Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/7YhZHRa0jPdhpIZ0zJ8ZKpzZAWw.roa
File: 7YhZHRa0jPdhpIZ0zJ8ZKpzZAWw.roa (raw, json)
Hash identifier: 0Sapp3JegvdFpa2tEVR2LZb62OIWbX0YSFPIYBbyfyw=
Subject key identifier: ED:88:59:1D:16:B4:8C:F7:61:A4:86:74:CC:9F:19:2A:9C:D9:01:6C
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5795
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/7YhZHRa0jPdhpIZ0zJ8ZKpzZAWw.roa
Signing time: Wed 15 May 2024 08:54:10 +0000
ROA not before: Wed 15 May 2024 08:54:10 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22421 (0x5795)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 15 08:54:10 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=ED88591D16B48CF761A48674CC9F192A9CD9016C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:dd:57:4f:90:e7:02:78:b7:1e:cb:f6:3c:77:
ad:cd:31:22:03:50:b4:76:b4:88:f5:4e:62:dd:be:
6a:ae:44:9e:c3:c4:43:86:0b:85:d5:0b:9c:7e:c2:
f8:37:d8:8b:07:85:19:b3:1c:c8:e3:61:7f:93:b0:
34:16:e0:80:a2:b2:f4:54:28:56:66:66:7f:c9:91:
4e:c9:46:ae:2d:b5:66:f8:56:5e:43:7b:b9:3a:db:
22:64:c5:6e:75:d3:78:9d:ea:35:13:33:11:21:cd:
dc:d6:0f:bc:bf:9b:c6:f3:af:98:f7:2d:13:21:66:
c5:69:4a:a1:96:af:e9:8b:56:88:b4:95:8e:0b:98:
b4:8b:2c:9d:b8:14:94:03:b7:5d:99:ab:47:2c:d1:
6c:bd:59:8c:0d:ca:e2:c1:f3:ed:e3:8e:42:aa:ed:
54:5d:0f:26:5c:4f:5d:5d:11:d5:38:99:a9:25:d2:
6f:f5:1c:25:f0:9f:36:b8:d6:5c:71:50:67:96:eb:
89:13:c9:e8:b8:e9:42:d7:58:ba:16:cb:1e:8e:fd:
c6:45:85:be:9c:0d:7f:54:e3:91:36:0d:fa:ad:5f:
96:ee:6d:c8:74:7a:26:00:57:d8:02:84:1a:a9:86:
79:16:e8:72:31:7d:a4:dc:f9:0f:51:8c:0e:60:34:
d9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:88:59:1D:16:B4:8C:F7:61:A4:86:74:CC:9F:19:2A:9C:D9:01:6C
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/7YhZHRa0jPdhpIZ0zJ8ZKpzZAWw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
13:1a:6e:3b:34:9e:7a:c4:a1:6d:07:eb:b5:96:a4:65:7d:e0:
54:3c:2d:58:8d:82:55:44:ce:1f:a4:9f:a0:8e:e5:4f:92:a0:
98:d7:43:ee:62:92:fc:aa:b2:6d:56:47:1f:4f:a7:31:11:c9:
fb:97:ec:c0:f4:c1:8b:51:18:98:ed:56:a8:a5:fa:ae:e9:64:
ea:51:65:c8:4c:b3:5d:96:a3:c6:a4:a7:ad:a1:08:1a:d9:41:
b4:38:b2:ec:28:45:be:e3:3b:27:4b:c7:8e:a9:1c:28:b2:9d:
51:96:f7:db:80:6c:fc:fe:58:ae:a5:e2:38:a3:96:af:c0:c7:
35:ec:70:23:96:35:bd:66:04:22:46:94:9a:c1:43:31:d5:5c:
ec:41:a3:f5:d6:34:23:65:06:f1:0a:ef:81:03:53:36:bb:79:
11:2d:f5:dd:6e:cb:a4:be:48:81:3f:e7:e0:6b:62:82:bd:c6:
68:9d:a5:0d:5e:a0:96:9d:e6:cf:15:85:35:ee:11:d3:1e:6d:
07:51:e8:06:39:24:7f:52:d7:8b:9d:fe:26:68:49:f7:29:98:
55:41:23:63:11:8e:75:9a:d7:c5:af:ec:ff:37:11:81:f7:e0:
5b:ec:f7:4c:f5:25:10:9b:aa:fb:83:73:ab:0c:ab:d0:70:9c:
b1:f9:02:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:08 2024 by rpki-client on console-fra.rpki-client.org