Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/JZGsqtcYJ4Tue-BJmPNxvDaX1ek.roa
File: JZGsqtcYJ4Tue-BJmPNxvDaX1ek.roa (raw, json)
Hash identifier: i90SJZwNB5WqXpT5qURw6boFwKyY5bjfrc3svjLWfVk=
Subject key identifier: 25:91:AC:AA:D7:18:27:84:EE:7B:E0:49:98:F3:71:BC:36:97:D5:E9
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4E71
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/JZGsqtcYJ4Tue-BJmPNxvDaX1ek.roa
Signing time: Fri 03 May 2024 04:23:47 +0000
ROA not before: Fri 03 May 2024 04:23:47 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20081 (0x4e71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 3 04:23:47 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=2591ACAAD7182784EE7BE04998F371BC3697D5E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:85:65:f9:18:6d:be:1d:47:27:8e:95:25:53:
fe:36:2a:d5:8a:f5:98:94:a0:4c:cd:a1:51:f4:80:
b9:0b:96:9f:0b:bd:2e:44:76:f5:15:fc:6b:5e:59:
78:b5:86:92:52:2d:9e:f4:40:2a:4e:ae:4b:27:7d:
b0:2b:8f:bf:fe:ae:d5:d1:05:5f:46:a6:aa:e1:10:
6e:cc:db:26:11:53:4a:5a:32:46:20:57:5e:30:78:
69:2e:db:e0:27:b4:bd:36:52:1d:ee:8a:a5:15:ed:
34:b0:d4:c8:08:c6:bd:d5:f3:67:73:64:73:ad:de:
6b:65:65:38:8e:d3:5e:b0:36:94:4b:07:4b:d3:a5:
5a:50:e6:70:44:87:3a:09:18:39:d1:c5:53:26:b6:
ee:b8:f6:eb:cd:e4:5e:ad:22:5f:7f:08:71:3a:b9:
06:9c:6d:d5:dc:23:8d:0b:ec:38:47:75:db:de:52:
ea:d0:c8:f1:28:aa:c5:36:e5:7f:4a:e1:a8:53:6f:
b7:8b:a2:22:24:89:51:a0:cf:9c:0a:78:c9:30:1a:
f2:11:1b:cc:a9:a7:7e:60:95:f8:f1:a7:fc:5a:81:
c3:89:30:e4:48:41:e9:61:96:9a:1c:58:ea:05:a4:
70:e9:e6:8e:a5:d1:c3:2f:d8:6b:4c:88:06:32:19:
6e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:91:AC:AA:D7:18:27:84:EE:7B:E0:49:98:F3:71:BC:36:97:D5:E9
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/JZGsqtcYJ4Tue-BJmPNxvDaX1ek.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
72:63:ca:00:18:3d:ba:60:d3:d8:fa:e1:15:6d:b0:d5:14:85:
68:03:1c:96:80:49:e8:6a:21:ba:93:16:bc:b4:15:21:49:8f:
84:1a:34:88:95:08:6f:ab:be:ed:e0:cf:95:ec:3c:58:65:6d:
97:7b:a7:ce:6d:c0:33:fa:2b:9e:8c:e0:29:4f:bd:98:03:de:
8d:7a:92:f9:45:d3:e0:4d:67:77:e2:0b:5a:24:46:8e:56:58:
1f:18:38:8d:30:c5:62:f2:18:36:53:f4:cf:3b:8d:d9:dd:3d:
7e:2f:c5:fc:df:48:88:dd:89:84:a0:b8:74:74:cd:fa:c8:36:
d7:fa:db:4b:10:73:b0:97:de:61:76:a1:45:56:5d:21:66:a5:
0c:c8:f2:20:6e:6c:07:1c:10:fd:a2:00:f1:be:47:e8:d8:64:
c4:20:8c:7c:cf:df:d9:52:81:7c:da:5d:1f:59:e5:ee:f4:29:
af:cd:32:5b:29:ff:76:7a:61:fa:a1:a1:b7:6f:3b:90:78:98:
bf:41:83:86:1b:c8:e7:2e:2e:5e:9e:3f:89:f6:c7:1c:b2:cd:
64:f4:10:5a:3a:12:5a:f7:f7:43:bd:21:c6:e4:c3:16:a1:30:
df:d5:47:26:ed:1f:27:b8:24:49:f5:ae:c5:99:fd:5d:96:af:
ec:98:8b:76
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICTnEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MDMw
NDIzNDdaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDI1OTFBQ0FBRDcxODI3
ODRFRTdCRTA0OTk4RjM3MUJDMzY5N0Q1RTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCvhWX5GG2+HUcnjpUlU/42KtWK9ZiUoEzNoVH0gLkLlp8LvS5E
dvUV/GteWXi1hpJSLZ70QCpOrksnfbArj7/+rtXRBV9GpqrhEG7M2yYRU0paMkYg
V14weGku2+AntL02Uh3uiqUV7TSw1MgIxr3V82dzZHOt3mtlZTiO016wNpRLB0vT
pVpQ5nBEhzoJGDnRxVMmtu649uvN5F6tIl9/CHE6uQacbdXcI40L7DhHddveUurQ
yPEoqsU25X9K4ahTb7eLoiIkiVGgz5wKeMkwGvIRG8ypp35glfjxp/xagcOJMORI
QelhlpocWOoFpHDp5o6l0cMv2GtMiAYyGW75AgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQUJZGsqtcYJ4Tue+BJmPNxvDaX1ekwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L0paR3NxdGNZSjRUdWUt
QkptUE54dkRhWDFlay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAHJjygAYPbpg09j6
4RVtsNUUhWgDHJaASehqIbqTFry0FSFJj4QaNIiVCG+rvu3gz5XsPFhlbZd7p85t
wDP6K56M4ClPvZgD3o16kvlF0+BNZ3fiC1okRo5WWB8YOI0wxWLyGDZT9M87jdnd
PX4vxfzfSIjdiYSguHR0zfrINtf620sQc7CX3mF2oUVWXSFmpQzI8iBubAccEP2i
APG+R+jYZMQgjHzP39lSgXzaXR9Z5e70Ka/NMlsp/3Z6YfqhobdvO5B4mL9Bg4Yb
yOcuLl6eP4n2xxyyzWT0EFo6Elr390O9IcbkwxahMN/VRybtHye4JEn1rsWZ/V2W
r+yYi3Y=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:18 2024 by rpki-client on console-fra.rpki-client.org