Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/JqhfINhtkk4DEexRqEFRMwJx-tA.roa
File: JqhfINhtkk4DEexRqEFRMwJx-tA.roa (raw, json)
Hash identifier: ARNEHxdCnjs0FQKYILoWIhEzlZfMC0PHM2fietsYsOo=
Subject key identifier: 26:A8:5F:20:D8:6D:92:4E:03:11:EC:51:A8:41:51:33:02:71:FA:D0
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4E41
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/JqhfINhtkk4DEexRqEFRMwJx-tA.roa
Signing time: Thu 02 May 2024 22:23:53 +0000
ROA not before: Thu 02 May 2024 22:23:53 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20033 (0x4e41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 2 22:23:53 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=26A85F20D86D924E0311EC51A84151330271FAD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f6:47:a9:e0:c1:9c:89:46:e0:98:bd:63:35:
5f:45:04:19:76:85:5a:ed:a5:94:13:00:e5:b6:f6:
94:6f:76:b1:c2:51:d2:83:53:b5:2b:d7:53:3a:9c:
3f:12:f5:52:60:d1:27:14:f0:14:eb:47:cd:f0:f6:
6e:8a:d3:ac:e8:a3:e7:cc:54:b2:bc:bf:65:30:75:
8d:8a:e7:72:59:6a:1e:80:0a:bf:66:54:60:5a:3e:
2d:4a:3b:be:08:0d:a9:72:02:a5:05:91:33:10:16:
c3:4e:4e:d4:50:b2:bc:42:05:4a:5a:55:7d:68:ff:
53:d4:ec:ac:74:4b:0f:8e:1a:85:b0:b9:0d:63:37:
b3:d1:e3:ec:4c:57:ab:36:1c:db:61:49:ca:53:82:
65:3f:1d:67:a9:a1:a9:97:26:be:b4:ae:88:af:34:
d7:17:fc:40:88:6c:5d:4e:bb:32:9a:a9:aa:3e:b4:
02:d3:d1:e1:c3:26:3a:1b:73:4d:6f:63:1c:ca:b7:
bd:13:74:6c:07:3e:76:e8:81:de:df:3e:a3:08:df:
ee:a8:d9:5d:8f:6d:bf:74:04:d7:fc:46:53:30:d6:
17:db:8a:f2:22:15:ab:03:52:9b:63:a2:3f:8a:0a:
35:96:8b:99:73:57:34:ea:24:a8:67:d8:da:bc:73:
2e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A8:5F:20:D8:6D:92:4E:03:11:EC:51:A8:41:51:33:02:71:FA:D0
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/JqhfINhtkk4DEexRqEFRMwJx-tA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
43:51:45:eb:1c:63:9f:b7:60:44:a4:6f:b8:f4:a4:36:48:0f:
5b:6e:8f:6d:21:38:78:fd:ba:f4:71:e8:65:e4:00:1d:82:63:
7a:e8:d2:b9:1f:4e:ff:cf:a6:42:b3:c4:cb:c7:04:79:61:09:
08:35:2f:c8:92:d5:d7:9f:ef:ca:03:ab:81:74:6d:b1:df:36:
9e:3a:02:10:5c:52:34:0f:2b:fd:40:c9:87:d9:6d:46:59:f6:
12:19:e4:e2:3c:ab:c7:16:27:39:f1:08:bc:b6:1c:4c:ee:3e:
64:d7:ba:53:e8:d5:8d:59:2f:04:75:2e:52:ee:ab:ce:09:dc:
49:c1:96:ed:41:4c:da:8a:db:2d:63:00:99:92:06:41:42:05:
70:c5:ee:34:fe:9d:6b:4a:d8:f6:6b:8d:74:a4:e5:74:d1:94:
79:d0:8a:24:e9:72:90:30:2a:91:4d:42:07:17:68:41:19:1c:
0b:65:6b:a9:d4:02:68:da:47:1f:85:15:2f:3d:7d:da:f8:a5:
8e:bf:af:52:45:39:dd:a4:6c:92:3d:fd:ed:ef:72:23:0b:19:
03:56:42:ff:f4:e7:a2:c8:06:cd:6a:4c:0f:6b:3e:ea:aa:f8:
d9:de:d2:e7:a8:fc:8a:ea:7b:43:2e:ed:82:56:54:d3:cf:95:
ff:a3:04:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:19 2024 by rpki-client on console-fra.rpki-client.org