Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/9j65Clo0v63Tz0u1czzv9lLZYuk.roa
File: 9j65Clo0v63Tz0u1czzv9lLZYuk.roa (raw, json)
Hash identifier: YhXdEAgCgxXk5a4ErnZV7EsUjUfoCkprb12PIRT557U=
Subject key identifier: F6:3E:B9:0A:5A:34:BF:AD:D3:CF:4B:B5:73:3C:EF:F6:52:D9:62:E9
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3609
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/9j65Clo0v63Tz0u1czzv9lLZYuk.roa
Signing time: Sun 31 Mar 2024 15:22:11 +0000
ROA not before: Sun 31 Mar 2024 15:22:11 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13833 (0x3609)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Mar 31 15:22:11 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F63EB90A5A34BFADD3CF4BB5733CEFF652D962E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c5:5b:d4:59:45:c7:4a:75:58:68:84:8b:ea:
c1:48:17:dc:bf:c9:03:9b:1a:6f:b2:8d:b6:76:78:
48:28:e7:2d:96:7b:7d:00:4f:64:78:02:bc:23:aa:
1c:e9:89:3e:6b:88:37:e6:20:7e:49:ee:1c:8d:ff:
3a:fc:a6:04:c7:97:be:bc:ba:48:c9:24:91:ea:d6:
63:5e:12:78:c5:c8:19:0e:b5:2c:d6:34:e5:02:f9:
79:be:c1:88:7b:1f:cf:26:6c:04:ea:c3:32:08:0b:
ee:f3:0a:3e:5c:05:11:cf:68:e7:b1:d4:26:c2:65:
6c:f1:65:09:e8:09:8a:a0:7e:54:6e:e4:af:fb:f1:
1e:2f:87:95:bc:cb:fb:90:64:d8:27:ca:f2:bd:a7:
dd:27:b9:09:d5:90:93:4f:fd:2a:d2:96:03:d3:eb:
1d:ca:13:8b:bf:ce:22:45:d4:a9:1c:63:6e:1f:9d:
ed:2a:b7:c2:f3:68:d9:33:c1:95:ca:38:c9:76:01:
7b:62:58:71:bb:9f:7e:bc:19:ca:8e:4a:39:68:ed:
b7:1a:ba:8f:e5:46:42:81:c3:4d:05:2b:ef:14:79:
92:8d:52:2f:31:03:4a:1d:e4:5a:5f:7f:13:6f:db:
88:cb:2e:1d:0d:ee:1d:73:87:57:b3:ff:e0:5d:3c:
3c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:3E:B9:0A:5A:34:BF:AD:D3:CF:4B:B5:73:3C:EF:F6:52:D9:62:E9
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/9j65Clo0v63Tz0u1czzv9lLZYuk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
7e:14:69:b0:c6:64:b4:17:10:5f:c9:8c:eb:54:d6:53:39:1a:
7a:ee:39:91:97:fd:54:0d:7d:d3:cd:2a:69:75:b6:fc:e0:6c:
b5:a1:f7:9e:12:40:6f:08:a9:31:b4:1f:e7:ec:4a:e7:a7:7f:
3a:16:21:32:64:c6:62:7d:fd:27:d4:a7:50:54:4b:20:57:2c:
7b:8b:99:c1:17:af:33:32:0a:f4:b3:3f:68:97:8a:96:18:9e:
b0:34:ff:db:e1:8e:52:42:b2:13:49:1a:e2:07:24:f8:a3:1c:
e6:d7:e6:c6:f8:2e:9c:0c:ae:bc:d0:83:f2:2d:0c:32:da:14:
f5:8f:69:63:e6:7f:ec:07:29:b8:a0:8e:94:2a:32:ee:30:a6:
3a:62:05:87:6c:95:d2:65:e2:24:4b:e6:10:f0:06:30:39:7e:
a7:31:f8:f0:59:1d:78:72:79:26:bb:fa:e4:d8:7d:1b:3e:26:
a9:72:23:33:19:73:e1:ac:f4:e1:06:17:15:ce:70:e8:83:b6:
fc:d1:d7:a2:e0:31:bd:c0:04:31:78:d0:5b:69:48:ef:d6:56:
81:d6:b6:97:74:ee:0a:4e:e3:10:42:86:a0:2d:3c:39:24:c1:
a5:96:62:31:68:4c:b0:2e:90:74:12:43:a6:fb:31:40:c4:93:
21:c2:18:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:10 2024 by rpki-client on console-fra.rpki-client.org