Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/Ng6WmsJWiYq7xRssGi_4hk6A2mg.roa
File: Ng6WmsJWiYq7xRssGi_4hk6A2mg.roa (raw, json)
Hash identifier: B/3R1ZSktTa7CQlHPUuN4d0D1TemexKK2jrf0n7FaGE=
Subject key identifier: 36:0E:96:9A:C2:56:89:8A:BB:C5:1B:2C:1A:2F:F8:86:4E:80:DA:68
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3C61
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Ng6WmsJWiYq7xRssGi_4hk6A2mg.roa
Signing time: Tue 09 Apr 2024 02:22:35 +0000
ROA not before: Tue 09 Apr 2024 02:22:35 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15457 (0x3c61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 9 02:22:35 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=360E969AC256898ABBC51B2C1A2FF8864E80DA68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:22:7c:82:25:a0:62:bd:b8:f1:f9:77:af:8b:
52:08:35:34:81:4c:cf:3d:53:90:5c:ef:57:a5:e9:
2a:7a:6d:44:3f:63:3c:94:ab:71:fd:b0:64:8c:4b:
57:13:5e:04:02:7a:c5:5e:c2:a1:18:65:d0:49:1b:
9b:fd:a8:95:fd:d8:92:9d:36:ac:6c:37:e7:d1:1c:
03:7c:78:96:53:d7:83:14:e8:37:aa:ed:9a:9a:73:
d8:cf:ee:1a:c5:48:e2:2a:41:37:29:5b:39:cd:35:
fb:ff:79:99:fa:45:38:a0:99:dd:c2:28:cc:c2:a7:
40:df:e6:5d:ae:81:99:53:7b:3b:8b:3f:5f:47:12:
11:5b:a5:83:21:73:66:1f:ba:9c:82:9b:dc:7e:e5:
e2:ac:d4:2a:85:90:f2:82:c5:fe:bc:e8:7c:b2:39:
0b:06:f0:e9:67:40:b4:aa:9f:19:aa:18:61:4f:08:
d3:bb:5f:ba:21:66:a0:c5:d4:e3:4c:6e:53:2c:00:
75:4f:d0:ac:4c:9f:49:a5:08:46:6a:f0:f9:bd:46:
c6:1c:d8:12:2e:67:92:10:62:58:25:ec:3f:d3:0e:
6a:5c:0c:b0:78:f1:7e:29:ad:ea:57:da:79:d6:14:
85:86:65:c4:42:f0:13:82:b3:f5:7e:78:22:10:35:
cb:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:0E:96:9A:C2:56:89:8A:BB:C5:1B:2C:1A:2F:F8:86:4E:80:DA:68
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Ng6WmsJWiYq7xRssGi_4hk6A2mg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a3:bb:ff:ed:d0:db:2e:a8:35:cf:fe:83:e3:ad:c5:eb:75:ce:
a2:c3:71:fc:a2:f2:d4:41:e7:70:fd:53:47:48:42:fb:da:cb:
b7:be:67:2f:4f:cd:3c:b3:20:3c:41:ec:0c:2c:e9:57:1b:27:
85:4e:e4:54:54:94:90:c4:8f:5a:d0:7b:5b:f2:84:86:e0:51:
1a:8d:b1:eb:20:94:62:a5:49:84:3f:c5:2c:31:25:03:ad:5d:
8a:13:1d:0e:f1:2b:c8:0d:f0:f7:ea:fa:e6:0b:e0:34:a4:0e:
b1:ac:14:24:13:ce:b5:5b:a9:24:89:36:8e:b3:88:7e:33:45:
ce:c6:bd:12:6a:47:aa:54:6b:ee:9f:d4:32:50:5b:e0:34:2b:
b6:6e:c1:6c:72:b3:02:f3:fc:08:73:40:84:58:c3:3d:6e:d8:
f0:d0:0c:40:3b:69:d9:2a:dc:72:92:85:3b:56:97:0a:a8:8a:
97:6c:43:e0:2a:6b:78:95:95:0b:e5:48:f4:23:90:9d:a1:a6:
1d:dc:01:0d:3f:97:58:bf:9f:d8:82:d8:23:e9:de:78:6b:9f:
47:34:73:47:6f:57:c2:b5:fd:15:31:5f:e2:b3:bd:16:3b:a3:
4c:c5:f7:63:d4:b0:63:ed:7b:1b:82:a5:d0:cc:94:5f:53:f8:
f8:79:43:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:35:07 2025 by rpki-client