Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/5Oyrm8haWW-tkD2td1Y1X55Yjr4.roa
File: 5Oyrm8haWW-tkD2td1Y1X55Yjr4.roa (raw, json)
Hash identifier: dYpShhGVUjNaSqe3WfWptMtyFePZjTFbI8DDj8w69vk=
Subject key identifier: E4:EC:AB:9B:C8:5A:59:6F:AD:90:3D:AD:77:56:35:5F:9E:58:8E:BE
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 53CD
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/5Oyrm8haWW-tkD2td1Y1X55Yjr4.roa
Signing time: Fri 10 May 2024 07:54:25 +0000
ROA not before: Fri 10 May 2024 07:54:25 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21453 (0x53cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 10 07:54:25 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E4ECAB9BC85A596FAD903DAD7756355F9E588EBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:27:4f:60:78:45:f4:12:91:55:7a:56:54:61:
12:00:ce:bc:53:73:d2:04:b3:a1:a7:42:7e:36:54:
7a:01:7a:10:3c:29:0a:ba:cc:77:a2:10:71:cf:e6:
da:1e:32:1d:0b:be:81:5c:15:76:48:8e:c1:cc:cc:
ce:09:ac:d1:9f:84:9c:a4:27:8b:31:ac:f2:e7:5d:
e3:14:ac:8e:ea:f3:5a:67:bc:b6:c8:0d:a4:00:48:
7a:43:a0:47:64:ea:9c:7a:d2:40:2d:58:0e:9c:57:
1c:bc:dd:8e:5b:33:75:a9:a2:39:4d:9d:71:b9:2c:
36:6e:72:b6:ee:0c:2c:87:be:45:b4:d3:2d:58:e3:
af:22:d9:15:f7:fb:92:7f:da:95:b9:83:bd:f9:93:
7c:a5:3a:83:f2:60:e0:6c:69:1d:81:f6:bd:dd:78:
2b:71:db:c2:d6:96:62:a8:c5:ec:11:62:90:79:97:
af:46:a7:03:34:ad:e7:fd:c1:cc:ea:4a:1b:31:66:
d4:8f:30:5a:ad:46:3e:9b:fd:74:7a:7a:70:09:8b:
30:d2:48:a0:62:ce:78:47:2f:a6:cd:0d:7b:48:16:
58:17:f3:c4:81:ed:67:4f:90:1d:41:e5:cd:b6:1c:
50:54:9c:b5:aa:b3:43:c2:25:c9:52:03:46:fa:1a:
89:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:EC:AB:9B:C8:5A:59:6F:AD:90:3D:AD:77:56:35:5F:9E:58:8E:BE
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/5Oyrm8haWW-tkD2td1Y1X55Yjr4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
31:d1:14:75:19:cb:27:fd:7e:ee:c0:55:08:71:ec:ff:c6:c9:
a4:ce:c8:3d:20:2b:37:2d:56:2f:9a:86:9f:6a:cc:3c:16:a9:
d4:8a:60:88:4a:e8:73:ff:07:bc:c6:50:82:77:45:04:4d:1e:
fe:43:ce:b8:89:2e:a1:84:29:d7:aa:c8:6f:3a:9b:fb:c0:ca:
cd:2a:13:95:70:cb:05:91:f8:85:e3:85:5c:f6:f6:e4:6d:25:
60:ca:bb:42:ae:37:b4:a7:db:89:5d:82:f7:71:00:7c:cf:fc:
83:77:fe:0c:27:6f:ba:ae:5c:a9:8d:98:8c:19:f5:3b:29:2e:
0b:17:c4:37:35:a0:b1:60:8b:08:ad:3a:6e:34:a9:b4:44:2d:
3e:fa:72:ee:f5:ac:52:41:72:64:3b:ad:bc:c7:d9:5e:30:75:
4a:3e:b2:c0:c8:ad:f1:27:f5:81:73:57:b1:e6:01:45:20:7a:
ec:15:bd:a5:67:bc:d9:e7:f5:44:c3:2e:ed:fc:3b:df:89:7b:
55:43:85:5e:24:21:b9:48:1f:77:8d:85:d0:3e:f9:90:cf:fa:
01:b9:60:8d:41:a8:b9:34:7b:b9:43:b1:b8:0a:aa:e3:df:27:
10:44:5d:9b:78:2d:7a:f8:b2:11:0a:90:cf:4a:04:f9:77:4a:
80:19:68:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:06 2024 by rpki-client on console-fra.rpki-client.org