Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/1rtb48Axj6CuJavXWHJR6KNmEio.roa
File: 1rtb48Axj6CuJavXWHJR6KNmEio.roa (raw, json)
Hash identifier: 8WN0D95yz4xN8tjJAsYllpJs4Q1npzSz4nOOlT4gmxs=
Subject key identifier: D6:BB:5B:E3:C0:31:8F:A0:AE:25:AB:D7:58:72:51:E8:A3:66:12:2A
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3ABD
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/1rtb48Axj6CuJavXWHJR6KNmEio.roa
Signing time: Sat 06 Apr 2024 21:52:32 +0000
ROA not before: Sat 06 Apr 2024 21:52:32 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15037 (0x3abd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 6 21:52:32 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=D6BB5BE3C0318FA0AE25ABD7587251E8A366122A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:eb:89:90:a9:3d:f1:f0:f7:ca:a0:2c:3c:aa:
f8:bd:3d:d0:2a:63:e6:7d:39:a8:82:ed:96:be:99:
2d:f6:83:23:29:ee:53:d1:17:0a:3f:ea:82:7c:e0:
fa:be:14:10:40:00:59:d7:02:04:9e:77:13:f6:06:
64:4f:76:66:6d:58:48:98:b8:55:e9:58:33:1d:c8:
a8:2e:b6:72:b4:92:0e:25:40:71:ee:b4:60:38:78:
43:83:d9:30:64:c0:6c:52:80:af:c9:69:54:85:97:
e4:b3:ce:34:f4:84:fd:5b:4c:e5:ea:16:c3:7d:6a:
1b:31:02:21:b3:9a:1f:3c:8e:d0:2f:4a:b9:20:a9:
47:7c:f2:f9:bc:a5:95:36:a9:5e:1e:5a:ab:41:4b:
4e:b8:11:2f:d1:e2:a5:a5:a7:f2:bc:32:3b:8b:2d:
20:23:c8:c4:71:a4:14:e4:76:cb:24:3e:63:c7:86:
70:25:39:d2:99:c0:ca:09:af:62:a8:f9:6e:6b:31:
65:a2:3f:3e:87:bc:36:9c:53:15:95:b9:db:2a:af:
a7:1a:2b:ff:70:08:e4:d7:19:6f:18:cb:77:c8:38:
df:35:f0:be:e2:d6:61:50:ed:30:08:9b:3a:5d:2a:
41:8a:d6:af:fa:e9:da:70:a7:7b:a2:36:ac:1b:47:
d8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:BB:5B:E3:C0:31:8F:A0:AE:25:AB:D7:58:72:51:E8:A3:66:12:2A
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/1rtb48Axj6CuJavXWHJR6KNmEio.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
b9:2c:eb:37:00:fd:86:8c:37:04:df:fe:07:6a:b5:bf:bb:6d:
d6:64:0a:35:f0:b7:38:27:57:cb:1a:89:cf:3c:c7:87:6a:ca:
6f:4d:ac:82:12:f4:ac:12:19:83:8e:45:e6:30:1c:93:7f:8c:
b9:0d:e5:75:a2:d4:1f:51:b6:71:42:98:8e:cb:be:e6:b2:07:
39:c4:55:d7:f7:c8:14:00:31:8e:4f:b1:b8:af:eb:20:c7:b5:
03:e8:81:fa:9d:b5:8a:c1:38:77:93:64:58:ba:74:fb:0a:6f:
b2:3c:f7:5b:a3:8c:1b:5b:78:be:1d:ea:08:3a:f9:6d:5d:8d:
55:4b:dd:23:dc:5e:e6:a9:4c:8b:28:fb:5c:f4:9e:27:9f:e4:
e8:83:fa:20:89:ff:d8:a6:bd:b1:13:56:c0:ec:ec:02:30:c5:
16:05:5f:a9:7a:04:e5:3e:30:70:24:ab:ac:fd:1f:09:97:8c:
f4:9f:f4:fe:ff:8d:98:c2:16:ca:4b:7e:5e:ab:d8:8c:e4:1c:
28:ab:ec:1d:95:29:ec:90:db:eb:02:37:70:7f:0d:35:9d:cd:
6c:8a:40:0a:0d:f5:f4:bd:d0:ee:6a:7a:b2:26:17:cd:cb:ea:
a9:d0:31:2f:c9:42:1d:48:40:7e:b6:f6:c9:ba:6c:5f:3a:ed:
25:70:12:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:48:11 2024 by rpki-client on console-ams.rpki-client.org