Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/EYK4Xp5mckzD6ESqsMEgTJqelpM.roa
File: EYK4Xp5mckzD6ESqsMEgTJqelpM.roa (raw, json)
Hash identifier: lnOdw9Z0n2NELOOImD6RrVF4KGlHNoGS9dMw2VkWfAE=
Subject key identifier: 11:82:B8:5E:9E:66:72:4C:C3:E8:44:AA:B0:C1:20:4C:9A:9E:96:93
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3805
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/EYK4Xp5mckzD6ESqsMEgTJqelpM.roa
Signing time: Wed 03 Apr 2024 06:52:21 +0000
ROA not before: Wed 03 Apr 2024 06:52:21 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14341 (0x3805)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 3 06:52:21 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=1182B85E9E66724CC3E844AAB0C1204C9A9E9693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d0:34:9c:7b:c6:10:e1:8d:78:6d:ec:dd:f6:
4b:88:a6:c8:cd:6a:1e:97:32:7b:6d:59:7c:76:25:
5b:0e:35:30:4c:08:ff:2e:da:dc:62:b5:88:25:65:
ed:ee:11:e3:51:fb:3d:ec:0b:e5:61:13:07:cc:4a:
ea:9b:c1:60:c9:be:5f:88:71:74:11:a7:0a:c8:85:
65:cb:0a:62:ec:4f:0d:ae:8f:4b:bc:61:62:b4:72:
55:32:88:4b:a5:6e:ea:24:d3:35:a7:4b:6e:53:56:
bb:05:26:59:8f:d2:c5:f5:bb:ae:5a:bd:f6:43:a4:
91:ce:f9:8f:e4:cd:17:db:37:44:dd:d3:31:bc:dc:
79:ba:55:2f:c3:b8:25:31:c4:e2:fc:43:b3:02:1e:
05:a2:ec:c2:d9:96:16:b9:e5:1e:92:0a:e1:23:38:
52:14:ac:dd:4f:64:5c:e3:d9:9f:a3:e6:57:17:6c:
de:b0:2b:58:14:d3:cd:be:6e:7d:81:07:cf:0e:1b:
22:07:64:26:07:19:04:ee:b0:78:9f:a9:b4:da:42:
3e:fd:4a:e7:22:ae:58:99:1a:43:c5:01:78:fb:54:
1c:db:bb:30:64:cb:7c:00:ce:07:ba:27:b0:c5:7d:
d4:5e:36:6f:af:59:4c:89:e4:df:45:43:37:03:ba:
23:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:82:B8:5E:9E:66:72:4C:C3:E8:44:AA:B0:C1:20:4C:9A:9E:96:93
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/EYK4Xp5mckzD6ESqsMEgTJqelpM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8d:7b:c5:bc:8b:44:bf:e1:62:f2:37:d5:4b:3d:cd:4d:7f:b9:
76:31:8b:9a:02:fd:ca:2e:f2:7d:ed:72:b6:aa:bf:8b:26:25:
c0:f7:e1:ff:fd:63:e5:8f:2a:b1:18:79:9f:25:4a:c5:32:73:
86:21:a9:a6:c0:6a:c4:fd:90:ff:b3:b2:60:80:a1:12:8d:d9:
fb:99:12:cc:aa:48:79:e5:d5:8c:4b:2d:b6:a9:41:9c:34:fd:
2b:3f:b1:55:63:50:30:69:43:6e:d2:a2:fe:d6:27:0f:46:29:
8a:9a:fb:ba:cb:e2:d9:40:be:0d:a0:f0:35:55:31:96:c4:f2:
18:01:81:b5:cf:9d:61:00:22:01:13:1b:1c:a3:60:21:78:be:
8b:bd:52:66:e6:5e:ef:7c:26:84:79:fa:4e:e9:94:b9:44:64:
fc:4e:5b:c8:dd:24:eb:ad:b5:03:7f:6d:ed:6f:84:a4:c2:cd:
78:f5:d1:c7:7f:c5:c5:83:e9:32:52:0d:58:92:37:08:4b:7c:
90:6c:73:e5:44:b8:02:32:b7:78:ff:18:86:f2:a3:08:03:f5:
8a:e4:92:7a:7d:b0:52:a4:c6:59:c9:a5:ef:61:8f:be:0d:f9:
26:f6:80:6d:4c:94:ea:6b:df:4e:d9:db:d1:d8:ac:6f:d0:3a:
19:6a:99:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:14 2024 by rpki-client on console-fra.rpki-client.org