Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/HQVjxg2HHvhvVwYcXaOI-NVkq5A.roa
File: HQVjxg2HHvhvVwYcXaOI-NVkq5A.roa (raw, json)
Hash identifier: VOCmDRSf8bUxTo5O0E07rDB5QSAwQRLe7jNtj0FLXuk=
Subject key identifier: 1D:05:63:C6:0D:87:1E:F8:6F:57:06:1C:5D:A3:88:F8:D5:64:AB:90
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5509
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/HQVjxg2HHvhvVwYcXaOI-NVkq5A.roa
Signing time: Sat 11 May 2024 23:24:03 +0000
ROA not before: Sat 11 May 2024 23:24:03 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21769 (0x5509)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 11 23:24:03 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=1D0563C60D871EF86F57061C5DA388F8D564AB90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:29:45:62:48:4b:09:5f:23:b7:60:7b:e9:2b:
1c:2d:00:02:ec:e2:c6:2a:20:b5:eb:88:6d:cb:18:
54:b9:ec:5b:3a:1d:51:d6:36:d5:b6:a6:62:d8:de:
b6:a2:66:a9:1b:5f:8f:68:bd:ad:a8:3c:30:c5:25:
0c:a4:d4:bb:8d:9a:8d:0f:78:c3:df:02:ea:8b:dc:
1f:18:71:02:b9:68:46:63:31:1d:7b:7d:02:fd:cf:
50:5a:d7:02:df:72:09:ab:80:d8:3f:ad:55:8b:a9:
73:38:e5:84:2d:33:80:31:52:dd:df:51:23:26:dd:
70:0e:be:44:4c:d5:e8:25:d8:4f:62:d4:06:06:f0:
76:99:f4:f6:3a:f9:53:5b:e4:81:9a:3e:8a:e7:c8:
0a:06:16:79:b7:58:a7:90:ef:18:a5:69:96:e1:1f:
ab:bf:bf:d8:bf:0f:83:d0:46:62:f5:0f:ae:e0:78:
4f:30:47:bf:16:e5:9f:05:42:c1:d3:1f:41:4b:c4:
ec:97:9d:28:52:81:d7:5a:12:9e:1f:66:48:ff:de:
f9:df:60:13:6a:4f:4d:d3:e4:20:01:76:00:51:3e:
a2:c8:2a:e2:8a:f2:31:f3:ba:7c:dc:0d:e0:73:a1:
78:9d:05:23:fb:2f:f8:3e:ba:5e:ef:c2:4a:1d:eb:
a4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:05:63:C6:0D:87:1E:F8:6F:57:06:1C:5D:A3:88:F8:D5:64:AB:90
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/HQVjxg2HHvhvVwYcXaOI-NVkq5A.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
7f:d0:c7:92:36:04:fd:83:2e:ac:f0:c3:ba:b9:d7:6c:fb:43:
f5:fd:5a:4c:9b:50:97:59:48:37:b5:08:3b:25:47:9e:ce:cd:
3d:45:9f:3c:52:fb:4d:c0:7b:ba:cf:66:69:d3:e4:6d:9f:b5:
d0:0c:eb:cf:d7:26:0a:62:57:55:07:7b:53:a2:e5:07:7a:07:
65:79:d0:4f:a1:73:a2:c6:0e:fe:0f:aa:ef:5f:28:e4:08:1c:
ed:27:26:f3:bb:1d:97:a3:d8:74:41:99:1a:f5:af:07:27:33:
46:7d:bc:70:06:fd:2d:db:72:b7:30:32:18:bc:93:65:d5:7d:
3f:0a:d3:2b:79:1c:86:0a:29:55:3b:f0:a9:a1:7f:64:b4:e6:
cc:8a:e5:32:bd:0e:6d:44:cb:2e:7e:bd:42:bd:9d:8e:c9:34:
72:88:56:51:10:cf:ce:37:86:b8:e0:fc:26:89:87:46:75:3a:
39:50:1d:09:30:2a:e8:7c:56:fb:e6:45:b0:a5:b3:d3:ba:53:
56:9c:59:04:61:39:18:fa:48:5c:1e:d4:03:d8:57:2f:b2:d6:
eb:d9:d6:7a:99:e0:b8:71:72:5c:9d:7c:42:bc:6d:2e:3d:ae:
90:df:f1:1f:bd:1f:36:11:b0:86:9f:ab:be:3c:9d:85:44:fd:
c0:87:85:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:48:29 2024 by rpki-client on console-ams.rpki-client.org