Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/FZNcUQxMiVwW03YMFxxO_PTJEb0.roa
File: FZNcUQxMiVwW03YMFxxO_PTJEb0.roa (raw, json)
Hash identifier: P6oyyWvOakG4R60fYnNRRvytnS/zaWI1QUZl1ymGhiM=
Subject key identifier: 15:93:5C:51:0C:4C:89:5C:16:D3:76:0C:17:1C:4E:FC:F4:C9:11:BD
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3B89
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/FZNcUQxMiVwW03YMFxxO_PTJEb0.roa
Signing time: Sun 07 Apr 2024 23:22:33 +0000
ROA not before: Sun 07 Apr 2024 23:22:33 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15241 (0x3b89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 7 23:22:33 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=15935C510C4C895C16D3760C171C4EFCF4C911BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b3:90:b5:db:db:a5:ea:7d:72:6f:c0:b5:69:
ea:3e:9b:30:51:ea:62:5a:66:09:1e:27:14:68:85:
38:76:0c:4d:a2:e5:61:36:a5:83:2e:a8:b4:7f:4e:
63:16:5e:4c:d4:4d:f2:9f:2f:59:49:27:ee:10:87:
0a:46:41:d0:0b:eb:17:f4:e9:6f:a1:ac:dc:e6:3e:
ea:f2:9c:2f:94:52:c8:12:67:88:43:fc:7a:b3:68:
a4:58:ed:8a:4b:12:d9:79:9d:07:35:16:ae:9d:d4:
fd:20:b1:84:19:96:54:2a:ec:e3:46:93:e6:fa:7c:
5c:87:74:83:c0:e9:6b:ac:b3:88:3a:16:63:2c:5f:
1a:58:82:27:17:58:f1:5f:5c:93:06:99:90:4f:ba:
ae:8f:ed:43:0c:92:48:8d:9e:d5:c9:7c:cf:39:f4:
df:ba:6a:3c:be:35:97:b8:06:00:41:8a:b0:23:46:
05:d0:cd:ce:d4:be:6d:8d:d4:ad:21:ae:e0:8d:e4:
5a:c4:b5:eb:dc:81:0b:1c:64:0b:4a:05:44:0e:9a:
76:fa:6c:07:66:b8:10:6f:08:5e:84:bb:50:9c:5d:
78:f0:eb:13:18:e1:f1:61:99:8e:cf:d3:bf:e3:70:
4a:30:16:b8:64:97:21:de:40:9e:4f:04:78:53:21:
27:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:93:5C:51:0C:4C:89:5C:16:D3:76:0C:17:1C:4E:FC:F4:C9:11:BD
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/FZNcUQxMiVwW03YMFxxO_PTJEb0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
67:1a:da:16:cd:cc:68:a2:14:4e:80:27:58:22:ba:70:72:04:
17:1d:4c:6a:8b:0f:c4:15:23:2c:2a:78:a0:54:71:db:0d:69:
08:e2:c6:ea:8e:51:e5:88:d0:14:a8:a0:bf:e6:bf:21:77:a1:
07:8f:12:47:93:cf:69:2b:03:8d:0f:33:03:db:a4:53:0c:39:
60:94:d9:a1:3e:4f:f2:5c:00:34:c1:4d:5f:d6:45:0f:73:69:
18:fe:ac:35:4d:9c:08:8b:b8:88:ca:0d:2a:3e:c0:50:55:2a:
5b:32:38:c9:12:15:c4:b4:c6:25:85:84:dd:86:98:0e:4f:0b:
c9:ba:32:ef:13:70:e5:43:66:77:5a:50:0d:d1:93:db:8e:cc:
0b:2a:08:73:8b:7c:6c:fb:89:88:6e:25:82:68:ac:dd:0d:82:
c3:a5:c1:95:5c:f8:38:a7:88:d5:11:35:41:d3:4e:3a:8d:f1:
a9:1e:60:fb:f0:32:24:cc:36:48:48:15:e9:59:35:0d:a3:31:
df:0a:3c:fd:24:fd:05:2a:bb:f4:ce:91:be:23:1c:88:ac:7c:
d2:07:3d:92:6f:46:9e:9a:90:ab:a4:be:c4:71:00:d6:ad:e6:
e9:b8:7f:83:e0:8d:e8:ea:47:a4:e5:cb:50:64:90:8a:97:6e:
51:39:a6:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:15 2024 by rpki-client on console-fra.rpki-client.org