Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/05OfJQWSdvtRQEb8aHTDVdeffL4.roa
File: 05OfJQWSdvtRQEb8aHTDVdeffL4.roa (raw, json)
Hash identifier: Kvj6Cx8Y+4sbuZZFCVjMYACjO9GQ6hcZOMMaZQnOHEQ=
Subject key identifier: D3:93:9F:25:05:92:76:FB:51:40:46:FC:68:74:C3:55:D7:9F:7C:BE
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 39B5
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/05OfJQWSdvtRQEb8aHTDVdeffL4.roa
Signing time: Fri 05 Apr 2024 12:52:25 +0000
ROA not before: Fri 05 Apr 2024 12:52:25 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14773 (0x39b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 5 12:52:25 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=D3939F25059276FB514046FC6874C355D79F7CBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:12:13:67:9e:fa:22:99:a5:96:d0:bb:e9:9f:
e1:70:28:65:52:18:7b:7b:57:49:d9:44:99:7b:25:
3c:3e:59:54:f2:f0:4d:eb:a3:e6:cb:93:74:11:c0:
1a:b5:4f:2b:28:d7:0c:b4:30:9c:67:fc:fd:9b:1f:
ea:b5:dc:25:35:6c:4c:96:95:df:03:7d:46:cf:06:
24:3b:7a:8b:5f:3e:de:c4:dc:15:9c:ed:60:e4:58:
31:1e:7f:e2:47:31:56:1e:0d:6f:18:23:a6:37:79:
38:8d:82:d1:fb:10:29:82:5c:d8:fe:da:d2:2d:fc:
8c:eb:31:13:38:d6:8a:73:a7:fe:c9:5e:58:e5:84:
4b:d2:49:be:ac:65:c0:fc:30:00:fb:96:c8:78:d6:
da:d1:10:0d:b0:09:f1:ec:36:42:77:a8:c1:e2:a4:
c1:0e:49:38:3d:d5:6a:19:ca:f0:17:92:f0:ed:a4:
d5:90:12:66:24:db:43:10:3f:84:3b:d1:99:73:10:
ec:be:d6:32:f1:5e:87:45:28:4d:86:e0:19:05:a8:
a0:31:8f:7b:b5:e5:7c:f0:77:01:08:b1:b5:19:0e:
f8:82:49:fb:86:e6:b1:e6:83:c0:26:ff:bd:b5:b8:
59:ca:b8:e8:ba:05:31:fc:40:ce:f6:f3:81:bc:1a:
c5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:93:9F:25:05:92:76:FB:51:40:46:FC:68:74:C3:55:D7:9F:7C:BE
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/05OfJQWSdvtRQEb8aHTDVdeffL4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
51:fd:c6:20:95:4f:21:2c:df:69:93:99:5c:bb:50:33:a6:19:
85:c1:f3:9d:cc:67:18:48:4b:83:52:93:ee:29:70:3e:4b:62:
54:a0:99:a8:ab:c8:44:97:e3:53:36:20:af:db:3e:96:38:1e:
19:41:c0:04:a5:1e:40:dd:e7:ac:bd:c9:71:9c:99:0d:09:6e:
82:95:95:6a:3d:8b:ba:f2:ee:92:df:d6:96:dc:97:d0:0d:93:
76:13:72:d2:16:58:e3:14:eb:0b:da:ad:d0:ff:99:95:de:63:
dd:b8:36:60:15:c4:e1:0f:3a:96:7c:b6:9b:60:a9:4b:05:9a:
e7:bc:0b:f7:cf:c3:86:76:75:67:f0:3e:8d:e8:28:34:6a:be:
a5:09:88:b9:bb:06:a0:47:ab:33:92:31:45:43:2d:5b:f5:13:
04:5f:80:b7:a3:27:76:b2:59:04:7d:56:7b:83:3f:82:e0:9b:
bd:8d:39:c7:fd:ee:07:58:e0:a7:84:8e:69:d3:96:ef:79:fc:
22:bf:83:05:f6:ed:cc:18:45:aa:66:e8:30:cf:eb:86:83:d2:
fb:b4:2f:40:2c:7e:81:53:99:d9:bc:bd:00:88:d6:e2:61:85:
38:ab:57:ba:3c:7a:aa:b4:ff:46:2a:ca:56:93:00:81:7e:14:
6e:a0:7d:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:01 2024 by rpki-client on console-fra.rpki-client.org