Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/94b1dMMoTMOK9Lclc94wLsoFd1k.roa
File: 94b1dMMoTMOK9Lclc94wLsoFd1k.roa (raw, json)
Hash identifier: ONCRnU8c4BfQ8rn3HNjIFasdm0y+Uy9KRFpLWDD1uJ8=
Subject key identifier: F7:86:F5:74:C3:28:4C:C3:8A:F4:B7:25:73:DE:30:2E:CA:05:77:59
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4B71
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/94b1dMMoTMOK9Lclc94wLsoFd1k.roa
Signing time: Mon 29 Apr 2024 04:23:28 +0000
ROA not before: Mon 29 Apr 2024 04:23:28 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19313 (0x4b71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 29 04:23:28 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F786F574C3284CC38AF4B72573DE302ECA057759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:2c:38:a0:3d:68:cf:48:02:3a:89:89:5e:6b:
8b:99:55:4e:51:71:9b:8b:c0:da:fd:d0:09:26:dd:
00:f1:b4:0a:66:c1:9b:2f:f8:64:d3:b4:85:35:20:
07:64:39:99:22:a7:fe:21:f5:d2:a1:b4:05:cd:fd:
7f:31:a5:7a:97:58:23:cd:8f:88:fa:60:03:7e:90:
01:7b:fb:6f:3f:5e:8a:02:39:a1:2a:1d:54:fd:8e:
f6:72:bc:c2:b2:50:01:2b:d5:13:03:e4:c1:00:5d:
80:a2:e3:e4:db:04:26:28:9b:57:f6:22:2e:cb:4e:
f0:a1:07:73:bf:a6:d9:47:a7:43:35:38:a4:b0:d7:
b1:31:36:1b:da:3b:b1:67:90:ba:c1:61:24:6b:14:
f0:6f:2a:75:ff:66:df:45:57:69:3f:7b:b2:7b:9a:
2d:6a:14:b5:3d:ac:85:87:cb:05:73:86:6f:c9:03:
37:2b:6d:e7:83:c6:59:5e:c5:67:b4:42:d3:85:3b:
81:0a:4d:a4:73:99:d2:66:4c:6e:2c:ba:aa:c1:3c:
3a:4d:7a:60:2c:b6:24:0e:ef:2c:4e:a8:7c:dd:78:
0d:7a:39:97:4e:9d:bc:3b:e1:cf:4c:28:31:1e:9c:
e2:87:3a:ae:2e:31:3f:c7:9e:8b:b3:6e:14:6c:3f:
24:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:86:F5:74:C3:28:4C:C3:8A:F4:B7:25:73:DE:30:2E:CA:05:77:59
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/94b1dMMoTMOK9Lclc94wLsoFd1k.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
5f:09:07:93:6e:85:2b:ea:a0:b2:64:74:22:72:46:c7:af:a6:
fb:95:4f:a9:0b:b0:be:f1:3c:02:d0:c2:69:5d:16:99:15:60:
70:dc:3f:9c:cd:cc:d9:9d:ca:16:f0:49:d5:7f:3b:d4:fb:f0:
2d:77:08:71:15:8b:3c:6b:c0:3b:3d:23:b2:2d:eb:48:dc:01:
3a:23:89:dd:63:9d:3d:3f:80:ea:f3:6f:31:fd:5c:43:b2:f2:
bd:e2:77:95:82:f0:46:dc:4d:3d:20:5c:28:d9:21:45:7a:6f:
ab:0e:c7:f7:e0:ae:15:e5:9f:87:b3:46:d9:5a:34:12:ca:5f:
dc:7e:8d:5f:bd:3f:4f:8f:e9:b8:f7:26:b3:66:32:45:7e:63:
dc:2c:e6:1a:ed:4f:ed:44:eb:5b:3c:22:c3:ee:89:2f:07:29:
2e:69:10:6b:bd:87:d1:84:2a:f1:4c:40:17:fd:d9:45:6c:bb:
33:21:5d:a1:59:24:3c:af:73:ab:77:82:05:4a:74:22:02:4e:
58:35:80:67:a5:4b:3b:13:0d:93:97:53:f6:a0:6f:68:43:2f:
04:07:1f:b2:e4:88:96:59:81:5b:01:08:15:4e:55:0a:00:0e:
99:1d:d0:50:5b:c0:0f:2a:97:bd:fe:da:b0:1b:40:0e:1e:91:
91:e1:17:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:09 2024 by rpki-client on console-fra.rpki-client.org