Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/GaAnG8Q93jp8l1Nw1xB5VYLDiK0.roa
File: GaAnG8Q93jp8l1Nw1xB5VYLDiK0.roa (raw, json)
Hash identifier: cLfOPPJCo2zvy4m/sCRByTs6pDbNKgwz/TVt6/sSn9o=
Subject key identifier: 19:A0:27:1B:C4:3D:DE:3A:7C:97:53:70:D7:10:79:55:82:C3:88:AD
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 480D
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/GaAnG8Q93jp8l1Nw1xB5VYLDiK0.roa
Signing time: Wed 24 Apr 2024 15:53:34 +0000
ROA not before: Wed 24 Apr 2024 15:53:34 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18445 (0x480d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 24 15:53:34 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=19A0271BC43DDE3A7C975370D710795582C388AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:be:03:c3:1d:5e:ea:b4:d5:b1:98:01:1d:0f:
ec:a6:53:36:d7:6d:92:62:25:4b:06:b3:b0:09:f7:
a6:91:71:be:56:20:56:31:ba:94:c6:06:01:23:8f:
fa:56:25:db:73:b3:29:24:a8:4e:93:46:2b:f0:c9:
60:48:10:7a:98:b2:22:f6:43:5d:de:b6:a4:f5:69:
9e:7c:7d:1f:23:b8:56:b7:b4:9b:cd:72:37:32:c4:
b9:b2:c3:2a:0a:00:b7:76:e9:00:aa:6b:7b:28:f4:
32:b3:86:19:db:97:f3:84:0b:12:a7:d9:1f:97:08:
2e:ca:6c:b0:05:ba:76:4d:d9:e6:3f:30:99:75:76:
33:91:bb:3c:e2:cd:27:91:99:a2:93:d4:12:c1:ae:
d8:e0:45:42:6a:03:83:78:45:36:2b:6d:b4:69:97:
e6:22:f2:f6:9b:f2:06:c7:4e:a7:af:01:e1:29:c4:
7b:25:41:e2:48:77:0b:b3:42:1e:de:8b:50:6e:a1:
83:48:67:4d:4b:d9:ae:00:8c:31:d6:f0:86:e6:f1:
7c:bd:22:c3:f9:d2:b3:8e:4b:84:80:b3:b8:19:40:
38:20:fb:c3:00:82:56:b4:78:e7:bf:2a:86:c5:44:
06:cb:98:45:1c:47:fd:4d:a4:8d:c7:51:36:de:d9:
d0:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:A0:27:1B:C4:3D:DE:3A:7C:97:53:70:D7:10:79:55:82:C3:88:AD
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/GaAnG8Q93jp8l1Nw1xB5VYLDiK0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
3d:8c:99:a7:32:d6:7b:80:e2:f7:62:fe:c6:cf:fe:55:c4:42:
2a:40:7e:15:63:a0:4d:33:d4:35:3d:40:fb:4f:20:27:70:f8:
dc:01:7b:a6:23:81:a0:45:51:6c:a7:66:17:8e:52:f0:a3:1d:
48:a3:5d:8b:1c:04:17:2a:04:38:ad:6a:c0:c8:f2:d0:c5:d0:
10:d6:6b:4a:77:b2:5a:22:c6:f7:61:fd:aa:6f:90:06:5a:86:
cd:b1:4a:c2:93:17:92:27:05:f8:be:90:69:cc:50:68:56:17:
65:bf:ef:dd:80:59:7d:a8:65:b2:ce:dd:82:01:ad:ba:8c:29:
48:db:df:c6:2a:b8:17:11:b4:e0:a7:01:e5:06:2e:d2:8b:11:
45:77:b7:bc:71:57:21:a6:56:8f:ac:97:cb:3c:a0:78:22:ac:
03:f8:7f:ec:b3:a5:58:9f:01:83:93:63:c4:c5:22:d4:96:ed:
28:db:b3:38:86:8c:03:4e:ca:80:7e:3d:d3:e1:6d:72:10:32:
88:b2:24:94:e8:aa:da:0c:a5:6b:43:85:35:cc:50:7c:38:60:
34:f4:de:d7:96:39:a3:0e:c2:6d:8b:1b:b5:40:59:60:ad:a6:
d6:4e:05:2d:b7:d3:97:fc:7f:6c:8e:e4:c9:1e:f2:89:34:ee:
47:35:b0:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:16 2024 by rpki-client on console-fra.rpki-client.org