Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/Dywv5l3RKIiZohpRK69UXiSonAo.roa
File: Dywv5l3RKIiZohpRK69UXiSonAo.roa (raw, json)
Hash identifier: 5d/H9KP3icyHha4aaNxcCDNkQwrS2QNpVwlfxS3fFYk=
Subject key identifier: 0F:2C:2F:E6:5D:D1:28:88:99:A2:1A:51:2B:AF:54:5E:24:A8:9C:0A
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5691
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Dywv5l3RKIiZohpRK69UXiSonAo.roa
Signing time: Tue 14 May 2024 00:24:07 +0000
ROA not before: Tue 14 May 2024 00:24:07 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22161 (0x5691)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 14 00:24:07 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=0F2C2FE65DD1288899A21A512BAF545E24A89C0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:05:94:c9:bb:e3:f0:7f:da:5f:3c:ba:d1:48:
97:0f:d7:32:2a:0b:6e:71:ee:73:05:4c:ab:25:4c:
13:1f:70:ac:16:8d:c3:60:bf:3d:b8:2d:12:c0:4a:
9f:df:17:b3:82:60:98:1c:ee:31:f6:df:07:6c:bd:
83:44:4b:cb:b5:9e:c0:a7:c8:f7:4d:7f:e3:26:bb:
22:7e:e1:ad:17:2b:fe:c6:59:5b:f5:29:26:4f:db:
6c:72:99:97:6a:7f:c0:1d:a2:68:da:c3:c1:7d:4f:
e5:a4:cf:c3:4d:f7:a4:86:80:49:3a:96:53:77:46:
15:fe:f0:d1:fa:6c:2d:46:87:91:16:82:53:ae:f7:
b6:2a:43:92:95:46:c5:56:c3:1a:87:32:a4:b6:04:
ff:88:59:fc:e8:cf:92:26:fc:df:80:73:8c:a9:95:
0d:02:17:c5:a2:76:0d:ff:32:04:8c:9c:b6:05:56:
bd:6d:69:9e:bf:4d:ec:45:bc:63:36:2f:8c:a8:35:
f2:49:a6:98:de:12:8b:f8:38:dc:12:d9:fa:36:a8:
28:9b:78:13:9a:a2:4b:ba:5b:d5:6e:97:c2:95:07:
a9:8c:2b:f6:63:03:ba:67:ee:7e:1e:08:57:53:b8:
a5:53:dd:ae:4b:0a:9b:a3:c3:ef:15:ad:dc:ef:6e:
1a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:2C:2F:E6:5D:D1:28:88:99:A2:1A:51:2B:AF:54:5E:24:A8:9C:0A
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Dywv5l3RKIiZohpRK69UXiSonAo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
b0:e5:e0:00:ab:27:65:84:46:7a:c1:51:f4:ed:24:81:54:c6:
35:df:78:b2:e6:cc:61:6c:7c:00:98:eb:da:f8:6e:b4:a2:1f:
f1:20:33:7a:4c:8b:e4:85:d6:dd:17:84:0d:82:48:1f:e9:83:
a0:bc:94:32:c6:56:ef:c5:6b:b3:2c:99:d4:15:92:9b:50:58:
fe:dd:02:a9:28:d1:d0:2a:1c:e1:16:a2:03:3e:db:87:1e:f0:
60:bb:33:ec:ac:d1:9f:7d:22:7d:39:2c:f9:f2:c8:68:71:4a:
73:44:11:cb:20:02:be:9b:8e:99:67:18:87:3b:fd:7e:12:a2:
83:2f:4e:9c:9e:c2:50:c9:cc:f0:bb:6e:ed:b2:dc:0e:02:ee:
3d:07:82:92:f8:6f:33:7c:47:4d:7a:85:09:65:38:8c:fa:5e:
8b:b5:ff:4a:44:3b:78:48:9c:7b:ce:a9:8b:3f:1d:60:11:03:
99:d3:8a:a7:e6:98:14:ba:b7:79:8f:a5:36:34:f3:57:d2:6d:
42:97:00:7d:4d:ac:51:dc:d7:b4:5b:4e:5c:4d:e3:8e:b1:4f:
b7:98:27:57:56:d7:73:18:a3:51:6a:26:a1:07:18:45:6d:4b:
57:33:08:ca:39:7c:30:04:2b:7f:60:b2:7f:cf:fe:06:e4:a7:
7b:6a:98:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:14 2024 by rpki-client on console-fra.rpki-client.org