Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/AlyUNuU6iYsTjlxiTmtuEEELu7w.roa
File: AlyUNuU6iYsTjlxiTmtuEEELu7w.roa (raw, json)
Hash identifier: 3DIKz4aMdXkQeKP0c56gXhA3X7nE1ZJx4aUppcXvzds=
Subject key identifier: 02:5C:94:36:E5:3A:89:8B:13:8E:5C:62:4E:6B:6E:10:41:0B:BB:BC
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5101
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/AlyUNuU6iYsTjlxiTmtuEEELu7w.roa
Signing time: Mon 06 May 2024 14:24:02 +0000
ROA not before: Mon 06 May 2024 14:24:02 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20737 (0x5101)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 6 14:24:02 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=025C9436E53A898B138E5C624E6B6E10410BBBBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:40:45:f5:67:a8:52:b6:8c:5c:e9:f1:b0:da:
43:d3:07:98:ee:44:f6:82:60:6e:95:59:a9:b0:8b:
9b:95:bf:19:42:7f:2f:f5:dc:0e:d8:1c:33:89:70:
97:4c:34:50:a7:53:b6:45:80:c6:30:8a:dd:6a:31:
ac:ab:38:6a:79:1c:70:d9:2e:da:c1:73:8b:16:b9:
76:9c:50:31:0f:71:be:ca:bc:38:71:d0:47:7a:a6:
0f:d0:41:f2:8a:3e:9a:98:b7:7a:b5:62:05:d0:56:
c1:fd:b0:c6:32:77:da:cf:88:c3:17:fb:a9:ac:e8:
6f:14:6c:9a:44:53:28:90:90:ba:80:db:ed:e6:d6:
02:8a:68:92:fd:9b:5e:3d:dd:e5:86:ec:7f:de:84:
37:6a:e5:48:90:c7:96:92:1e:6d:22:e7:f1:82:22:
5b:ac:68:fc:03:06:48:18:dc:70:bd:64:b8:58:15:
e0:90:97:3a:9a:e9:7e:6c:3f:8b:34:19:cf:ae:e4:
fa:71:bb:2c:ba:e1:f5:8e:05:26:dd:aa:8f:6f:15:
27:79:02:77:55:1f:f6:e0:08:58:21:ab:e6:4f:20:
8e:58:d2:27:58:f5:f8:b4:d2:5a:d0:7f:a5:fb:1c:
5e:b9:09:4b:10:10:35:1b:05:a7:4e:f8:a8:5e:60:
50:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5C:94:36:E5:3A:89:8B:13:8E:5C:62:4E:6B:6E:10:41:0B:BB:BC
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/AlyUNuU6iYsTjlxiTmtuEEELu7w.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
ba:df:53:fb:db:44:24:db:f8:28:7b:83:f2:d2:ee:ed:8f:87:
a3:7d:2d:0c:35:ef:9e:3f:fb:9a:ea:92:b4:d0:e4:43:77:51:
cd:57:5a:39:53:b2:23:ef:a5:d6:99:02:02:5d:0f:0d:22:ec:
bf:9d:1d:42:eb:a4:fe:a0:ec:92:55:c7:e4:1b:80:64:71:c7:
59:16:d5:a9:e2:9e:cf:ca:f0:6c:f8:52:8a:d6:93:1f:fb:c9:
ed:44:9c:a1:d1:3b:d7:1a:f7:9e:14:56:cd:25:e0:ab:99:8d:
e7:b2:30:4d:99:d2:90:d6:97:e1:f1:0f:2d:8b:f2:0b:2f:be:
f1:1a:b7:62:9b:ff:ba:5f:5b:e7:24:41:5a:d2:21:db:8b:e0:
14:5e:1c:69:39:d2:10:97:96:c3:27:40:4d:f4:a2:af:c5:24:
ae:97:1c:36:b7:ac:9e:96:a0:98:2e:5a:b7:bc:9b:c3:7e:df:
65:a5:1f:0d:59:fa:e8:6f:11:5d:23:5c:c3:5b:c9:bc:e8:30:
d0:b3:0a:1b:89:12:f3:51:3d:b9:77:d3:07:83:5f:dc:3e:5a:
35:8e:80:16:7c:11:44:d7:7f:43:38:2c:b9:1e:87:b6:29:a0:
6f:22:6c:bc:e1:55:b6:f8:3e:e0:0e:10:18:91:0b:24:46:e4:
5e:cf:67:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:45:27 2025 by rpki-client