Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/J61F5Ns0tiNULh_UXwPl7wz0x-I.roa
File: J61F5Ns0tiNULh_UXwPl7wz0x-I.roa (raw, json)
Hash identifier: B3oGFNZD0epuy84FiXF3zP9ylyFcGVMNBZOWW/3p6C8=
Subject key identifier: 27:AD:45:E4:DB:34:B6:23:54:2E:1F:D4:5F:03:E5:EF:0C:F4:C7:E2
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 48E2
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/J61F5Ns0tiNULh_UXwPl7wz0x-I.roa
Signing time: Thu 25 Apr 2024 18:23:32 +0000
ROA not before: Thu 25 Apr 2024 18:23:32 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.236.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18658 (0x48e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 25 18:23:32 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=27AD45E4DB34B623542E1FD45F03E5EF0CF4C7E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:73:2e:20:ec:f7:2f:59:ca:df:e0:bb:3f:11:
f7:ba:87:15:b6:95:19:34:7b:c7:cf:cc:07:ec:7b:
4d:44:0f:0b:49:3e:c8:34:1f:a1:f3:ef:46:e5:68:
41:48:0e:3e:51:29:9f:31:73:01:17:70:5b:30:63:
7c:0c:39:46:f9:64:06:17:fc:33:79:c1:9b:2f:22:
b5:21:a5:5d:1f:20:19:63:34:74:c2:00:e6:a5:17:
32:7c:4a:0b:54:c8:b6:2a:5b:59:f6:dd:10:b0:64:
62:82:0a:61:81:0a:bf:f9:92:f4:06:ba:f8:fd:d3:
1a:fd:25:7f:26:b9:63:cf:d8:9a:84:51:37:2f:2d:
79:36:c4:2d:08:8e:ab:6d:30:ce:14:a5:f7:c5:98:
fe:d1:71:68:dd:31:a1:47:c9:c5:53:9d:f0:cc:f0:
1b:65:ed:b6:18:0a:2e:86:99:e2:90:f4:5a:d0:06:
79:4a:84:b8:ce:82:d8:f7:fd:3f:76:f7:30:0d:f2:
51:29:86:9d:a5:9d:46:03:c0:23:e9:99:35:eb:0c:
dd:d2:62:d4:95:88:d6:e9:89:7a:f4:9b:9b:00:74:
29:1a:7b:62:12:95:37:ce:1d:9a:3d:55:bf:3a:10:
d1:65:a2:b5:c2:44:42:38:0c:db:5c:a9:19:c0:a6:
c6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:AD:45:E4:DB:34:B6:23:54:2E:1F:D4:5F:03:E5:EF:0C:F4:C7:E2
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/J61F5Ns0tiNULh_UXwPl7wz0x-I.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.236.0.0/16
Signature Algorithm: sha256WithRSAEncryption
00:fc:ab:0c:6c:89:b1:f6:af:78:c6:9c:59:35:5d:1d:62:76:
7e:a1:91:d1:95:e5:69:1e:0f:da:cc:90:3f:54:06:93:1f:dd:
4a:c0:26:e5:b0:2e:cf:3f:cc:ca:49:ed:c5:6e:4c:ee:f0:8a:
1e:5a:ab:0a:1a:23:62:78:0c:9b:3a:2a:32:a7:c7:1e:c1:29:
e2:7d:0f:a5:c7:8a:ca:1a:49:b4:8a:6b:19:47:dd:a7:a8:3b:
a3:82:73:da:30:bb:fd:e2:2e:51:a0:f1:54:aa:94:a9:d6:3c:
bc:49:80:ee:bc:7b:07:fd:2c:16:56:8f:82:31:02:3f:91:0d:
79:c4:67:da:d1:46:f5:35:64:8e:8d:24:70:54:ca:45:6b:e5:
50:41:72:82:ef:51:2a:cc:4e:68:63:8f:63:b7:05:7c:98:13:
ef:a6:d3:2c:c5:86:2a:ae:89:0d:2e:aa:2e:63:6d:65:e0:2b:
29:c9:f1:e7:8b:bf:2a:d2:c2:85:a7:e3:07:d7:ea:ac:04:86:
86:b0:d3:c1:06:e6:bd:38:13:68:1e:05:6b:f7:32:39:f9:56:
5d:54:d4:bb:f8:a4:7c:d4:57:cd:ac:e4:0a:3d:e9:0b:6c:70:
9f:fe:3c:15:4d:7c:68:3b:c3:a6:0c:fa:89:87:a8:b4:89:12:
a4:be:4a:6c
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICSOIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MjUx
ODIzMzJaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDI3QUQ0NUU0REIzNEI2
MjM1NDJFMUZENDVGMDNFNUVGMENGNEM3RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5cy4g7PcvWcrf4Ls/Efe6hxW2lRk0e8fPzAfse01EDwtJPsg0
H6Hz70blaEFIDj5RKZ8xcwEXcFswY3wMOUb5ZAYX/DN5wZsvIrUhpV0fIBljNHTC
AOalFzJ8SgtUyLYqW1n23RCwZGKCCmGBCr/5kvQGuvj90xr9JX8muWPP2JqEUTcv
LXk2xC0IjqttMM4UpffFmP7RcWjdMaFHycVTnfDM8Btl7bYYCi6GmeKQ9FrQBnlK
hLjOgtj3/T929zAN8lEphp2lnUYDwCPpmTXrDN3SYtSViNbpiXr0m5sAdCkae2IS
lTfOHZo9Vb86ENFlorXCREI4DNtcqRnApsbtAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUJ61F5Ns0tiNULh/UXwPl7wz0x+IwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L0o2MUY1TnMwdGlOVUxo
X1VYd1BsN3d6MHgtSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwAr7DANBgkqhkiG9w0BAQsFAAOCAQEAAPyrDGyJsfaveMacWTVdHWJ2fqGR0ZXl
aR4P2syQP1QGkx/dSsAm5bAuzz/MykntxW5M7vCKHlqrChojYngMmzoqMqfHHsEp
4n0PpceKyhpJtIprGUfdp6g7o4Jz2jC7/eIuUaDxVKqUqdY8vEmA7rx7B/0sFlaP
gjECP5ENecRn2tFG9TVkjo0kcFTKRWvlUEFygu9RKsxOaGOPY7cFfJgT76bTLMWG
Kq6JDS6qLmNtZeArKcnx54u/KtLChafjB9fqrASGhrDTwQbmvTgTaB4Fa/cyOflW
XVTUu/ikfNRXzazkCj3pC2xwn/48FU18aDvDpgz6iYeotIkSpL5KbA==
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:14:38 2025 by rpki-client