Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/4qNAn7K9Qxl_XtvSzvPoQTUJCdI.roa
File: 4qNAn7K9Qxl_XtvSzvPoQTUJCdI.roa (raw, json)
Hash identifier: 52ccOmLynf7tILFvH6E/8aJ60OoDUGINNgn+7bASmr4=
Subject key identifier: E2:A3:40:9F:B2:BD:43:19:7F:5E:DB:D2:CE:F3:E8:41:35:09:09:D2
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5141
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/4qNAn7K9Qxl_XtvSzvPoQTUJCdI.roa
Signing time: Mon 06 May 2024 22:24:00 +0000
ROA not before: Mon 06 May 2024 22:24:00 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20801 (0x5141)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 6 22:24:00 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E2A3409FB2BD43197F5EDBD2CEF3E841350909D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:93:2a:84:29:ab:0e:e1:ee:a4:d0:19:fa:a0:
5d:83:03:a6:0c:73:76:fd:20:53:29:ff:ae:6c:50:
dd:50:3f:31:c3:0f:64:ae:2d:09:89:08:96:2a:db:
0e:1e:aa:d7:6d:99:e9:12:6a:96:46:a5:bd:a1:32:
ca:53:9a:3e:5d:00:28:02:14:c6:f5:3a:86:d7:8d:
ce:12:d8:89:f1:a1:07:1d:74:d9:0b:8a:df:ec:d2:
e8:4f:59:d4:47:4d:d6:9b:5e:08:4c:58:e7:88:8b:
09:9d:33:af:c1:7f:68:b9:2b:d8:14:4b:43:36:02:
75:b0:df:57:cc:5d:64:d7:84:e9:1c:5e:bb:b1:8a:
f1:cd:86:33:d0:28:04:27:83:3f:9b:56:22:89:1c:
46:d9:39:d2:06:cf:97:df:e6:d1:51:1d:09:3e:7e:
b8:3d:9a:84:28:91:84:6a:a6:73:88:f3:62:26:e7:
d1:5e:2c:d9:3e:7f:ec:de:28:f2:4e:57:61:63:86:
eb:7f:45:24:fa:bc:22:a5:9f:8f:5e:69:79:23:d4:
5b:67:92:8f:a1:72:68:db:58:e4:4d:b7:f7:73:ae:
19:9b:d6:8f:ef:79:6d:d9:c7:d7:b0:bb:d8:0e:79:
98:a9:dc:59:e6:cb:a7:1c:75:92:3c:80:ac:2c:19:
4c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A3:40:9F:B2:BD:43:19:7F:5E:DB:D2:CE:F3:E8:41:35:09:09:D2
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/4qNAn7K9Qxl_XtvSzvPoQTUJCdI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8e:27:84:9d:47:55:5b:ea:83:3d:6a:39:e5:39:14:01:68:1c:
4d:61:50:c4:9c:fc:c8:db:fa:f1:c0:b3:c5:39:12:10:c8:50:
f8:ab:44:82:80:95:0f:65:24:51:69:71:11:4f:d1:e8:25:db:
04:24:99:42:fc:60:3d:40:f2:f6:2a:59:d3:ab:82:93:1c:22:
23:82:bf:2f:ea:8a:aa:d9:7c:ac:3f:9d:40:90:5b:fe:01:ad:
48:00:f1:ec:45:88:d6:47:d0:d2:99:11:01:fc:3e:7d:aa:23:
8e:c5:77:6c:7b:9e:5a:94:69:b1:53:b6:a4:e2:be:47:dd:ba:
fe:5b:2a:8f:65:27:5f:6e:76:1f:7e:3e:25:b8:35:0b:67:ae:
e3:be:74:3b:07:c1:26:b7:e3:f1:c8:b1:00:53:43:2c:38:23:
af:79:10:60:52:28:9c:b6:e0:66:6b:53:5a:1c:17:d0:07:f5:
0b:9d:30:ab:14:47:09:7d:25:55:d8:42:47:bb:39:05:7b:1c:
29:37:b0:fc:b1:d0:92:30:25:87:f1:e4:39:07:52:e9:a6:33:
c8:71:a5:46:fc:6a:d1:be:b0:a0:ae:f8:e9:fb:c4:05:4c:d8:
27:c5:15:1e:ad:ab:e8:85:6f:a0:02:fe:76:c2:61:db:9b:c9:
e9:19:c9:3e
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICUUEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MDYy
MjI0MDBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEUyQTM0MDlGQjJCRDQz
MTk3RjVFREJEMkNFRjNFODQxMzUwOTA5RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2kyqEKasO4e6k0Bn6oF2DA6YMc3b9IFMp/65sUN1QPzHDD2Su
LQmJCJYq2w4eqtdtmekSapZGpb2hMspTmj5dACgCFMb1OobXjc4S2InxoQcddNkL
it/s0uhPWdRHTdabXghMWOeIiwmdM6/Bf2i5K9gUS0M2AnWw31fMXWTXhOkcXrux
ivHNhjPQKAQngz+bViKJHEbZOdIGz5ff5tFRHQk+frg9moQokYRqpnOI82Im59Fe
LNk+f+zeKPJOV2Fjhut/RST6vCKln49eaXkj1Ftnko+hcmjbWORNt/dzrhmb1o/v
eW3Zx9ewu9gOeZip3Fnmy6ccdZI8gKwsGUwdAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQU4qNAn7K9Qxl/XtvSzvPoQTUJCdIwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3LzRxTkFuN0s5UXhsX1h0
dlN6dlBvUVRVSkNkSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAI4nhJ1HVVvqgz1q
OeU5FAFoHE1hUMSc/Mjb+vHAs8U5EhDIUPirRIKAlQ9lJFFpcRFP0egl2wQkmUL8
YD1A8vYqWdOrgpMcIiOCvy/qiqrZfKw/nUCQW/4BrUgA8exFiNZH0NKZEQH8Pn2q
I47Fd2x7nlqUabFTtqTivkfduv5bKo9lJ19udh9+PiW4NQtnruO+dDsHwSa34/HI
sQBTQyw4I695EGBSKJy24GZrU1ocF9AH9QudMKsURwl9JVXYQke7OQV7HCk3sPyx
0JIwJYfx5DkHUummM8hxpUb8atG+sKCu+On7xAVM2CfFFR6tq+iFb6AC/nbCYdub
yekZyT4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:06 2024 by rpki-client on console-fra.rpki-client.org