Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/C3wjnNUPANiMnLUsw6JBXwcsXcM.roa
File: C3wjnNUPANiMnLUsw6JBXwcsXcM.roa (raw, json)
Hash identifier: MPjdZ3RzPEDPPxUKwm/Pu28r7yAi2/+I9ZLDl5gSUvI=
Subject key identifier: 0B:7C:23:9C:D5:0F:00:D8:8C:9C:B5:2C:C3:A2:41:5F:07:2C:5D:C3
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4041
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/C3wjnNUPANiMnLUsw6JBXwcsXcM.roa
Signing time: Sun 14 Apr 2024 06:23:22 +0000
ROA not before: Sun 14 Apr 2024 06:23:22 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16449 (0x4041)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 14 06:23:22 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=0B7C239CD50F00D88C9CB52CC3A2415F072C5DC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:09:56:a1:49:fe:7d:8a:ad:49:93:e3:37:f1:
69:fc:1b:ef:aa:f7:9d:d8:cd:db:a1:aa:1c:b2:16:
4d:eb:a8:a1:71:31:91:02:53:e4:9a:49:1a:bd:62:
80:af:e1:f5:df:6a:bc:eb:f2:3b:ff:0c:7c:33:38:
74:3f:88:ba:44:57:1b:e3:2b:9c:a8:29:27:f3:31:
3a:22:8f:a7:7f:d0:49:20:94:c7:f7:dc:93:e6:df:
32:25:16:fb:5a:4c:a6:71:0e:55:97:9f:21:a3:fa:
5a:bd:8b:b8:c2:1a:27:4b:ef:28:bc:50:db:c2:8d:
1b:17:01:9e:c2:bc:53:07:fc:4b:b9:72:1a:a2:e6:
f6:69:1a:40:4f:41:fd:6d:1b:4c:31:e9:8b:fa:10:
31:fa:7a:bc:40:57:f8:cd:5c:6d:23:ab:81:88:12:
66:84:8f:9c:8f:81:f3:a7:c8:e2:20:32:a7:66:af:
03:fa:7a:dc:b6:09:ae:1d:bb:ec:89:7a:81:1a:e8:
25:84:99:87:6a:ca:ee:a4:c8:cb:a3:10:97:7e:b9:
f1:d1:89:bc:14:d2:f3:71:9a:d8:f8:6a:e3:13:48:
00:ad:d0:52:11:d3:bb:33:d2:a1:5a:90:6c:cd:7d:
d1:19:6a:f3:5c:49:bd:0a:52:a1:10:16:ea:4f:c7:
fd:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:7C:23:9C:D5:0F:00:D8:8C:9C:B5:2C:C3:A2:41:5F:07:2C:5D:C3
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/C3wjnNUPANiMnLUsw6JBXwcsXcM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
62:45:c3:ef:58:f3:bc:45:95:65:1b:d4:e5:4b:1b:6b:24:00:
0c:ed:81:44:17:5e:11:b3:a0:73:70:1e:b7:2d:6f:ea:f9:a1:
45:14:d8:47:54:90:81:85:9f:6e:d6:43:9d:73:73:71:58:ce:
8f:54:5c:e5:99:49:f4:34:05:c1:12:67:4a:41:c0:e0:1d:36:
3c:89:bb:94:3b:45:b4:50:3f:f4:7d:65:a7:d4:c2:10:bf:53:
d0:ab:b2:48:78:1e:9b:b8:3d:4f:2b:34:54:5b:ca:f6:00:41:
9a:66:86:45:1b:52:7d:af:bf:3e:89:03:90:6a:e0:35:e2:13:
51:62:16:9b:68:4c:68:67:9d:10:5b:0f:3a:c9:06:f1:9d:cf:
c1:2d:d4:e3:40:da:52:31:9a:74:9e:f6:7b:da:e4:22:6b:39:
ac:3b:a2:02:95:85:33:68:7f:f3:34:46:d3:5b:3a:85:36:05:
6c:81:74:16:6e:22:9b:d9:b2:7b:f5:76:ae:0f:13:a1:46:db:
3f:5b:51:b1:3e:67:75:5a:81:fc:32:91:01:25:73:8e:f8:61:
e0:46:5f:cc:c5:b5:0e:d2:e9:a0:6a:bb:7d:6a:6a:32:d3:29:
69:33:5d:3a:83:70:0a:34:e3:a4:d8:2d:d2:bb:43:88:37:09:
cc:8b:40:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:12 2024 by rpki-client on console-fra.rpki-client.org