Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/TtTRKDa8GeCggHLQeSgfuWlYytE.roa
File: TtTRKDa8GeCggHLQeSgfuWlYytE.roa (raw, json)
Hash identifier: GZ3phOAWtdc/Hb532suLlm/rGPpHgWSEEsFQzOLUz/Q=
Subject key identifier: 4E:D4:D1:28:36:BC:19:E0:A0:80:72:D0:79:28:1F:B9:69:58:CA:D1
Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D
Certificate serial: E6
Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/TtTRKDa8GeCggHLQeSgfuWlYytE.roa
Signing time: Fri 06 Jun 2025 02:36:25 +0000
ROA not before: Fri 06 Jun 2025 02:36:25 +0000
ROA not after: Wed 27 May 2026 07:38:41 +0000
asID: 9808
IP address blocks: 240a:40c3:c010::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230 (0xe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D
Validity
Not Before: Jun 6 02:36:25 2025 GMT
Not After : May 27 07:38:41 2026 GMT
Subject: CN=4ED4D12836BC19E0A08072D079281FB96958CAD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:90:12:99:b8:43:fc:d3:e1:fa:a0:92:43:f4:
4d:b6:ca:82:99:7b:08:85:e0:a4:7e:72:14:f0:81:
a0:ef:cc:43:61:6f:53:26:39:a7:a0:f8:e9:c4:df:
e7:1f:a1:36:3b:5c:de:05:fc:df:cc:a5:de:d9:c5:
95:47:7d:c1:50:63:a2:a5:75:f7:14:3e:dd:7d:83:
8e:42:a2:be:62:fe:bf:14:82:07:f7:ed:13:e5:82:
ad:c0:29:f5:5e:7e:94:dc:cb:3d:40:89:c3:d6:f9:
3f:82:86:8b:16:65:bf:ab:d6:02:47:00:69:fe:b5:
3c:cc:12:cf:58:91:57:d3:9c:f0:1f:29:1a:4b:b2:
df:36:db:0a:91:28:59:cb:20:3f:89:ff:40:27:69:
f6:eb:cc:0d:83:a0:da:a1:bf:14:ea:19:0e:04:46:
8d:26:95:18:54:4b:5a:59:7d:81:29:61:6e:3c:de:
c3:a8:d8:c6:11:05:43:c6:1f:f3:92:7f:62:31:d7:
20:cf:cd:8c:d1:5e:b0:40:5f:bd:57:7f:8e:f5:a2:
7e:95:9b:e8:61:4e:2e:78:e7:ef:43:ff:0a:4f:fb:
5e:3e:07:e1:b5:5b:96:90:95:a7:d5:8c:84:55:65:
bf:7f:97:f9:4c:a6:76:75:49:92:5b:20:83:03:2e:
7f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D4:D1:28:36:BC:19:E0:A0:80:72:D0:79:28:1F:B9:69:58:CA:D1
X509v3 Authority Key Identifier:
keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/TtTRKDa8GeCggHLQeSgfuWlYytE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:40c3:c010::/44
Signature Algorithm: sha256WithRSAEncryption
6c:70:ab:bf:a8:31:7b:69:e9:87:9e:32:8a:c0:e3:1f:46:bd:
61:54:21:ec:46:7f:65:2b:a4:dd:1e:0c:84:db:24:77:ad:6a:
fa:ee:9f:3a:27:a9:94:11:c8:45:8d:0b:da:54:f9:a9:8d:6d:
06:47:a2:6c:d4:e4:c2:53:eb:30:bb:cd:fb:ad:da:93:2a:32:
eb:32:dc:e1:2b:f9:3f:38:00:98:09:14:0c:7a:74:c2:ba:c4:
fa:1e:b9:30:ee:55:11:bf:d0:ec:88:96:67:4f:df:21:1c:c8:
ed:f3:1c:7e:f3:d1:2d:6f:a3:25:e3:7f:b6:d6:61:d9:0c:92:
44:64:91:bc:65:8d:63:b4:7e:09:05:53:c4:ab:80:5c:5b:3a:
69:f6:28:01:e9:00:6f:22:6e:6b:e4:ef:f1:6b:d1:48:72:61:
cf:7d:8e:f2:56:4f:18:11:07:ce:41:60:d0:7f:36:c4:22:f1:
65:cf:eb:37:c1:72:6a:16:24:ad:5f:f6:6b:d4:89:da:45:89:
ff:ad:27:f1:cd:ec:da:c3:ac:ce:ea:60:6d:dd:aa:0c:54:88:
da:07:aa:9c:f3:f7:23:9f:52:c8:48:c7:cd:db:46:e9:0b:fa:
2c:af:65:71:f0:84:cf:67:01:e8:21:19:2e:4a:3e:79:36:78:
28:bd:22:c1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Nov 5 19:31:35 2025 by rpki-client