Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/NoZIqHNgWZONVIKgVO-d_2D2_UE.roa
File: NoZIqHNgWZONVIKgVO-d_2D2_UE.roa (raw, json)
Hash identifier: vBQ1F5LLvJ7QIQWVkpv3MD2FUQ0aHH/Idm7wXdjTiyM=
Subject key identifier: 36:86:48:A8:73:60:59:93:8D:54:82:A0:54:EF:9D:FF:60:F6:FD:41
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4DFD
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/NoZIqHNgWZONVIKgVO-d_2D2_UE.roa
Signing time: Thu 02 May 2024 13:53:41 +0000
ROA not before: Thu 02 May 2024 13:53:41 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19965 (0x4dfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 2 13:53:41 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=368648A8736059938D5482A054EF9DFF60F6FD41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6b:a2:0e:cf:34:c8:a6:98:94:e2:f3:b6:ed:
ef:de:77:5b:37:34:92:74:25:58:39:ee:2a:df:c9:
35:f2:53:f7:28:32:39:84:b0:b9:8e:54:32:c7:1b:
7f:8a:d1:2f:ef:a9:41:b7:66:40:95:c9:b9:a4:bb:
69:04:4a:3f:fe:4e:0b:90:55:79:c2:bc:9b:62:c7:
6a:25:3b:6e:fe:70:4d:f5:f4:0b:6b:a0:8d:2b:90:
2b:5b:fd:43:23:57:27:4d:e9:ff:45:9a:13:e5:ac:
4b:3b:3e:9f:5e:87:9f:c5:eb:59:ee:bd:41:32:2c:
cc:87:42:16:5b:10:d9:d1:76:0e:4d:10:26:14:d4:
fe:61:18:3a:58:62:c8:52:ef:06:b5:74:6a:40:59:
f3:57:0f:cc:9a:8a:66:9c:4d:36:ed:6d:b5:4f:f0:
19:34:98:3f:99:c3:fe:27:a6:cd:46:c1:ee:43:32:
9d:43:1e:1e:99:51:61:53:92:ab:70:d6:38:98:34:
14:c8:b1:1b:47:e1:78:ea:46:50:c7:6d:99:2a:fd:
4e:46:2f:f7:ec:a6:e4:33:6e:1f:3a:50:31:41:19:
39:2d:79:dc:d0:31:1c:af:19:4a:0a:04:d9:1c:12:
2d:b3:23:93:09:6f:9b:04:de:21:24:e2:26:ff:83:
8f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:86:48:A8:73:60:59:93:8D:54:82:A0:54:EF:9D:FF:60:F6:FD:41
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/NoZIqHNgWZONVIKgVO-d_2D2_UE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
5b:7d:cc:61:63:95:93:a6:5f:b9:a6:97:78:d6:42:00:54:a2:
47:20:4d:d8:8e:fc:11:46:f0:df:14:76:ba:b4:bc:97:9a:f5:
ee:88:de:f4:d7:f0:e1:c6:32:c7:25:d9:f6:47:52:e5:f0:de:
cb:89:db:cd:c2:14:08:db:45:6a:fb:b1:f2:e5:5d:1f:e5:11:
a5:ff:af:8a:1b:41:27:d4:d2:cc:18:30:6e:7d:55:92:e1:be:
34:05:69:ee:c4:0a:76:9e:cc:fe:00:d2:1f:67:d8:38:21:08:
fd:e6:ad:01:7f:a0:dd:2a:eb:06:30:95:6e:5b:38:6e:6b:e3:
2d:61:e9:46:75:20:0d:e2:85:6e:fa:06:3c:81:96:11:4f:5a:
8f:7f:c9:a3:fb:d1:60:ed:71:16:0d:93:f0:ba:f5:40:22:a4:
2d:02:ec:5f:0c:d9:24:ca:2d:c8:c6:46:0e:37:33:b7:0e:77:
71:87:60:0e:ff:57:fb:5a:59:98:27:3f:fa:bd:fb:7f:4b:2f:
7b:23:0c:1f:ae:45:c1:e6:70:9c:18:29:2d:50:5e:6e:5b:e0:
61:64:b2:ef:5f:8b:c6:ea:8f:c8:7c:c8:d5:a8:d8:69:26:b8:
a0:9c:03:7c:b1:10:6c:ec:7e:4b:ce:59:52:84:51:54:5d:a4:
40:3d:97:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:48:36 2024 by rpki-client on console-ams.rpki-client.org