Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/59FEzQWrMrd9m_OwsnDEwq9w-Rg.roa
File: 59FEzQWrMrd9m_OwsnDEwq9w-Rg.roa (raw, json)
Hash identifier: dLzJiwCixWUGaq8Ij3A83F+42PD2wL4jm0EXIJSwaQQ=
Subject key identifier: E7:D1:44:CD:05:AB:32:B7:7D:9B:F3:B0:B2:70:C4:C2:AF:70:F9:18
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 53AD
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/59FEzQWrMrd9m_OwsnDEwq9w-Rg.roa
Signing time: Fri 10 May 2024 03:54:00 +0000
ROA not before: Fri 10 May 2024 03:54:00 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21421 (0x53ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 10 03:54:00 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E7D144CD05AB32B77D9BF3B0B270C4C2AF70F918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:dc:6e:ec:95:fd:cd:8c:16:d0:19:61:c7:d6:
b0:84:e9:0b:18:70:71:97:7e:62:a0:1e:d0:ac:8b:
43:9a:e7:c4:20:54:6e:ad:0f:e2:e4:a1:cd:32:ac:
9a:ec:92:38:70:c3:df:00:fc:9c:f5:3b:88:77:25:
1a:b5:98:bb:a3:aa:8a:79:51:47:cb:fe:4a:84:22:
6a:6f:e3:bb:71:e6:42:4d:55:8c:69:eb:2b:02:50:
78:6c:5b:ed:a4:a8:5b:05:fc:4d:8c:c8:45:9e:13:
4f:b1:b9:b9:86:cc:a2:a6:da:66:c8:c9:14:33:d2:
4f:cb:67:18:86:49:d9:61:3e:57:39:e9:a7:ac:45:
03:11:a6:66:79:28:9a:d5:2f:92:cf:6f:5b:08:0e:
a5:9d:1a:2f:7c:aa:f1:92:bf:32:68:5f:8f:f4:81:
a7:94:a2:f6:fc:17:0e:79:e7:a0:3d:4b:5d:9f:72:
83:db:b0:f8:cf:eb:38:73:6a:f1:a0:c5:13:26:8b:
6f:bb:be:5a:e4:2a:a0:1e:48:3c:8c:70:ac:38:46:
a0:76:db:5e:0f:73:3c:46:5a:2a:0f:a8:db:3d:66:
41:99:09:ce:f5:f4:ec:6d:4e:88:78:71:47:a2:35:
10:33:a1:42:ae:cc:e0:5e:78:47:21:b1:8e:e7:87:
c4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D1:44:CD:05:AB:32:B7:7D:9B:F3:B0:B2:70:C4:C2:AF:70:F9:18
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/59FEzQWrMrd9m_OwsnDEwq9w-Rg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
63:a6:fe:4d:5c:c7:d7:ee:94:6b:30:41:71:c8:8c:01:01:02:
67:af:69:66:5f:d7:99:9e:9f:f6:36:b5:de:44:a1:92:27:6c:
b6:1e:02:5a:4d:29:d4:75:da:12:11:36:48:3a:e5:90:59:8f:
2f:f9:67:7e:62:a6:fe:33:02:d0:95:30:d0:e3:58:3a:ef:26:
07:c1:b2:4e:93:39:cf:7c:0d:75:b6:d9:7a:da:a6:a0:7d:71:
1b:ce:39:ac:8e:9b:d0:4f:c8:4c:d7:ef:5c:41:57:d9:48:91:
a6:99:82:07:6d:7c:5a:0b:51:9f:2e:43:5a:cf:73:1e:dc:17:
16:c3:ea:ef:cf:12:f1:00:28:22:38:02:91:2d:5a:af:6f:cd:
fb:ac:43:90:b9:2d:e0:2e:90:4d:60:94:f0:1b:90:70:10:e5:
65:c5:3b:2a:3f:24:72:06:2e:83:40:16:8f:67:dd:d7:3e:35:
bc:0c:48:1f:61:ec:54:ee:b3:89:ed:58:4f:3a:be:95:78:62:
78:39:4d:ef:b1:7e:93:f6:f0:c3:fe:7e:a0:76:4b:60:ad:4d:
e5:90:98:f6:3a:69:1e:4c:42:3f:38:cc:3d:ec:94:7e:67:93:
ed:bf:9b:29:36:a8:5c:65:6e:0b:30:fc:d7:d9:4d:fe:f8:b9:
ba:95:aa:f0
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICU60wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MTAw
MzU0MDBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEU3RDE0NENEMDVBQjMy
Qjc3RDlCRjNCMEIyNzBDNEMyQUY3MEY5MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/3G7slf3NjBbQGWHH1rCE6QsYcHGXfmKgHtCsi0Oa58QgVG6t
D+Lkoc0yrJrskjhww98A/Jz1O4h3JRq1mLujqop5UUfL/kqEImpv47tx5kJNVYxp
6ysCUHhsW+2kqFsF/E2MyEWeE0+xubmGzKKm2mbIyRQz0k/LZxiGSdlhPlc56aes
RQMRpmZ5KJrVL5LPb1sIDqWdGi98qvGSvzJoX4/0gaeUovb8Fw5556A9S12fcoPb
sPjP6zhzavGgxRMmi2+7vlrkKqAeSDyMcKw4RqB2214PczxGWioPqNs9ZkGZCc71
9OxtToh4cUeiNRAzoUKuzOBeeEchsY7nh8RTAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQU59FEzQWrMrd9m/OwsnDEwq9w+RgwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3LzU5RkV6UVdyTXJkOW1f
T3dzbkRFd3E5dy1SZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAGOm/k1cx9fulGsw
QXHIjAEBAmevaWZf15men/Y2td5EoZInbLYeAlpNKdR12hIRNkg65ZBZjy/5Z35i
pv4zAtCVMNDjWDrvJgfBsk6TOc98DXW22XrapqB9cRvOOayOm9BPyEzX71xBV9lI
kaaZggdtfFoLUZ8uQ1rPcx7cFxbD6u/PEvEAKCI4ApEtWq9vzfusQ5C5LeAukE1g
lPAbkHAQ5WXFOyo/JHIGLoNAFo9n3dc+NbwMSB9h7FTus4ntWE86vpV4Yng5Te+x
fpP28MP+fqB2S2CtTeWQmPY6aR5MQj84zD3slH5nk+2/myk2qFxlbgsw/NfZTf74
ubqVqvA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:06 2024 by rpki-client on console-fra.rpki-client.org