Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/2w6jkw85dY4nf0ydGBtB5u9BLdw.roa
File: 2w6jkw85dY4nf0ydGBtB5u9BLdw.roa (raw, json)
Hash identifier: eRa3yVOjhNPJnXmx+grTok3J/FP8rUG/fws0DGpObLo=
Subject key identifier: DB:0E:A3:93:0F:39:75:8E:27:7F:4C:9D:18:1B:41:E6:EF:41:2D:DC
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 576D
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/2w6jkw85dY4nf0ydGBtB5u9BLdw.roa
Signing time: Wed 15 May 2024 03:54:10 +0000
ROA not before: Wed 15 May 2024 03:54:10 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22381 (0x576d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 15 03:54:10 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=DB0EA3930F39758E277F4C9D181B41E6EF412DDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:37:00:6a:d1:c3:a7:1c:9b:86:07:ca:5b:ba:
5f:d1:89:e1:b7:28:36:2a:27:26:0b:4e:a3:91:97:
32:c9:28:ba:65:9e:1a:d9:57:96:e7:87:90:d9:f7:
fd:6f:ed:22:fb:9f:bf:85:54:43:39:7f:10:c3:87:
f3:29:02:f5:93:66:42:dc:97:da:4e:05:35:a4:64:
da:57:ea:0f:f9:43:a6:60:3b:65:84:9e:e5:5b:39:
3e:c3:90:15:9f:3e:4d:e3:4c:2d:2b:fa:9c:7d:c7:
cc:b0:ff:fa:db:6a:9c:36:66:25:3b:08:34:74:c4:
0d:af:0c:80:02:e6:e3:53:b1:41:ad:28:0e:9f:d0:
da:9e:1b:d0:c1:59:a9:e5:9d:59:7a:11:98:6d:d5:
b1:42:1e:35:4d:f3:1f:cd:33:11:35:31:09:fb:d6:
5c:5f:36:fc:bb:ce:e7:18:20:63:9c:53:c9:73:a8:
a8:d6:c9:b1:00:0c:32:94:fa:38:cb:62:b9:14:f5:
23:6b:44:83:ba:e9:60:d3:85:77:43:4e:7f:78:04:
90:6f:cd:fd:0a:2d:72:9f:c9:b6:a5:12:ce:fa:ae:
66:e4:c2:fb:59:f2:8d:55:af:ef:7a:f2:56:36:23:
b2:ea:32:1a:7f:f8:83:a1:a0:dd:90:a7:10:d1:ba:
11:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:0E:A3:93:0F:39:75:8E:27:7F:4C:9D:18:1B:41:E6:EF:41:2D:DC
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/2w6jkw85dY4nf0ydGBtB5u9BLdw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8d:e0:d9:e8:69:08:6c:9d:bb:27:6d:bf:af:65:d0:58:4f:a7:
32:10:6f:ea:69:26:fe:82:67:97:8d:71:e4:e6:72:26:9e:63:
26:de:37:90:31:0f:2b:5f:b5:6e:16:b6:e8:dc:4b:ed:aa:05:
23:21:03:ce:0d:e5:d3:aa:21:0a:c2:1e:c1:f4:b8:8f:34:5a:
11:47:b2:12:48:fa:1b:c8:76:df:bf:fb:21:f9:db:af:e2:fe:
ac:63:0d:70:d1:e6:56:89:83:4b:c0:e9:8b:93:1d:ab:0a:ac:
e8:1e:f7:e7:e5:5a:6a:d8:0d:b0:04:24:c3:f5:09:c7:f5:fc:
65:1a:8a:d1:d1:77:dd:33:c2:e1:86:7e:63:e5:4b:11:56:24:
4b:d2:12:88:da:5e:de:15:48:dd:65:94:39:e2:fe:6b:4c:ee:
44:a3:ba:1a:bd:06:78:5b:fb:81:2d:73:b1:17:ea:53:c8:99:
85:2e:d6:84:e1:37:67:fe:d9:6d:d8:53:b3:ed:56:f6:8e:3f:
4b:89:6d:e5:ce:fd:a2:d5:ad:0d:a5:48:9b:d9:ac:8c:de:1d:
b1:56:c8:dd:85:36:b6:d9:b5:20:21:70:ec:4e:ff:95:35:c9:
b2:02:2d:9f:5d:01:0e:d3:82:f8:2b:13:e8:3e:12:e4:ff:aa:
88:36:34:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:04 2024 by rpki-client on console-fra.rpki-client.org