Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/5BSfeYlMHunHzYnrPVM_GsB43hA.roa
File: 5BSfeYlMHunHzYnrPVM_GsB43hA.roa (raw, json)
Hash identifier: F8ngkckDNNS1JQ2MWkHfzAAqxElOxcus3pM8V2dARIY=
Subject key identifier: E4:14:9F:79:89:4C:1E:E9:C7:CD:89:EB:3D:53:3F:1A:C0:78:DE:10
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3CC1
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/5BSfeYlMHunHzYnrPVM_GsB43hA.roa
Signing time: Tue 09 Apr 2024 14:23:04 +0000
ROA not before: Tue 09 Apr 2024 14:23:04 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15553 (0x3cc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 9 14:23:04 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E4149F79894C1EE9C7CD89EB3D533F1AC078DE10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:04:ef:6d:d6:aa:b7:dc:82:bd:ae:11:25:2d:
aa:69:25:85:dd:7e:ce:4d:ea:55:9a:d9:d1:fc:d4:
16:5d:e0:15:94:3f:1f:bd:80:e2:e7:65:76:76:f0:
f4:10:03:07:fc:c4:03:8c:31:11:fa:87:80:3d:4b:
58:23:28:ca:79:e7:a1:ce:b3:d4:d2:53:b1:36:a1:
bf:d2:d3:39:58:d2:86:31:32:86:47:94:03:49:69:
69:49:15:91:28:9c:4a:b7:ac:7e:b8:63:3e:90:4a:
18:d5:66:c7:42:fd:c0:93:b2:0d:f4:fd:e9:d0:47:
13:66:b2:d1:0f:cd:11:4f:e1:04:98:99:bb:5e:84:
dd:1a:d8:23:de:2b:e6:37:c1:d0:0e:57:12:a3:a9:
31:8c:8f:d7:2e:da:a0:ba:a4:f1:df:02:0e:fb:0a:
54:b9:19:c3:c9:84:b0:66:a5:ce:ad:87:f1:60:4d:
24:70:46:2e:ec:db:a1:d7:6f:cc:9b:6c:67:1f:39:
8f:e9:f9:3f:69:f0:c3:db:9d:d3:ce:66:1f:cb:0e:
61:7e:29:ff:73:a1:6c:de:d6:76:7d:ef:62:12:af:
7e:26:ef:fc:82:5a:d9:00:29:57:84:47:cf:cb:27:
4f:8e:f7:f9:31:a6:92:58:8b:cf:b8:a1:07:5b:aa:
3a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:14:9F:79:89:4C:1E:E9:C7:CD:89:EB:3D:53:3F:1A:C0:78:DE:10
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/5BSfeYlMHunHzYnrPVM_GsB43hA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
2b:f0:9b:fb:09:e9:c5:f2:91:da:cc:98:4f:32:d5:51:5f:ca:
3d:f2:cc:00:17:ba:11:2a:d2:02:bd:a4:74:1d:47:4a:0b:3b:
00:9c:34:33:b8:7f:5b:c4:d5:85:ee:ad:b9:86:f3:70:87:41:
e9:22:92:cf:81:10:dd:42:fd:fb:84:28:9f:51:78:3c:27:64:
73:4c:c4:3b:5c:33:34:7b:e5:b7:bb:7c:ac:1e:7a:b8:41:38:
e7:50:01:55:f1:8a:a4:24:1d:8a:84:2e:b9:32:28:0c:c9:37:
a3:ef:ea:0e:99:47:fb:33:43:8b:bf:3e:63:31:b6:fe:09:d0:
d7:fc:c8:96:cb:e5:b1:03:09:d8:dd:ed:e1:a6:e8:31:d5:be:
5b:6b:0d:90:95:c9:01:e6:fe:6a:8b:4a:67:e0:87:58:21:e2:
0c:e4:f4:43:ba:7a:3f:99:ac:85:a0:38:83:ae:2e:97:ae:94:
b6:58:b8:7d:25:36:f4:4a:c5:2b:2c:d2:d2:d4:1a:6d:06:af:
1a:10:f5:5c:07:2a:1c:c9:3f:22:6d:1e:18:22:7a:3b:c1:64:
e7:64:7e:9f:29:56:34:e9:13:2a:ee:75:70:d2:8e:76:ff:91:
4c:28:10:b0:f3:c6:9e:97:75:b1:d8:27:94:ba:26:64:4e:3f:
da:60:66:64
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICPMEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MDkx
NDIzMDRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEU0MTQ5Rjc5ODk0QzFF
RTlDN0NEODlFQjNENTMzRjFBQzA3OERFMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDbBO9t1qq33IK9rhElLappJYXdfs5N6lWa2dH81BZd4BWUPx+9
gOLnZXZ28PQQAwf8xAOMMRH6h4A9S1gjKMp556HOs9TSU7E2ob/S0zlY0oYxMoZH
lANJaWlJFZEonEq3rH64Yz6QShjVZsdC/cCTsg30/enQRxNmstEPzRFP4QSYmbte
hN0a2CPeK+Y3wdAOVxKjqTGMj9cu2qC6pPHfAg77ClS5GcPJhLBmpc6th/FgTSRw
Ri7s26HXb8ybbGcfOY/p+T9p8MPbndPOZh/LDmF+Kf9zoWze1nZ972ISr34m7/yC
WtkAKVeER8/LJ0+O9/kxppJYi8+4oQdbqjq/AgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQU5BSfeYlMHunHzYnrPVM/GsB43hAwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3LzVCU2ZlWWxNSHVuSHpZ
bnJQVk1fR3NCNDNoQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBACvwm/sJ6cXykdrM
mE8y1VFfyj3yzAAXuhEq0gK9pHQdR0oLOwCcNDO4f1vE1YXurbmG83CHQekiks+B
EN1C/fuEKJ9ReDwnZHNMxDtcMzR75be7fKweerhBOOdQAVXxiqQkHYqELrkyKAzJ
N6Pv6g6ZR/szQ4u/PmMxtv4J0Nf8yJbL5bEDCdjd7eGm6DHVvltrDZCVyQHm/mqL
Smfgh1gh4gzk9EO6ej+ZrIWgOIOuLpeulLZYuH0lNvRKxSss0tLUGm0GrxoQ9VwH
KhzJPyJtHhgiejvBZOdkfp8pVjTpEyrudXDSjnb/kUwoELDzxp6XdbHYJ5S6JmRO
P9pgZmQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:06 2024 by rpki-client on console-fra.rpki-client.org