Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/8mw4WHwm09MKMF9VaHMa8XXU8Nk.roa
File: 8mw4WHwm09MKMF9VaHMa8XXU8Nk.roa (raw, json)
Hash identifier: 8v6yKCr6mV1iFHsEDerQsu4rjh7ZADr+d9ZrJIkpYfs=
Subject key identifier: F2:6C:38:58:7C:26:D3:D3:0A:30:5F:55:68:73:1A:F1:75:D4:F0:D9
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4FED
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/8mw4WHwm09MKMF9VaHMa8XXU8Nk.roa
Signing time: Sun 05 May 2024 03:54:01 +0000
ROA not before: Sun 05 May 2024 03:54:01 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20461 (0x4fed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 5 03:54:01 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F26C38587C26D3D30A305F5568731AF175D4F0D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b5:e5:21:c6:ff:41:de:7c:a5:57:b4:54:9e:
ec:7d:80:3c:81:8b:05:69:06:5f:15:4a:16:60:06:
8b:a9:9b:da:c2:03:a1:4e:1e:0f:ad:a4:84:22:d3:
7d:7f:f7:4f:73:50:4f:cf:eb:e5:d1:e0:eb:3b:80:
e0:1d:83:5e:0f:35:b0:4e:01:a1:2a:63:03:22:fc:
b6:5d:07:8d:dd:31:24:57:2a:49:12:4f:12:fc:d6:
d5:56:b7:85:68:bc:db:87:ad:ec:56:ff:d8:6c:73:
6a:55:17:f1:9e:55:07:2f:a6:3f:24:45:1d:80:e1:
76:dc:e4:97:c4:2e:92:ad:c4:ef:44:4a:76:d2:86:
9e:a7:a8:68:af:b2:c7:f6:a4:f1:14:0a:d3:60:da:
3c:71:9b:05:74:75:a7:e8:76:66:44:27:6e:c5:e1:
aa:43:e9:f2:f8:c0:94:37:eb:e6:3c:23:ff:9a:2a:
66:be:2f:37:bf:63:52:82:5a:32:0f:78:b7:74:72:
0b:77:9b:1c:18:47:76:3f:e3:1d:84:de:bc:16:3d:
c7:bb:e7:4c:6c:4e:44:42:8e:a2:60:f5:92:d9:ba:
92:16:56:e2:d0:b3:7c:67:cd:f2:c3:50:a6:29:f5:
5d:2a:75:15:1f:2b:b9:18:96:35:a3:19:8e:35:5d:
9e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:6C:38:58:7C:26:D3:D3:0A:30:5F:55:68:73:1A:F1:75:D4:F0:D9
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/8mw4WHwm09MKMF9VaHMa8XXU8Nk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
b6:e9:58:58:64:4a:b4:ec:55:e8:15:2e:27:78:a4:fc:3c:cc:
70:37:e0:52:9f:2d:ae:32:99:01:5b:59:cd:56:e7:af:3d:83:
c4:e9:30:79:18:ea:52:94:19:79:6a:7c:1a:24:89:60:c7:8e:
f9:95:2e:f4:f2:bb:ad:62:53:e1:42:7f:56:02:e5:1e:57:79:
1f:7d:2e:70:62:44:33:99:51:e6:6a:f2:35:af:a1:c4:3f:75:
d3:dd:77:17:75:41:d3:60:8e:d6:8c:c1:8e:b9:88:1b:ce:bf:
4e:2f:ed:24:5d:9d:96:5f:c1:b5:16:c0:80:db:1e:8e:93:46:
28:42:6f:bb:7b:8b:02:a0:8f:73:c3:45:45:7a:85:95:00:51:
4d:e7:0b:89:b1:50:7a:bb:ee:29:d5:3a:f5:97:f9:40:59:2a:
e8:3b:3f:3a:b2:14:8e:c2:4e:17:37:40:2c:41:1b:86:75:20:
21:1a:ed:1d:ae:7f:f6:62:b6:5a:04:5e:ce:c9:56:cb:10:65:
0a:41:39:ec:9a:cc:74:a8:89:9f:99:ff:db:1b:76:6e:42:d0:
ab:96:e0:1f:4c:15:86:b3:27:bb:2f:47:04:52:78:51:92:28:
8c:fb:a4:c1:c7:6c:5f:ba:50:37:b9:8e:99:4f:73:fe:d3:5b:
ae:95:4b:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:09 2024 by rpki-client on console-fra.rpki-client.org