Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/9vFBaj7U2QWptZyhviI57Bh0dvo.roa
File: 9vFBaj7U2QWptZyhviI57Bh0dvo.roa (raw, json)
Hash identifier: umnOpL+mKFqftv+v4qAbIIR/234buYxun3VQDLH9WCY=
Subject key identifier: F6:F1:41:6A:3E:D4:D9:05:A9:B5:9C:A1:BE:22:39:EC:18:74:76:FA
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5559
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/9vFBaj7U2QWptZyhviI57Bh0dvo.roa
Signing time: Sun 12 May 2024 09:24:03 +0000
ROA not before: Sun 12 May 2024 09:24:03 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21849 (0x5559)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 12 09:24:03 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F6F1416A3ED4D905A9B59CA1BE2239EC187476FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:03:a2:20:84:e8:6a:17:82:fc:af:32:77:be:
1b:9a:22:c1:10:77:7f:e2:55:b3:1c:6b:25:15:53:
d2:01:f9:50:64:01:67:c2:b3:f3:8f:b0:f0:59:14:
87:ff:22:43:17:bd:04:72:c0:ef:fc:06:55:f2:99:
9d:c2:1a:86:32:9d:18:fd:3a:d1:d6:fb:52:5e:90:
eb:fb:ec:d3:68:87:f0:ca:5a:56:ab:bf:d7:13:bb:
23:cb:6d:05:f8:4d:c8:0f:cf:14:d8:58:83:68:19:
7c:87:73:e3:20:93:ea:8d:91:b1:6f:dd:af:df:4b:
cf:80:e4:53:f7:db:d2:3e:8a:09:f5:02:94:94:6b:
1c:d2:a6:eb:98:c3:e5:6f:4f:3a:dc:d9:d0:a3:dc:
9c:46:74:66:f2:a9:fd:29:6e:38:29:07:3d:31:28:
c2:15:fd:ee:e8:01:57:7b:de:7f:04:5c:1c:3d:ab:
7d:e1:32:10:3b:98:85:56:82:b1:cf:fb:af:0c:fa:
51:8d:98:4b:07:ca:10:82:cd:4c:ca:be:67:0a:4c:
1c:fb:cb:79:19:7a:24:ca:23:5c:aa:5e:8c:c3:ee:
9c:64:ff:04:d5:fb:cd:58:59:92:86:35:7f:ed:07:
08:e9:11:e4:1e:89:ce:2a:5b:07:fc:e5:56:d8:84:
1d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F1:41:6A:3E:D4:D9:05:A9:B5:9C:A1:BE:22:39:EC:18:74:76:FA
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/9vFBaj7U2QWptZyhviI57Bh0dvo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
21:c4:2e:b7:8e:79:99:a3:1a:de:67:18:9d:b1:1c:2e:eb:c9:
d4:d6:af:51:ac:3f:f1:87:35:5d:32:93:2c:a5:b4:d6:e8:59:
1b:22:9a:d7:45:ea:e6:92:d9:c1:17:b2:1f:9f:8b:54:50:f4:
12:1a:04:24:82:59:8c:4a:ed:fc:9c:01:29:1e:c8:67:21:08:
2c:eb:7b:38:3f:d2:69:a8:d1:12:20:ac:1a:51:b4:e8:9e:c4:
c9:c5:16:2f:c4:9c:5f:34:3e:cf:50:ac:02:a8:be:4d:44:9c:
bf:75:b5:d9:3d:b9:37:1f:fb:ac:c6:70:34:b4:f7:c9:d8:ab:
24:08:76:a1:3d:9a:9c:d6:e3:b0:20:d2:cb:81:cb:26:f4:6a:
b3:0d:8d:5d:1e:d2:98:fb:7f:20:db:33:6b:c5:5d:6b:45:bb:
93:ab:4c:be:a3:b5:5b:6e:28:d1:e1:d4:ab:58:5a:d2:c2:57:
0a:43:2f:e0:b5:a8:12:4a:2f:03:b3:fb:b4:d7:df:71:63:66:
1a:10:dd:43:2b:e4:e7:ee:43:3c:7a:b6:06:0a:24:99:a7:ae:
19:f6:b4:53:36:85:ad:65:e1:85:ac:1a:b2:4c:56:82:e0:1b:
31:80:49:e2:2f:73:48:ba:e9:2a:7d:d5:0e:7a:18:f5:b6:f7:
67:ff:16:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:10 2024 by rpki-client on console-fra.rpki-client.org