Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/7tpnp8luRLo0vy2YRlaicIitruM.roa
File: 7tpnp8luRLo0vy2YRlaicIitruM.roa (raw, json)
Hash identifier: 5SGMj02C9ZF2CgQMeOFzuD8SlOumBr0TlssuGcZbogo=
Subject key identifier: EE:DA:67:A7:C9:6E:44:BA:34:BF:2D:98:46:56:A2:70:88:AD:AE:E3
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3365
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/7tpnp8luRLo0vy2YRlaicIitruM.roa
Signing time: Thu 28 Mar 2024 02:52:06 +0000
ROA not before: Thu 28 Mar 2024 02:52:06 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13157 (0x3365)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Mar 28 02:52:06 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=EEDA67A7C96E44BA34BF2D984656A27088ADAEE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8c:60:84:e8:8e:97:6a:56:df:bd:82:ea:eb:
d9:74:4d:b1:03:2d:30:49:b4:f0:14:7f:a0:66:07:
77:3c:ea:27:43:5d:0c:f3:2e:dd:76:d7:97:50:e6:
f9:b9:03:19:3b:bc:55:2e:73:19:1a:b9:7e:a5:6b:
82:16:83:13:71:f9:b5:c5:c7:68:29:ef:33:02:16:
b5:04:84:d6:d8:ab:f4:ad:6c:af:cc:b7:08:fe:20:
35:13:6d:ed:fe:91:c6:e8:9f:f4:72:7e:91:22:ba:
cc:3e:cf:4d:61:84:12:a4:c8:30:21:cb:cb:e2:65:
d1:88:66:21:c6:84:16:2e:ef:c4:e5:d6:be:d2:47:
7f:46:f1:c4:2c:41:68:6e:27:c0:aa:36:05:1d:9c:
25:9c:4b:09:1d:70:79:2c:43:77:41:70:3b:b7:2f:
ab:75:b9:ed:48:cf:e3:6a:fd:fa:8d:8c:a2:ed:89:
b9:19:6c:43:5e:ec:34:70:cc:c6:5c:07:35:69:78:
fa:af:7f:46:6a:b7:dd:4c:e8:ba:40:2d:a6:a7:bb:
34:2e:a3:62:59:92:98:b1:a6:de:21:5f:a4:31:21:
0b:70:2d:f6:64:3b:4d:91:ae:28:d6:bc:8d:fe:09:
52:a5:62:c2:97:e7:7a:e7:c4:30:44:64:a5:3a:47:
16:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:DA:67:A7:C9:6E:44:BA:34:BF:2D:98:46:56:A2:70:88:AD:AE:E3
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/7tpnp8luRLo0vy2YRlaicIitruM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
03:65:26:5b:ee:8b:07:af:2c:ff:84:02:e8:3c:28:65:b1:8a:
98:49:4a:c6:fb:f9:06:8b:62:4f:ff:5c:b9:45:bb:4f:38:c0:
8c:6a:d6:34:a2:7f:1c:cf:47:91:38:87:ba:bc:51:e2:1d:05:
a2:93:66:89:37:1b:71:2d:06:37:4e:b2:ae:f5:0d:74:b5:52:
8c:0e:95:3e:6b:40:cd:6c:a8:80:23:93:4c:c2:4a:91:50:e6:
16:ab:60:3d:66:80:54:c6:aa:e6:b9:1b:d0:ff:b4:6b:8f:39:
a9:9d:86:12:74:c6:28:43:c1:84:6c:ee:3f:b7:44:74:34:0f:
4d:1e:69:eb:de:7f:40:7b:ae:8f:4a:c8:73:2c:4a:8a:51:95:
fb:f2:b5:f3:96:1f:84:01:1f:3f:a9:54:7d:59:96:1d:2d:3d:
6b:89:fa:71:c7:b7:4b:33:68:50:be:59:29:5b:32:da:f6:9b:
9e:35:8e:aa:32:f3:a6:b5:7d:77:6b:ab:32:d8:61:cb:5a:22:
f5:3c:fb:ff:92:08:db:83:0b:a9:81:39:50:92:46:95:b0:4c:
da:6b:29:a0:ad:f3:f0:cb:9f:59:8b:f5:0f:f4:5d:76:6d:1c:
49:fe:31:c8:47:b3:1b:c7:4c:98:27:e8:2f:4c:67:c4:03:05:
83:db:4c:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:09 2024 by rpki-client on console-fra.rpki-client.org