Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/r3ULMu5hMpLIDGzaSWvPVyQUcZo.roa
File: r3ULMu5hMpLIDGzaSWvPVyQUcZo.roa (raw, json)
Hash identifier: zsWA8PYLla6yf96s01235wYmYJFmW4iibq9RQKb5OaQ=
Subject key identifier: AF:75:0B:32:EE:61:32:92:C8:0C:6C:DA:49:6B:CF:57:24:14:71:9A
Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9
Certificate serial: 0C91
Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/r3ULMu5hMpLIDGzaSWvPVyQUcZo.roa
Signing time: Wed 10 Jul 2024 08:24:37 +0000
ROA not before: Wed 10 Jul 2024 08:24:37 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 136907
IP address blocks: 110.41.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3217 (0xc91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9
Validity
Not Before: Jul 10 08:24:37 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=AF750B32EE613292C80C6CDA496BCF572414719A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1f:f4:e3:72:3e:ff:07:fe:f9:15:e8:1c:b7:
6c:3e:26:82:d0:e6:1e:3b:26:d4:05:e3:d6:a2:92:
0c:3d:8a:f9:61:0d:94:6b:ba:d8:77:c9:c5:7a:94:
03:41:10:fa:90:51:03:50:1b:89:47:b8:ec:56:be:
e5:c0:dd:d7:fe:97:b2:51:f5:c1:fe:d1:1a:82:15:
c4:bf:3f:c4:cd:5d:5f:0c:19:ae:7f:1c:c3:04:32:
d5:4b:40:48:ef:e6:e3:cb:39:8b:7d:b1:84:24:71:
79:62:f2:3d:a5:09:e3:91:31:00:0c:d1:7a:4d:0b:
80:1a:96:18:a7:26:4b:3d:eb:aa:60:dc:e1:3f:88:
2c:b9:eb:36:b4:f0:d8:cd:8a:55:0b:96:6b:46:58:
35:89:c0:e7:65:4c:ae:84:04:c7:94:7b:57:16:3b:
3b:12:97:c2:cd:d1:18:dd:6c:3a:74:7a:9c:83:7b:
8f:a8:55:25:e0:57:7c:8f:6b:8e:e5:bd:34:af:0d:
62:97:98:cb:7e:3a:e2:0f:9e:a4:df:c5:d3:33:5d:
16:00:9c:03:41:9a:0b:1b:1a:3e:14:e7:e2:ef:58:
9b:4d:ac:2a:05:2c:34:fe:09:09:9e:f4:d3:a7:78:
57:11:0d:ac:de:80:93:59:35:2c:73:a1:04:65:fc:
06:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:75:0B:32:EE:61:32:92:C8:0C:6C:DA:49:6B:CF:57:24:14:71:9A
X509v3 Authority Key Identifier:
keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/r3ULMu5hMpLIDGzaSWvPVyQUcZo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
110.41.208.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:d6:b2:77:00:f9:75:5d:a5:ab:e3:72:5a:7b:a1:d8:b0:60:
ad:47:43:da:ca:f0:77:45:7d:fe:83:9f:c7:1d:8c:7f:83:e7:
63:b9:ed:bc:28:f6:75:e7:51:61:ed:7b:c0:1d:1d:78:f1:99:
8b:d8:1f:04:cf:e0:18:74:d3:09:8e:3c:d3:a1:d0:9c:d6:25:
e2:e1:c6:e1:8b:99:77:96:62:10:b7:f0:32:2b:52:15:d2:25:
d2:76:88:98:5e:1d:5e:9b:b1:d0:00:75:5c:bc:ac:da:58:a6:
73:82:45:34:90:16:91:85:68:ba:f3:48:9a:88:b3:c5:f5:38:
ce:23:27:ea:16:ee:48:e1:d0:f7:45:8d:2b:a7:f8:10:b0:1d:
25:af:c9:0c:7b:75:11:53:ea:23:ac:c5:ed:1d:c8:84:71:fd:
8f:2a:1e:00:86:db:3d:fc:30:cc:e4:2d:04:46:f0:66:f3:fe:
d9:bb:35:67:ae:6c:17:f0:df:27:5c:de:a9:43:98:c1:dd:91:
e3:c9:5a:df:32:9c:60:07:72:a2:78:d4:bb:c3:fa:9e:1a:13:
33:4a:82:5c:c6:03:20:85:31:a7:93:51:8a:ef:dd:47:ce:9a:
37:62:30:d4:f5:d4:4e:8d:5c:09:37:89:98:00:02:78:08:b4:
3d:4f:02:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:00:24 2025 by rpki-client