Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/Dv2Ed-onlEdCTzMJ8_9mFo1GjDg.roa
File: Dv2Ed-onlEdCTzMJ8_9mFo1GjDg.roa (raw, json)
Hash identifier: 93ybHL29d4BLktqbtOAmvRpcdSq9gLsYnxClJASi4gE=
Subject key identifier: 0E:FD:84:77:EA:27:94:47:42:4F:33:09:F3:FF:66:16:8D:46:8C:38
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3539
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Dv2Ed-onlEdCTzMJ8_9mFo1GjDg.roa
Signing time: Sat 30 Mar 2024 13:22:14 +0000
ROA not before: Sat 30 Mar 2024 13:22:14 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13625 (0x3539)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Mar 30 13:22:14 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=0EFD8477EA279447424F3309F3FF66168D468C38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:64:3f:e9:c0:6c:09:47:f2:ca:fb:f9:9e:68:
ee:f2:e3:34:0c:99:2e:0a:03:ec:1b:71:e3:fe:1e:
29:01:fe:9e:73:f9:d4:95:c5:66:5d:cb:08:3c:7d:
a1:20:77:41:a3:ae:71:ff:60:6e:c2:7b:5a:bc:b1:
69:b7:e7:21:33:46:00:59:9c:eb:54:b3:92:09:08:
17:8a:69:c6:21:60:47:d4:83:e5:ca:25:2b:5c:e6:
83:1b:3d:ae:07:8e:82:15:41:d8:2d:9f:76:a3:45:
94:28:eb:16:a2:14:4e:05:b2:d2:82:d9:93:a7:a1:
9a:8c:ef:05:ec:fc:3d:2a:cc:29:22:78:53:2a:f6:
df:b2:f1:a8:61:e3:87:83:c5:9a:5d:0c:b8:f5:bf:
d2:8d:c0:a4:1d:b4:a1:29:f1:07:17:9f:39:19:22:
87:58:e8:60:19:43:b9:8b:81:f6:4b:a5:59:59:81:
25:be:ba:a5:3f:b6:63:6f:d0:34:00:66:77:d8:7f:
66:3e:49:ed:86:32:87:47:78:75:cd:08:18:54:44:
1f:74:9e:77:0a:ce:2c:59:a9:5e:fd:fe:88:ad:d5:
11:24:c7:04:7c:77:ea:be:eb:e6:d3:b0:e3:1f:5c:
77:18:46:bf:b6:d1:8d:4b:fc:52:a7:4a:19:9d:eb:
62:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:FD:84:77:EA:27:94:47:42:4F:33:09:F3:FF:66:16:8D:46:8C:38
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Dv2Ed-onlEdCTzMJ8_9mFo1GjDg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
6b:fd:2b:b4:b8:d4:7e:c3:b1:6e:ce:5c:41:a5:5a:21:b1:8d:
39:c7:9f:de:8e:d4:e5:3f:d9:50:95:5b:51:1f:e5:23:5d:3b:
bf:b9:c0:77:c1:82:d0:92:c0:62:5f:cd:9c:1b:53:44:92:4e:
0a:79:70:2a:a6:7c:a4:32:e0:33:5c:f1:35:87:31:8d:29:61:
cf:ce:c7:fd:70:55:8d:7c:ba:8d:eb:84:5c:bf:70:cb:03:d0:
ae:d9:a9:21:1b:38:9f:28:db:5d:8c:a2:a5:50:60:bb:6b:62:
9c:08:64:0a:c8:ce:bd:7d:5e:f8:e1:da:56:b7:5e:e6:c0:91:
16:b1:b3:fa:09:af:8b:7c:b9:95:56:5c:ed:cd:63:d2:b2:9e:
d5:b7:ce:a9:bf:ca:47:49:98:1a:2f:60:5f:49:e4:45:80:45:
40:3d:27:66:4a:aa:21:57:f0:f5:10:8d:20:30:75:6a:be:5d:
b3:02:84:c8:b5:ec:47:47:1e:a1:f8:87:16:ff:d7:7a:67:72:
25:7e:1d:ec:c6:1b:55:d6:5c:b0:6d:bd:33:e8:65:1e:82:6e:
f4:74:0f:1f:3b:99:dd:c4:74:a8:08:db:ce:f2:97:f3:e8:b9:
3d:79:ff:3c:33:21:b6:a7:b8:b2:e7:93:fb:6a:20:35:c0:5c:
67:9f:80:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:48:25 2024 by rpki-client on console-ams.rpki-client.org