:54:a1:e6:
cc:60:a8:8d:a8:b2:87:57:bd:12:cb:2d:a5:db:27:cc:d6:42:
f9:37:f5:53:e2:cd:03:23:9f:33:fa:41:1f:e2:06:f0:35:c7:
27:cb:e6:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:37:13 2025 by rpki-client