Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/497/1D2UmyE5-gCb0damhvuEDH8YtAY.roa
File: 1D2UmyE5-gCb0damhvuEDH8YtAY.roa (raw, json)
Hash identifier: AMmfBM3qaK1itXqyZ4SgnT4JGnqlgrL/Gh5C0EIxR5E=
Subject key identifier: D4:3D:94:9B:21:39:FA:00:9B:D1:D6:A6:86:FB:84:0C:7F:18:B4:06
Certificate issuer: /CN=7E40AE900100E2B97B31CE006902F31E7D1D2AF2
Certificate serial: 1D80
Authority key identifier: 7E:40:AE:90:01:00:E2:B9:7B:31:CE:00:69:02:F3:1E:7D:1D:2A:F2
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/1D2UmyE5-gCb0damhvuEDH8YtAY.roa
Signing time: Wed 09 Apr 2025 07:08:33 +0000
ROA not before: Wed 09 Apr 2025 07:08:33 +0000
ROA not after: Thu 09 Apr 2026 06:40:34 +0000
asID: 56002
IP address blocks: 103.12.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7552 (0x1d80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E40AE900100E2B97B31CE006902F31E7D1D2AF2
Validity
Not Before: Apr 9 07:08:33 2025 GMT
Not After : Apr 9 06:40:34 2026 GMT
Subject: CN=D43D949B2139FA009BD1D6A686FB840C7F18B406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c9:b9:21:b1:2d:b0:13:7d:ac:b1:fc:c1:d2:
e3:c3:ef:49:e1:ed:db:d0:78:d5:25:bf:3d:fd:c3:
97:fb:bb:9b:1b:bf:ef:2b:0f:06:d7:5b:b2:bd:06:
af:0a:9b:c0:43:86:8a:c1:e5:48:b4:f6:60:38:89:
00:cb:e0:66:9f:b6:b5:be:35:63:ff:cb:ff:79:d7:
86:b2:ca:ca:4e:5f:a4:e3:b4:e1:1f:ff:cb:eb:b4:
3d:33:8e:c9:ad:b8:5b:61:ec:53:77:24:fb:72:a4:
01:ee:33:3d:6f:05:db:a1:2f:60:83:db:c6:e4:07:
83:40:58:dd:40:6e:92:96:4a:33:13:9e:84:07:54:
dd:aa:a7:93:ce:00:f0:bb:e2:86:9c:8a:a1:da:fb:
20:f9:ab:87:62:53:4a:e9:81:98:06:6c:82:b5:71:
03:e7:ce:39:dd:bd:ae:d7:cf:ae:6b:c1:95:b5:61:
68:cb:39:16:21:d6:b8:be:33:40:de:ca:84:bf:eb:
7c:3b:f9:3d:68:dd:27:cf:15:32:be:ff:a4:00:cc:
d6:97:53:15:e5:1b:92:46:da:2d:ef:a4:c6:32:2f:
bd:18:70:10:70:6a:fc:ef:79:20:45:73:d7:cb:60:
fd:a2:0b:a7:59:07:db:82:6d:46:e0:62:41:04:c1:
57:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:3D:94:9B:21:39:FA:00:9B:D1:D6:A6:86:FB:84:0C:7F:18:B4:06
X509v3 Authority Key Identifier:
keyid:7E:40:AE:90:01:00:E2:B9:7B:31:CE:00:69:02:F3:1E:7D:1D:2A:F2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/1D2UmyE5-gCb0damhvuEDH8YtAY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.12.232.0/24
Signature Algorithm: sha256WithRSAEncryption
69:7b:48:ca:2e:36:72:9f:24:b4:3a:ed:eb:00:45:f7:a4:d3:
65:84:3c:ca:27:5a:c0:fc:93:0b:f3:8f:4d:62:bf:f4:d5:6a:
7d:cb:66:de:44:fb:e4:a1:42:8a:5d:e4:d4:64:0a:4a:dc:86:
f3:11:be:3d:39:6d:98:db:87:60:d0:fc:03:ff:bb:5a:77:f8:
22:87:57:d5:43:cb:be:fb:b8:79:97:b9:be:c4:33:f3:86:81:
17:c9:88:62:01:57:23:65:c5:a1:7c:c7:21:e3:79:08:01:64:
36:ee:8b:7c:02:35:2c:ab:64:a1:d0:ec:52:c8:7c:58:ec:67:
0b:3b:9c:63:fc:72:85:94:e6:58:ac:f6:f4:0e:ae:47:9c:62:
d8:5f:58:7c:41:2d:59:bb:81:f4:87:9f:65:bc:b3:a4:a9:d1:
ba:01:69:81:6c:6d:6a:0f:65:41:de:c4:1e:2b:3a:c6:7c:3f:
a9:31:62:1c:c4:94:89:b6:04:bc:32:6d:2f:48:64:7e:e3:c5:
aa:6a:ef:9b:1e:f9:69:41:b8:53:06:f5:4a:62:77:69:fe:ec:
fd:b1:a4:44:59:eb:d8:84:2d:a3:83:17:be:71:f7:2e:6a:84:
bd:14:9f:6d:04:64:7d:de:c8:ab:3d:97:c4:ac:8b:3f:18:e3:
0e:50:c0:6c
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICHYAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0U0
MEFFOTAwMTAwRTJCOTdCMzFDRTAwNjkwMkYzMUU3RDFEMkFGMjAeFw0yNTA0MDkw
NzA4MzNaFw0yNjA0MDkwNjQwMzRaMDMxMTAvBgNVBAMTKEQ0M0Q5NDlCMjEzOUZB
MDA5QkQxRDZBNjg2RkI4NDBDN0YxOEI0MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3ybkhsS2wE32ssfzB0uPD70nh7dvQeNUlvz39w5f7u5sbv+8r
DwbXW7K9Bq8Km8BDhorB5Ui09mA4iQDL4GaftrW+NWP/y/9514ayyspOX6TjtOEf
/8vrtD0zjsmtuFth7FN3JPtypAHuMz1vBduhL2CD28bkB4NAWN1AbpKWSjMTnoQH
VN2qp5POAPC74oaciqHa+yD5q4diU0rpgZgGbIK1cQPnzjndva7Xz65rwZW1YWjL
ORYh1ri+M0DeyoS/63w7+T1o3SfPFTK+/6QAzNaXUxXlG5JG2i3vpMYyL70YcBBw
avzveSBFc9fLYP2iC6dZB9uCbUbgYkEEwVcjAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQU1D2UmyE5+gCb0damhvuEDH8YtAYwHwYDVR0jBBgwFoAUfkCukAEA4rl7Mc4A
aQLzHn0dKvIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDk3
L2ZrQ3VrQUVBNHJsN01jNEFhUUx6SG4wZEt2SS5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvZmtDdWtBRUE0cmw3TWM0QWFRTHpIbjBkS3ZJLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDk3LzFEMlVteUU1LWdDYjBk
YW1odnVFREg4WXRBWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABnDOgwDQYJKoZIhvcNAQELBQADggEBAGl7SMouNnKfJLQ67esARfek02WEPMon
WsD8kwvzj01iv/TVan3LZt5E++ShQopd5NRkCkrchvMRvj05bZjbh2DQ/AP/u1p3
+CKHV9VDy777uHmXub7EM/OGgRfJiGIBVyNlxaF8xyHjeQgBZDbui3wCNSyrZKHQ
7FLIfFjsZws7nGP8coWU5lis9vQOrkecYthfWHxBLVm7gfSHn2W8s6Sp0boBaYFs
bWoPZUHexB4rOsZ8P6kxYhzElIm2BLwybS9IZH7jxapq75se+WlBuFMG9Upid2n+
7P2xpERZ69iELaODF75x9y5qhL0Un20EZH3eyKs9l8Ssiz8Y4w5QwGw=
-----END CERTIFICATE-----
Generated at Mon Apr 28 23:08:48 2025 by rpki-client on console.sobornost.net