Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/B_C3KlRJ4eozP7y3_FoTk4kfJus.roa
File: B_C3KlRJ4eozP7y3_FoTk4kfJus.roa (raw, json)
Hash identifier: eO0vewj1s8ROWQXK4SJAgziCm/0Omdq3R0JPjecloSo=
Subject key identifier: 07:F0:B7:2A:54:49:E1:EA:33:3F:BC:B7:FC:5A:13:93:89:1F:26:EB
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4555
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/B_C3KlRJ4eozP7y3_FoTk4kfJus.roa
Signing time: Sun 21 Apr 2024 00:53:04 +0000
ROA not before: Sun 21 Apr 2024 00:53:04 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17749 (0x4555)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 21 00:53:04 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=07F0B72A5449E1EA333FBCB7FC5A1393891F26EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:29:ca:e0:15:b1:88:ff:9b:f5:da:bc:36:a1:
6b:f5:31:0c:be:d2:f0:4c:e7:0b:33:f5:42:66:72:
77:28:66:1b:ab:87:71:47:75:9e:d0:0c:97:cf:23:
0d:1d:a2:93:20:74:5a:b4:02:0c:8a:d7:0e:4d:07:
b3:46:60:3b:c8:8a:a5:db:1d:f3:c1:9a:31:dc:96:
5b:88:74:7e:32:55:9e:f8:03:c0:27:2f:fc:c6:0b:
82:f0:56:5a:40:b5:15:a0:f8:e3:12:ce:fb:65:2d:
3c:0a:94:ac:a0:b0:45:40:ad:96:d8:ff:e8:5d:f5:
6a:c4:3f:13:1e:d5:47:d9:a9:0a:60:9a:3b:cc:3d:
61:b8:cb:2d:1e:76:91:ef:00:cb:cf:f5:84:7b:e2:
00:73:60:bb:7e:85:28:65:d4:a0:44:31:56:96:6b:
58:94:f6:4e:e5:44:97:b2:3c:8f:85:87:9f:98:03:
18:fb:64:6c:b6:b1:85:12:b9:d3:84:05:7d:b8:64:
ae:50:86:72:23:e8:3e:85:19:9e:e9:e2:35:c8:99:
62:be:e0:e6:a3:f2:a3:08:41:20:83:ef:01:42:06:
5b:7b:29:41:f4:b1:ac:68:39:d7:3c:4e:e0:34:8e:
d9:10:4e:c1:cd:0c:66:81:31:54:44:5d:e1:c1:09:
34:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:F0:B7:2A:54:49:E1:EA:33:3F:BC:B7:FC:5A:13:93:89:1F:26:EB
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/B_C3KlRJ4eozP7y3_FoTk4kfJus.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8e:19:9c:9a:82:8f:75:e5:94:1a:36:52:f4:b8:50:90:51:f6:
2b:96:4c:f1:2d:67:3f:c5:84:06:6a:98:c1:a8:60:d2:91:3f:
9a:97:6c:d2:3a:cf:7e:e4:1a:bd:7b:3e:b4:74:01:b6:7d:38:
89:c9:d5:a1:b8:e9:4a:75:b7:92:f6:3b:9e:17:80:65:0e:8a:
5c:c9:21:ac:b6:a7:3a:7d:07:ae:a5:72:c4:21:5c:9c:3c:23:
3f:47:85:72:30:d9:fc:18:24:d2:50:ce:a2:e6:8d:7c:8c:ab:
5b:43:b2:0f:af:da:97:9d:72:09:fd:25:95:5a:ea:27:55:b0:
f7:d7:28:7a:16:f9:44:0e:04:fa:9a:2e:c3:7c:37:a1:42:98:
62:b1:22:3a:b8:21:ef:7a:96:f9:1f:ca:95:ce:10:80:74:50:
6a:9d:90:d1:0e:72:3f:a6:05:2b:33:4c:3d:ad:d6:18:cd:f5:
f3:c0:4d:23:13:83:2b:3d:ec:51:93:3c:92:b8:5a:c4:23:3a:
0f:37:f8:60:45:09:79:5c:c6:d4:e4:0e:6e:5e:0f:18:1c:c7:
88:27:70:52:5f:60:7a:de:ba:39:3e:13:53:be:5d:95:6e:49:
ec:a5:ad:85:43:10:8f:65:75:54:20:f1:00:b5:66:28:19:89:
62:ed:d7:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:48:22 2024 by rpki-client on console-ams.rpki-client.org