Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/2dCmyq2g7xVvnuFJHp9q3ONp__M.roa
File: 2dCmyq2g7xVvnuFJHp9q3ONp__M.roa (raw, json)
Hash identifier: s3iu1YZi/dsTFnGzl4gia37juNI1vnco41BFth//nEw=
Subject key identifier: D9:D0:A6:CA:AD:A0:EF:15:6F:9E:E1:49:1E:9F:6A:DC:E3:69:FF:F3
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4065
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/2dCmyq2g7xVvnuFJHp9q3ONp__M.roa
Signing time: Sun 14 Apr 2024 10:53:23 +0000
ROA not before: Sun 14 Apr 2024 10:53:23 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16485 (0x4065)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 14 10:53:23 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=D9D0A6CAADA0EF156F9EE1491E9F6ADCE369FFF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e9:4a:b6:42:de:57:64:22:96:4e:b6:10:58:
60:f4:f8:65:48:84:6e:e0:cb:91:7f:fc:d5:8f:68:
ab:ed:3b:38:ab:a9:29:97:f2:bf:61:9b:9e:75:92:
fc:f0:71:d4:28:83:9b:40:03:36:03:9b:80:3d:cb:
24:15:51:3f:a8:47:10:ad:4e:c1:b9:61:bf:36:16:
c9:a2:bc:6c:90:a5:52:07:42:dc:d4:6d:f9:02:a5:
bc:95:56:e7:6f:73:3d:c0:92:db:18:77:21:5f:53:
d1:95:2b:19:47:54:b1:79:e3:b1:5c:ef:11:39:74:
3f:ff:db:a8:9b:78:ab:ff:70:ea:d2:ca:6f:31:4d:
d9:a6:b4:9e:19:b8:f5:18:05:1d:77:05:38:10:bb:
3b:46:80:55:b3:b8:22:68:87:69:8f:72:7e:57:32:
57:fc:1c:d6:1e:c4:06:9e:fe:4e:d8:93:3e:8d:13:
e6:51:c5:1f:ab:6c:be:4a:9e:7d:72:fb:7c:d5:5e:
e4:b1:6b:9a:24:05:2b:88:b8:f0:d7:f4:32:07:9b:
ef:95:98:fd:1b:87:a3:99:63:42:51:47:d1:1f:45:
35:eb:9f:1f:a1:e8:c0:16:1f:bd:47:98:d2:ac:cd:
63:49:dd:5f:17:1c:ef:fc:37:00:bb:7b:81:d5:2f:
f1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D0:A6:CA:AD:A0:EF:15:6F:9E:E1:49:1E:9F:6A:DC:E3:69:FF:F3
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/2dCmyq2g7xVvnuFJHp9q3ONp__M.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
5d:ae:a5:29:b8:61:c9:10:2a:6d:6e:cf:e2:1c:4a:38:7a:76:
02:36:d2:f0:85:80:ef:a2:ae:0a:7e:95:02:5d:50:ea:c6:8f:
27:57:e9:2a:f3:51:92:73:9c:0d:60:f7:a5:05:81:af:bb:d3:
44:27:bd:5c:ba:75:5f:6c:06:12:ce:0f:db:b4:f8:be:cc:96:
ff:f9:56:91:0d:a5:5c:6f:06:38:4c:00:e8:a9:6c:04:66:c3:
4f:7e:c1:62:69:8d:b1:1a:c0:b1:cc:80:1e:f5:d0:b1:c9:d5:
2d:8e:d5:c0:d6:5d:be:a9:c2:5f:87:72:65:a5:03:95:c9:4d:
4f:cf:af:cb:f7:35:f3:0f:09:64:17:b2:d8:21:61:20:04:43:
4b:23:b4:07:81:8f:97:e1:70:5b:b4:26:e3:4f:de:f6:9d:00:
8d:90:f1:52:0c:10:c7:30:64:ec:de:31:ff:71:5f:7d:9b:fd:
58:81:82:7c:a4:48:a9:a9:46:9d:8e:ae:e1:c1:2e:73:9f:53:
c8:78:73:4e:30:76:da:c3:db:00:35:7b:c2:25:33:f0:99:2d:
ca:06:7b:75:fd:f7:b9:d9:d2:26:6b:a2:aa:fd:46:e9:56:0f:
31:ff:b5:c9:0a:10:ec:81:52:3a:22:8a:14:e3:19:67:5c:cd:
f5:b4:9d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:04 2024 by rpki-client on console-fra.rpki-client.org