Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/-B3sSodTtURWh_ihnAGJCi3B38E.roa
File: -B3sSodTtURWh_ihnAGJCi3B38E.roa (raw, json)
Hash identifier: PX2wxUHiBQPZqfR4Q0Ghx+mnAL2p4lvNuhbo8m5tK/8=
Subject key identifier: F8:1D:EC:4A:87:53:B5:44:56:87:F8:A1:9C:01:89:0A:2D:C1:DF:C1
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 40BD
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/-B3sSodTtURWh_ihnAGJCi3B38E.roa
Signing time: Sun 14 Apr 2024 21:52:53 +0000
ROA not before: Sun 14 Apr 2024 21:52:53 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16573 (0x40bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 14 21:52:53 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F81DEC4A8753B5445687F8A19C01890A2DC1DFC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1a:05:7f:f5:0b:ac:a8:99:3e:d3:4a:72:c4:
1b:e4:4f:74:cd:bb:4c:5c:b9:bb:a6:af:9e:92:5a:
17:b9:eb:a7:07:90:73:7f:57:ef:47:9c:f8:7a:73:
66:0e:da:f3:66:70:0f:df:06:0b:83:7e:29:e1:c4:
2b:91:1b:d2:aa:e6:a6:9e:a5:3f:b2:7e:04:dc:c2:
40:f6:c3:67:c4:08:7c:24:72:16:84:96:53:b7:5a:
1f:45:3d:5d:1a:80:1e:6f:6d:5a:a0:f9:d4:9e:48:
fa:ab:95:b8:11:84:34:57:32:c6:f4:94:2f:c9:12:
0d:04:de:72:f3:ba:c3:b9:bd:7c:67:47:d9:0f:80:
2e:21:d3:3e:0c:fb:fa:f5:1b:25:fd:1e:89:f5:df:
8a:ab:08:8e:aa:42:5a:c1:37:c9:9a:4d:b1:a0:35:
d9:15:0c:e0:f3:08:60:c7:87:29:a2:52:99:df:58:
00:15:9e:a7:67:90:37:ac:03:09:4d:33:ae:6f:d6:
7c:8c:1d:01:3e:fc:dd:18:94:55:44:2c:cf:f5:45:
04:73:8b:66:fb:42:7e:6b:7d:b9:a4:85:98:5b:c0:
6c:dd:74:8c:b0:12:75:40:4c:b5:d6:cc:43:70:42:
c3:fb:e5:30:41:5c:90:32:72:b6:d6:50:91:cc:97:
8a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:1D:EC:4A:87:53:B5:44:56:87:F8:A1:9C:01:89:0A:2D:C1:DF:C1
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/-B3sSodTtURWh_ihnAGJCi3B38E.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
b9:de:b7:7a:ec:9b:f7:c6:6d:f5:e5:09:90:c7:0b:cb:09:d9:
4e:44:60:e1:bb:71:1e:00:6e:1b:f7:68:5c:eb:a0:8b:48:81:
91:dd:c7:da:5e:b4:87:7d:cf:57:0b:92:3f:e4:3d:ab:ba:58:
f8:d4:d7:11:6f:94:51:ac:60:9d:02:93:03:46:70:b3:90:81:
51:d3:0b:f0:6a:f2:e1:0a:f6:e7:26:bb:e7:df:e4:57:39:d3:
19:fd:b0:55:5f:3c:ba:d5:df:3c:11:96:80:a9:1a:17:91:94:
54:26:5c:66:7c:5d:67:3f:72:d7:ba:a1:f2:bb:49:cc:69:3a:
c1:15:ff:2e:9f:f0:74:39:99:85:01:e7:0e:66:86:e2:23:10:
f1:c3:d1:fa:37:be:64:6b:0b:65:c4:96:a1:6c:2a:ab:8a:9a:
ec:f5:53:b0:57:de:d6:c3:f0:e1:ab:70:88:e4:e6:b2:72:87:
66:89:8d:7b:c8:2f:d3:6d:1a:a6:1b:b8:cf:ea:29:c2:41:09:
41:08:5b:2a:6a:fa:23:da:33:01:b4:67:82:4f:9f:65:e3:9e:
55:dc:7b:3a:ef:be:6e:01:9f:04:68:63:f6:fd:72:7b:28:95:
a3:44:a9:de:53:8a:59:40:97:39:60:7c:1d:ff:45:e1:52:d7:
ad:75:f3:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:01 2024 by rpki-client on console-fra.rpki-client.org