Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/EtvBjR3WqbgK-d9KAF3VYWM6wWM.roa
File: EtvBjR3WqbgK-d9KAF3VYWM6wWM.roa (raw, json)
Hash identifier: 7/4oFkWo1LIsv3bsICK91whHEeKNcBlOnUT95cOCDUY=
Subject key identifier: 12:DB:C1:8D:1D:D6:A9:B8:0A:F9:DF:4A:00:5D:D5:61:63:3A:C1:63
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4F05
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/EtvBjR3WqbgK-d9KAF3VYWM6wWM.roa
Signing time: Fri 03 May 2024 22:53:47 +0000
ROA not before: Fri 03 May 2024 22:53:47 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20229 (0x4f05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 3 22:53:47 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=12DBC18D1DD6A9B80AF9DF4A005DD561633AC163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:69:b6:4f:1b:fd:4a:8a:58:18:e1:14:a1:37:
3f:b3:a8:ff:c9:20:39:50:9f:6b:81:52:af:0c:43:
af:ba:4e:13:1d:f5:eb:1d:6c:fa:38:18:37:87:e7:
c1:37:35:5d:56:4f:4d:f8:16:f3:47:c1:43:eb:91:
bb:2f:26:7d:aa:90:c3:21:14:04:c3:d4:b1:d2:1c:
8b:75:dd:1e:b7:dd:9f:cf:ca:17:73:80:2a:df:d4:
24:a8:26:94:c3:0c:7c:25:c3:d0:5e:c1:c6:c3:23:
4e:24:95:be:92:77:d8:be:a9:00:db:f1:d0:46:20:
d7:cb:1f:2a:fe:42:e7:a4:b2:df:6e:b5:9a:d4:8b:
fe:30:c8:c8:a2:ac:55:58:63:95:77:fd:92:f8:6d:
a0:db:53:d4:bb:05:02:79:97:56:0c:66:12:65:4c:
e7:d2:35:13:18:73:91:e4:76:89:dd:48:3f:4e:6d:
ae:de:04:dc:d2:36:36:19:0d:68:5e:3d:fb:49:c4:
77:54:49:be:97:c9:20:c2:ad:15:bb:54:6a:46:98:
ad:b3:35:64:87:3a:d0:e2:7a:89:75:2d:98:65:0f:
82:7b:fe:57:a9:b2:a6:81:90:35:a1:53:05:7e:a5:
9c:3c:d1:c7:67:4b:af:48:20:af:f5:12:ae:b8:36:
39:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:DB:C1:8D:1D:D6:A9:B8:0A:F9:DF:4A:00:5D:D5:61:63:3A:C1:63
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/EtvBjR3WqbgK-d9KAF3VYWM6wWM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
47:d9:e7:81:74:ca:c1:8c:ec:3a:32:17:8c:82:cf:47:cf:f6:
6d:8e:90:a5:e2:8c:59:ca:be:94:9b:26:35:cb:37:20:13:82:
25:16:f6:17:a8:49:2b:f9:e4:39:e6:f0:6c:3a:d0:06:a9:97:
8d:f5:c9:8e:69:05:97:1e:13:65:a8:5d:65:73:20:8f:5f:7e:
88:3b:bd:dc:f3:27:c0:1f:33:10:99:dc:d3:0c:74:ab:16:0d:
64:db:f6:dc:84:02:ef:60:70:d2:24:99:33:43:19:e3:b4:a0:
c7:3b:0b:a2:bd:5e:13:c9:33:a4:52:a5:e9:d5:e2:8e:59:cf:
00:f8:40:5d:41:ad:fe:bf:cd:df:8b:a2:58:60:98:a1:05:0e:
a5:72:72:5b:31:03:b3:35:62:10:11:83:b8:d0:56:69:ed:80:
f6:fe:5e:b1:09:0e:1a:1f:b5:ec:ad:8d:d0:a5:01:a2:80:ff:
31:cc:72:2e:e1:dd:59:5a:b6:48:32:d1:c4:91:4b:5d:a2:2a:
13:21:18:42:ee:65:ac:25:00:17:a3:07:cb:d1:ff:20:ab:57:
f5:89:7c:d8:0f:e1:0f:6c:97:5d:24:24:93:3f:2c:fb:65:dd:
8f:60:33:8d:1e:52:3b:3a:20:6d:68:12:0b:83:cb:c3:3c:5f:
bb:bc:7c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:14 2024 by rpki-client on console-fra.rpki-client.org