Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/6z4pB_tA8gc6GhwLWBMWTAgRPp8.roa
File: 6z4pB_tA8gc6GhwLWBMWTAgRPp8.roa (raw, json)
Hash identifier: 74dNU8bK2T1jcp73E/xXvMGcA477gOTYtlowD5gOU+k=
Subject key identifier: EB:3E:29:07:FB:40:F2:07:3A:1A:1C:0B:58:13:16:4C:08:11:3E:9F
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5489
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/6z4pB_tA8gc6GhwLWBMWTAgRPp8.roa
Signing time: Sat 11 May 2024 07:24:05 +0000
ROA not before: Sat 11 May 2024 07:24:05 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21641 (0x5489)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 11 07:24:05 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=EB3E2907FB40F2073A1A1C0B5813164C08113E9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3d:9a:fc:be:4e:4b:8a:3c:d7:84:11:38:aa:
de:60:c7:a1:2d:4d:ff:71:b6:57:c9:6e:51:37:10:
0d:16:2a:fe:0f:a0:b9:02:72:e1:96:fc:f1:6b:53:
84:91:a7:13:3d:5f:83:25:9b:65:39:3d:1e:b0:6e:
68:15:51:20:14:2a:3f:21:7a:2c:00:0e:5b:15:55:
60:ea:ba:ae:73:7f:d2:dc:15:ab:90:81:96:b7:7b:
14:05:74:02:d9:20:e1:1f:22:d8:2e:be:62:69:4b:
6e:56:2b:8e:8f:f8:1d:a1:ef:9e:40:35:ec:ec:2b:
73:9d:a5:32:38:ae:92:f1:6f:1c:a9:8e:74:dc:14:
f4:f6:f7:e2:1a:4e:6c:33:04:95:49:63:d0:18:40:
4c:31:fd:31:51:9e:d0:3b:72:d2:80:70:08:cd:8f:
5e:2b:b8:26:8d:d6:cd:5c:9c:8e:b2:4e:ef:37:ac:
ee:91:69:5e:8e:0e:d8:9a:53:12:0c:9f:b6:06:62:
e6:b6:23:fe:82:ae:12:28:a3:ef:22:66:95:7f:dc:
82:69:86:66:51:bb:cd:a6:12:a9:4e:c8:94:9f:9a:
5b:df:92:e4:93:77:70:0e:49:41:dd:87:57:b4:32:
ea:9b:b2:bd:32:84:34:fb:0d:f1:61:2b:7c:48:b8:
15:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:3E:29:07:FB:40:F2:07:3A:1A:1C:0B:58:13:16:4C:08:11:3E:9F
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/6z4pB_tA8gc6GhwLWBMWTAgRPp8.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
0f:2f:65:19:61:22:41:fe:da:bb:b3:49:86:e3:d2:b7:f4:a4:
f6:a1:83:89:cb:62:7f:0d:e1:14:10:7c:45:fa:2b:f6:ea:25:
67:e9:d2:fb:01:d2:23:9b:2a:01:ae:b0:65:a4:d8:0c:7e:c4:
6e:72:24:67:5a:6c:90:3f:0e:5d:ad:60:f7:54:c6:e2:d1:3b:
5e:35:41:3a:3a:ad:46:6f:b6:a0:05:63:ce:a6:f7:7a:24:63:
ba:49:a1:cf:f1:68:04:39:ea:da:bd:d3:02:7e:95:28:f7:a3:
73:8b:62:42:be:eb:1c:a0:ec:c6:4f:a1:8e:5d:f4:d4:de:8f:
71:97:d9:ca:ea:92:99:b9:53:0a:b5:4e:38:53:42:78:a6:fc:
78:03:49:c6:24:5f:f7:8e:8e:94:8e:2b:14:71:22:e3:78:3f:
f0:2c:6e:3d:78:fb:fc:0a:11:ed:dc:a4:e9:65:e6:e0:0d:f9:
f5:07:8c:56:29:e5:80:69:8c:7f:c6:4b:82:d4:99:75:36:db:
80:c5:b8:7f:f7:90:f3:28:9b:fb:62:a0:c2:ca:af:d6:37:66:
03:dd:14:9d:8e:a2:2b:c2:eb:95:f4:50:af:ef:0b:39:6d:02:
1e:fa:d3:19:0a:50:fb:3d:a0:ff:39:c6:47:49:91:cc:a8:aa:
6b:17:d1:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:08 2024 by rpki-client on console-fra.rpki-client.org