Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/5I4DFG69wjQ1COxqo7Pf_hp3LJY.roa
File: 5I4DFG69wjQ1COxqo7Pf_hp3LJY.roa (raw, json)
Hash identifier: jDX5yCYhKn+bwPJ9kzBpPFYWyIALJuFl1HAcuHfe2uQ=
Subject key identifier: E4:8E:03:14:6E:BD:C2:34:35:08:EC:6A:A3:B3:DF:FE:1A:77:2C:96
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3569
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/5I4DFG69wjQ1COxqo7Pf_hp3LJY.roa
Signing time: Sat 30 Mar 2024 19:22:09 +0000
ROA not before: Sat 30 Mar 2024 19:22:09 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13673 (0x3569)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Mar 30 19:22:09 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E48E03146EBDC2343508EC6AA3B3DFFE1A772C96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:61:8e:10:c0:03:1d:5a:bc:f6:a2:e1:74:be:
0f:f2:49:25:2e:5e:b1:23:f0:91:ea:8d:e7:e5:62:
ce:c4:bc:e5:3a:0b:0c:3c:19:80:9a:b5:ad:4f:26:
98:13:fe:e5:90:5d:64:d9:f7:ea:ad:56:39:37:c8:
0c:91:71:1e:ee:44:25:50:36:82:f7:0b:73:a8:c9:
97:0d:af:1f:4a:2b:1b:30:67:05:83:0c:ff:5b:ec:
2c:69:12:19:12:fc:d4:be:e9:3e:d2:aa:a9:e8:54:
4c:3c:70:6e:08:e6:71:a1:1d:81:20:b0:af:b0:1d:
c6:a7:c0:17:72:4c:33:ad:43:77:46:3a:61:90:ed:
29:ad:83:00:29:38:1b:8a:e4:d0:d9:b9:68:74:f1:
cc:73:b2:b2:c0:fc:08:55:e8:50:4a:40:49:8b:91:
1c:2f:f9:b9:91:19:f8:b4:bc:36:2f:6e:e4:26:e2:
4c:1d:e0:45:7f:b1:97:fe:cb:7f:aa:09:0d:aa:95:
06:43:54:6c:9c:06:e5:7f:a5:f4:b4:ee:28:44:f3:
b9:0a:06:0f:a8:57:f4:57:02:2b:5a:bb:75:0d:68:
28:5d:70:0e:5c:18:a6:3c:c8:e5:68:aa:2d:8b:1b:
f1:d1:9e:28:b7:e8:d9:27:60:f8:f4:ef:2c:1d:57:
8a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:8E:03:14:6E:BD:C2:34:35:08:EC:6A:A3:B3:DF:FE:1A:77:2C:96
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/5I4DFG69wjQ1COxqo7Pf_hp3LJY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
4c:c6:50:77:d7:3b:7c:05:78:d0:92:27:a1:49:26:b9:cc:68:
c8:69:ec:5a:56:e6:90:d1:80:d6:0d:1c:b1:7f:70:24:54:07:
ac:71:fa:62:c5:39:75:35:62:13:0d:8f:f7:1d:03:e6:6e:1e:
37:c3:48:37:29:0a:16:ff:af:a7:aa:e1:86:a1:ec:c6:f6:cf:
c0:0c:31:2d:6a:fd:fa:51:b5:f6:fb:de:50:91:18:6f:07:00:
24:56:e5:93:ea:65:d3:a9:c5:b4:9e:b9:af:b1:af:ab:d5:02:
5a:8a:fc:09:99:7b:fa:21:ae:a1:84:62:b1:ac:ef:0e:6e:53:
b0:bc:5c:a1:9d:7f:93:31:8f:a6:04:32:82:1c:4d:9b:6f:6d:
dd:70:96:70:74:1e:d6:38:e4:f9:77:18:76:41:45:1c:ed:84:
6d:b4:a0:d7:37:c8:33:5d:72:5c:5b:c3:0d:a3:5a:1c:4d:19:
15:5c:a5:a1:da:93:11:c4:96:34:66:f4:dd:53:a6:6f:06:59:
0b:12:a8:bf:e3:d1:4c:73:c7:f0:1c:7d:b6:79:31:90:9e:76:
cd:11:87:5e:e1:ad:0b:ba:e0:d4:dc:fd:c5:49:61:ce:a0:30:
3d:43:24:41:ac:04:e5:66:cc:a6:b2:76:71:9a:ef:fc:0d:51:
c0:4b:e6:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:06 2024 by rpki-client on console-fra.rpki-client.org