Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/-IlOQyhS_QlffwsuXcB2xDG-IhE.roa
File: -IlOQyhS_QlffwsuXcB2xDG-IhE.roa (raw, json)
Hash identifier: VpFXtIEFtSLOcWEat0dTiPts2HRnR0MNnnfogx+kQVc=
Subject key identifier: F8:89:4E:43:28:52:FD:09:5F:7F:0B:2E:5D:C0:76:C4:31:BE:22:11
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5079
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/-IlOQyhS_QlffwsuXcB2xDG-IhE.roa
Signing time: Sun 05 May 2024 21:23:58 +0000
ROA not before: Sun 05 May 2024 21:23:58 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20601 (0x5079)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 5 21:23:58 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F8894E432852FD095F7F0B2E5DC076C431BE2211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:20:de:31:85:d9:88:c5:e3:67:35:71:ec:72:
d8:b8:d7:cd:d1:58:a6:14:6d:aa:68:70:60:6e:c2:
f2:b9:d7:4d:6b:af:1a:ea:66:d6:65:e1:db:60:27:
46:e1:7b:b2:bb:1d:db:c7:29:2a:7d:32:24:15:df:
bc:0a:ae:af:f2:cc:07:3d:3c:99:77:a4:1b:6f:03:
23:30:b1:25:ca:d6:74:da:92:0d:40:64:6f:e0:36:
40:73:ee:a0:1c:0e:06:c6:b1:f3:e1:aa:3a:1d:f1:
3a:f5:34:29:a4:a2:cd:4f:90:86:b4:f9:48:1f:8c:
b0:df:db:f9:f2:b6:ae:aa:f0:31:5c:60:5d:6f:7c:
4c:7c:eb:e1:40:5c:3b:6a:1a:58:04:2b:fa:0d:ab:
1b:b6:2d:9b:1f:63:04:3a:7d:de:d0:53:46:e9:d6:
89:9e:93:f7:64:f2:76:63:48:5e:fd:e4:d7:69:01:
d1:4e:0c:2f:d1:d1:fe:ad:91:63:c0:ac:bf:67:70:
97:68:93:62:e1:e8:48:a4:92:4f:6f:87:17:0b:71:
3b:7c:75:1b:4f:c7:00:b7:af:b0:00:5f:14:bc:b9:
a3:f0:61:50:77:18:98:97:76:2a:a9:25:a2:52:59:
e5:da:32:85:fb:d5:96:1c:4b:f2:9a:7f:2e:8a:d7:
e7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:89:4E:43:28:52:FD:09:5F:7F:0B:2E:5D:C0:76:C4:31:BE:22:11
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/-IlOQyhS_QlffwsuXcB2xDG-IhE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
40:d0:5c:e9:28:f1:25:e3:02:80:61:eb:53:26:43:46:94:6c:
6d:e4:65:e8:cb:97:0b:d2:26:ff:ba:69:97:b3:5f:d2:f9:67:
28:46:af:54:76:e1:46:ef:04:ec:62:9a:f0:ff:3c:86:b4:c7:
bf:8e:1a:95:5e:d6:20:42:86:c4:4c:e4:97:af:1d:d9:2c:53:
74:04:fd:1a:61:bd:2a:45:aa:a5:99:00:ca:e0:78:0b:44:d1:
65:9f:52:87:dc:e1:8b:fe:b6:d6:fe:a3:5a:78:89:30:7c:ba:
6c:9b:4d:4a:21:d8:a0:ab:e1:f2:9e:be:70:71:a1:b8:f7:24:
4a:7c:75:39:f4:cf:17:05:2b:bf:59:a6:e6:78:a7:d3:1d:d8:
ca:58:60:b1:7f:e4:3f:7c:99:48:28:c1:c6:85:b8:57:be:55:
10:6e:61:ab:53:8b:0f:4b:05:80:e7:6e:8b:99:0c:07:1f:00:
67:b0:a0:0b:85:f3:92:21:f4:1f:81:63:1a:97:c9:1b:00:aa:
c1:a5:5b:c9:51:eb:ea:17:ac:9c:67:1b:02:b5:fc:83:d5:02:
5a:1f:ed:82:2d:2a:8d:41:a3:7d:f1:8f:34:fc:15:d1:b6:d8:
f9:36:d8:61:bc:f0:b7:c6:6b:9f:3d:39:8b:56:bd:22:ef:da:
27:63:0f:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:01 2024 by rpki-client on console-fra.rpki-client.org