Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/890/O1VHaRstjPymjS6rRtNqg0EriGk.roa
File: O1VHaRstjPymjS6rRtNqg0EriGk.roa (raw, json)
Hash identifier: waLqHgRVQeRNCPKZmpsDX5bV7bv/FjODZgzedqour18=
Subject key identifier: 3B:55:47:69:1B:2D:8C:FC:A6:8D:2E:AB:46:D3:6A:83:41:2B:88:69
Certificate issuer: /CN=0EE863AC570AEEA1F930BEA5E76AAE7DD553804E
Certificate serial: 08B4
Authority key identifier: 0E:E8:63:AC:57:0A:EE:A1:F9:30:BE:A5:E7:6A:AE:7D:D5:53:80:4E
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DuhjrFcK7qH5ML6l52qufdVTgE4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/O1VHaRstjPymjS6rRtNqg0EriGk.roa
Signing time: Wed 18 Dec 2024 01:45:11 +0000
ROA not before: Wed 18 Dec 2024 01:45:11 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 13378
IP address blocks: 103.205.252.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2228 (0x8b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0EE863AC570AEEA1F930BEA5E76AAE7DD553804E
Validity
Not Before: Dec 18 01:45:11 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=3B5547691B2D8CFCA68D2EAB46D36A83412B8869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:49:f1:98:66:d9:cf:59:05:4d:8c:24:5d:48:
87:36:c9:2c:77:79:d2:f4:50:a7:8f:50:2d:34:d1:
87:a7:8e:c7:bb:76:96:7e:53:20:b6:23:96:5c:e7:
5f:3f:8a:29:b3:71:4c:09:74:18:d2:74:9d:f3:5d:
27:33:82:d4:bd:3c:08:d5:2f:18:3c:ae:b3:59:18:
2c:59:c0:56:ec:3f:39:49:95:53:4a:49:c3:2c:c9:
99:9d:e0:ba:55:99:53:bb:2e:5a:c8:3c:59:af:d2:
a7:e3:a3:f3:27:8d:7c:24:79:3c:c0:fc:70:f7:25:
43:9c:d9:d5:b8:a5:47:ed:4c:b5:c1:59:f4:1d:c4:
09:9f:b1:09:fc:a1:49:77:b8:b7:ff:dd:63:a0:dc:
54:8c:54:e0:af:3a:14:f0:95:28:c1:e8:56:8e:15:
a7:f6:e7:aa:8c:eb:61:69:b3:1e:05:99:1b:cc:d6:
45:3d:fe:36:07:38:61:c7:43:93:46:36:65:65:57:
ab:d5:be:14:4f:ae:68:d9:61:35:88:89:4f:ca:86:
df:2b:8a:be:4d:3e:00:af:e0:d5:37:8b:95:f4:bc:
fd:ef:e3:58:c9:70:2e:24:c2:fc:b6:ee:c0:8f:28:
44:3b:30:89:3e:94:95:e9:96:5f:70:76:07:39:9a:
68:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:55:47:69:1B:2D:8C:FC:A6:8D:2E:AB:46:D3:6A:83:41:2B:88:69
X509v3 Authority Key Identifier:
keyid:0E:E8:63:AC:57:0A:EE:A1:F9:30:BE:A5:E7:6A:AE:7D:D5:53:80:4E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/DuhjrFcK7qH5ML6l52qufdVTgE4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DuhjrFcK7qH5ML6l52qufdVTgE4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/O1VHaRstjPymjS6rRtNqg0EriGk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.205.252.0/22
Signature Algorithm: sha256WithRSAEncryption
79:dc:b5:28:63:f9:41:c5:2f:fe:92:68:a8:bd:c9:57:d2:4c:
66:77:6c:b9:cc:60:4c:82:00:f3:36:5f:f3:fd:76:4e:dc:23:
62:16:26:43:fc:fe:68:32:6e:dd:5c:63:44:01:6b:6e:0d:ab:
3e:bd:89:6f:92:ac:ff:09:f8:69:96:05:37:91:c7:e0:f7:fa:
8f:82:e7:2e:ba:e5:b6:59:86:55:d9:c7:69:58:a9:94:3e:4d:
af:42:00:10:2c:5f:e5:16:69:e9:83:9b:c1:d9:fb:74:42:e0:
d2:1e:ce:61:b6:12:8f:32:b1:d3:73:4f:4d:e4:37:be:ec:3c:
28:56:9a:97:ab:1e:20:f9:97:f3:14:02:47:79:fc:13:3e:07:
c4:0b:bc:d8:e9:ae:2a:49:63:9d:23:a7:3d:cf:ff:df:3c:fe:
7e:09:e6:7a:6e:15:0a:92:15:d7:7c:8f:6b:2e:ad:3d:7a:da:
3d:de:71:ae:50:5d:b4:29:c1:c7:a9:2c:92:82:c7:69:5e:f2:
e2:99:dc:aa:8f:db:a2:1e:38:99:42:30:5d:81:0a:ed:06:91:
ec:14:de:9c:a4:5c:85:af:27:9d:82:d4:d5:25:93:70:1c:3a:
2d:1e:d1:8a:57:48:1d:9e:ef:aa:f4:2d:93:12:f9:97:d8:af:
11:01:fd:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 13:06:39 2025 by rpki-client