Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/ILxNoPSv7pK8Sp8TbBYHE_gbMwI.roa
File: ILxNoPSv7pK8Sp8TbBYHE_gbMwI.roa (raw, json)
Hash identifier: KoRtnFgxPQjSfySda0yDZ5chL3SlP/eTiYiS4ACQL8Y=
Subject key identifier: 20:BC:4D:A0:F4:AF:EE:92:BC:4A:9F:13:6C:16:07:13:F8:1B:33:02
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3819
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/ILxNoPSv7pK8Sp8TbBYHE_gbMwI.roa
Signing time: Wed 03 Apr 2024 09:22:19 +0000
ROA not before: Wed 03 Apr 2024 09:22:19 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14361 (0x3819)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 3 09:22:19 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=20BC4DA0F4AFEE92BC4A9F136C160713F81B3302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0a:ce:d5:cf:00:e9:af:ea:ad:d2:20:a9:40:
a7:10:12:57:72:16:f7:a9:76:27:29:da:54:73:d7:
51:d0:95:80:08:52:68:8e:49:d9:b3:ff:8b:28:07:
7a:7b:e1:97:9f:39:24:c7:d9:12:af:70:1c:33:61:
5e:1a:64:f8:1e:1d:c3:68:27:75:06:9e:21:bf:1d:
90:f9:97:ba:dc:e1:0b:70:32:9e:8e:f2:0e:2d:c7:
e9:e3:38:07:8f:ee:a7:62:fa:27:8f:ae:ad:dc:a6:
f1:7c:28:2a:39:11:94:31:e2:a6:04:cf:b4:d1:29:
14:62:67:c8:03:dd:b6:fc:82:a9:1f:82:35:57:89:
06:df:e3:f0:fc:b9:6d:21:1a:ed:7d:67:bf:8e:82:
1c:f5:e0:fb:d4:7c:01:de:3e:c9:1c:2d:83:8a:99:
2c:e6:6c:3e:56:9c:cf:4c:6a:47:7c:85:09:3b:3d:
9c:41:23:27:bd:50:10:a0:53:eb:f4:bb:fd:9e:fc:
2d:4d:a5:69:63:d5:8b:3f:e5:6f:12:ab:17:d1:74:
17:9e:9e:ae:bb:76:c7:33:a1:11:2c:1c:89:f9:78:
6f:71:6e:0f:34:0e:00:70:2a:ed:43:f2:3d:3f:cd:
d2:4f:34:a8:c0:b1:db:1d:91:e2:2e:d4:df:7d:d3:
8c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:BC:4D:A0:F4:AF:EE:92:BC:4A:9F:13:6C:16:07:13:F8:1B:33:02
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/ILxNoPSv7pK8Sp8TbBYHE_gbMwI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
3b:5f:3b:c6:e8:0c:f4:8d:8e:2a:f1:39:77:eb:60:2d:d2:d7:
f6:3e:87:c9:02:c8:cf:21:a7:3e:54:59:29:49:bd:6f:0b:e1:
d0:ab:08:d3:9e:0e:5b:1a:0a:ae:f9:d7:6c:df:a1:21:39:14:
d5:03:8f:a7:36:dd:ae:7e:aa:b1:55:6f:2f:b7:46:95:4e:ab:
23:44:e9:7f:95:b7:d0:c0:3f:f6:10:50:70:3a:cd:c5:c6:5b:
2d:16:37:5c:3d:55:ef:e5:70:54:c9:02:4e:78:b5:d5:2d:7e:
bb:10:ff:67:e2:71:d6:a6:cb:66:27:df:5f:66:be:e6:d1:30:
e9:cb:e2:90:6d:49:40:55:26:97:8c:98:dc:59:fc:85:e3:5c:
48:21:df:0d:ea:91:6e:f2:da:db:d9:49:67:39:06:4e:a7:6b:
95:c8:87:f6:04:76:4f:d6:65:f9:fe:d5:26:c9:43:2d:74:0c:
bf:a8:d8:8b:75:02:82:57:39:07:84:8c:50:71:82:e5:79:f7:
2b:a1:0a:dd:3c:d8:44:70:4f:c4:f2:f6:1b:1f:53:ad:e9:e4:
1f:3f:ac:cd:5a:76:6a:e1:ac:64:66:4b:df:3e:39:06:1f:7d:
32:8d:35:38:ac:8a:ea:a2:f5:2c:93:07:e1:1c:52:1c:5d:e5:
41:ba:f4:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:17 2024 by rpki-client on console-fra.rpki-client.org