Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/7mV3ovVkrH5i0z8o5KK3s_uYzeU.roa
File: 7mV3ovVkrH5i0z8o5KK3s_uYzeU.roa (raw, json)
Hash identifier: aWbEePFaAC1sCrOvS38eXXZa1rvrJcXuApObNcCsVAw=
Subject key identifier: EE:65:77:A2:F5:64:AC:7E:62:D3:3F:28:E4:A2:B7:B3:FB:98:CD:E5
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 489D
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/7mV3ovVkrH5i0z8o5KK3s_uYzeU.roa
Signing time: Thu 25 Apr 2024 09:53:18 +0000
ROA not before: Thu 25 Apr 2024 09:53:18 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18589 (0x489d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 25 09:53:18 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=EE6577A2F564AC7E62D33F28E4A2B7B3FB98CDE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:38:36:27:4d:17:09:26:10:3e:2b:72:88:d0:
81:c4:0e:af:fb:9f:af:c0:e2:3e:74:89:91:3c:97:
f3:8f:85:f8:de:1d:e5:5d:9e:49:79:5b:32:35:be:
72:57:82:d4:e1:8b:29:b5:c1:e8:7a:4d:69:46:8b:
c4:e1:e7:f4:73:a1:33:95:45:10:57:3b:c7:f6:4d:
1a:5f:6c:4c:d9:44:4f:4a:a9:1c:fa:30:56:55:70:
79:15:2e:2d:c4:ac:2e:31:52:9a:54:c8:05:5e:72:
f8:73:61:d6:72:dc:7b:bc:7b:95:ac:d2:11:54:d4:
67:25:ba:5b:c1:ab:41:e3:59:20:db:ff:45:f2:ba:
4e:fb:25:b4:fa:8a:19:37:a9:11:b4:cb:8b:fd:36:
75:93:03:5e:e8:15:bd:5b:d5:1f:5a:19:cf:6e:29:
99:81:0b:a4:06:8a:56:0e:4a:ec:98:7a:d4:ec:7c:
47:87:ba:0a:3a:e6:e9:54:52:af:04:94:ec:db:e6:
21:96:ad:2b:14:76:5f:5c:46:47:4b:2e:a5:67:28:
41:06:7b:6d:69:42:d6:d8:69:a3:09:07:13:44:39:
54:0f:87:19:e4:58:0d:9d:34:f5:17:ff:2f:9a:c2:
81:da:ae:8e:75:ec:13:2f:39:ef:b0:03:cc:e9:57:
79:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:65:77:A2:F5:64:AC:7E:62:D3:3F:28:E4:A2:B7:B3:FB:98:CD:E5
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/7mV3ovVkrH5i0z8o5KK3s_uYzeU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a6:5d:13:a0:40:47:d7:9c:14:7b:9a:71:9e:28:2e:f7:39:43:
21:44:72:14:82:06:c9:26:3c:78:b1:e8:93:69:1e:14:91:4a:
ae:1e:52:d5:81:fa:3f:cf:6d:3f:4a:cb:09:13:34:39:de:9a:
e7:4e:c3:14:0b:c3:29:6c:16:b8:91:b6:ca:2d:fe:ce:6e:d1:
45:9a:9b:45:80:1b:f2:97:9f:bd:90:fe:bb:0d:ec:a8:27:ef:
ab:26:01:07:28:dd:15:53:0c:d8:06:ce:3c:c6:76:a1:57:38:
8c:dd:6d:9d:65:c9:a3:a1:e4:84:60:f8:f5:f4:53:a6:52:1f:
1d:c6:1a:be:e2:bb:46:b4:cb:12:c1:8f:3a:92:74:8a:df:3f:
7f:94:37:66:88:84:fc:0f:88:b3:78:2f:8c:16:2d:b9:d4:7a:
31:e3:5f:85:2a:ac:5e:5a:d5:d7:17:ad:08:df:6a:3a:6e:f7:
4f:de:8b:87:8d:8e:e4:a8:d3:ba:db:86:37:8e:cb:27:ec:54:
d4:e7:6a:0c:11:d5:87:6c:27:0c:87:55:24:1d:00:e9:86:dd:
04:72:26:4e:1c:d5:d8:cc:bc:b5:2e:68:cb:06:78:92:dc:ff:
39:6c:72:d9:57:e5:e6:dd:50:5b:2a:44:bb:ae:dd:bf:69:4a:
5f:27:03:24
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICSJ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MjUw
OTUzMThaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEVFNjU3N0EyRjU2NEFD
N0U2MkQzM0YyOEU0QTJCN0IzRkI5OENERTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDbODYnTRcJJhA+K3KI0IHEDq/7n6/A4j50iZE8l/OPhfjeHeVd
nkl5WzI1vnJXgtThiym1weh6TWlGi8Th5/RzoTOVRRBXO8f2TRpfbEzZRE9KqRz6
MFZVcHkVLi3ErC4xUppUyAVecvhzYdZy3Hu8e5Ws0hFU1GclulvBq0HjWSDb/0Xy
uk77JbT6ihk3qRG0y4v9NnWTA17oFb1b1R9aGc9uKZmBC6QGilYOSuyYetTsfEeH
ugo65ulUUq8ElOzb5iGWrSsUdl9cRkdLLqVnKEEGe21pQtbYaaMJBxNEOVQPhxnk
WA2dNPUX/y+awoHaro517BMvOe+wA8zpV3nxAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQU7mV3ovVkrH5i0z8o5KK3s/uYzeUwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3LzdtVjNvdlZrckg1aTB6
OG81S0szc191WXplVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAKZdE6BAR9ecFHua
cZ4oLvc5QyFEchSCBskmPHix6JNpHhSRSq4eUtWB+j/PbT9KywkTNDnemudOwxQL
wylsFriRtsot/s5u0UWam0WAG/KXn72Q/rsN7Kgn76smAQco3RVTDNgGzjzGdqFX
OIzdbZ1lyaOh5IRg+PX0U6ZSHx3GGr7iu0a0yxLBjzqSdIrfP3+UN2aIhPwPiLN4
L4wWLbnUejHjX4UqrF5a1dcXrQjfajpu90/ei4eNjuSo07rbhjeOyyfsVNTnagwR
1YdsJwyHVSQdAOmG3QRyJk4c1djMvLUuaMsGeJLc/zlsctlX5ebdUFsqRLuu3b9p
Sl8nAyQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:08 2024 by rpki-client on console-fra.rpki-client.org