Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1826/cr8TvbLh_i9F31jMe_k0h6Vd55M.roa
File: cr8TvbLh_i9F31jMe_k0h6Vd55M.roa (raw, json)
Hash identifier: KcHEQ++e8iAnNBFubT9HaRVGUUJjwPQ16vpBji4fbK8=
Subject key identifier: 72:BF:13:BD:B2:E1:FE:2F:45:DF:58:CC:7B:F9:34:87:A5:5D:E7:93
Certificate issuer: /CN=75324D3B8F1D5EBA5770E661EE16AF24A750554F
Certificate serial: 14C4
Authority key identifier: 75:32:4D:3B:8F:1D:5E:BA:57:70:E6:61:EE:16:AF:24:A7:50:55:4F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dTJNO48dXrpXcOZh7havJKdQVU8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1826/cr8TvbLh_i9F31jMe_k0h6Vd55M.roa
Signing time: Sun 27 Apr 2025 09:29:38 +0000
ROA not before: Sun 27 Apr 2025 09:29:38 +0000
ROA not after: Fri 03 Apr 2026 08:00:09 +0000
asID: 152320
IP address blocks: 45.254.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5316 (0x14c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75324D3B8F1D5EBA5770E661EE16AF24A750554F
Validity
Not Before: Apr 27 09:29:38 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=72BF13BDB2E1FE2F45DF58CC7BF93487A55DE793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f5:8a:38:bd:50:28:1f:26:e1:6e:eb:88:72:
01:1b:dd:61:db:57:6c:88:68:09:2b:21:4a:33:be:
35:0d:e4:f1:3c:07:87:a3:95:d5:f2:fe:1d:0a:6e:
83:5e:22:2e:3d:19:97:af:41:fe:ec:1e:9d:b9:09:
c2:77:5e:16:67:30:2e:96:98:12:85:85:73:78:59:
3f:f6:18:18:9e:93:9c:2f:19:d5:f7:5d:73:0e:79:
db:cb:1d:3a:e4:18:2d:49:91:c8:c1:77:b3:ed:e3:
95:e2:74:28:94:b2:14:58:79:c9:2f:7a:d6:08:38:
c3:fe:e4:36:98:7f:33:c7:8b:65:e9:46:04:0d:59:
9f:1f:22:71:ef:df:b4:3c:5f:53:dd:a3:93:24:f8:
83:01:a1:9d:00:7f:81:2c:c1:34:dc:ec:12:46:a0:
f2:d3:51:fb:3b:b9:33:d7:73:fd:50:57:f0:73:1d:
43:2a:a3:92:db:cc:7d:22:c3:c8:3a:0f:80:ad:4b:
27:49:f1:5a:c4:c3:79:81:15:56:fd:e7:2c:4b:b5:
8a:bc:e6:c1:a3:1b:d1:f4:c9:ed:4f:9b:b4:32:4e:
dc:a2:0f:50:f1:40:93:ca:0c:e3:59:c8:be:a8:f1:
13:08:8a:8c:6f:48:28:c6:22:14:22:2c:c7:88:8d:
16:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:BF:13:BD:B2:E1:FE:2F:45:DF:58:CC:7B:F9:34:87:A5:5D:E7:93
X509v3 Authority Key Identifier:
keyid:75:32:4D:3B:8F:1D:5E:BA:57:70:E6:61:EE:16:AF:24:A7:50:55:4F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1826/dTJNO48dXrpXcOZh7havJKdQVU8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dTJNO48dXrpXcOZh7havJKdQVU8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1826/cr8TvbLh_i9F31jMe_k0h6Vd55M.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.254.27.0/24
Signature Algorithm: sha256WithRSAEncryption
50:b2:5f:ff:db:49:1d:03:2a:f0:48:5c:54:a0:69:68:0e:50:
74:36:e7:0f:8e:85:8f:9f:4d:d5:4a:95:1d:1b:48:3c:ac:fb:
83:2f:0e:31:d9:91:56:e9:62:80:8d:37:fa:5d:e5:73:e0:bb:
de:da:5e:02:dc:cf:f8:25:ed:0d:0e:08:0d:5f:d1:bd:50:dd:
c2:46:73:ca:dc:c2:ae:0a:d6:09:b0:12:f9:e7:9c:8b:f2:08:
6f:68:70:f1:9c:53:b9:3b:e0:45:20:71:a3:12:6a:b2:8f:e1:
13:f1:7b:b9:d3:e3:0d:b9:32:74:40:fe:bc:3e:14:47:ec:c5:
79:1f:0e:e7:62:99:1c:76:b3:60:c3:b7:83:6e:2d:43:e5:66:
af:3e:67:27:db:6b:9e:68:51:f9:7c:e6:40:59:57:49:03:4f:
bb:ef:e1:5e:77:05:56:89:f0:a8:c1:55:a0:3c:78:69:5d:18:
bf:76:e2:15:2a:87:f0:88:2d:c0:c5:34:02:e5:48:b8:81:ed:
6b:75:85:3f:b2:d9:eb:e9:b7:15:8c:45:35:6d:de:55:e9:0d:
09:c6:ea:fc:3b:7f:92:a4:6f:6c:d5:ee:74:ea:09:f5:28:c6:
2b:11:09:ea:65:51:ee:7a:01:15:12:e6:f5:72:20:a0:24:bc:
a6:43:67:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:08:32 2025 by rpki-client on console.sobornost.net