Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/TuWPM9qV86dLhLP4Bv5zJmpft2U.roa
File: TuWPM9qV86dLhLP4Bv5zJmpft2U.roa (raw, json)
Hash identifier: ATk4ZZ/J0uQ3Vte2RbS2nbqL9ehai8+MhlNPlSKwERs=
Subject key identifier: 4E:E5:8F:33:DA:95:F3:A7:4B:84:B3:F8:06:FE:73:26:6A:5F:B7:65
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3C15
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/TuWPM9qV86dLhLP4Bv5zJmpft2U.roa
Signing time: Mon 08 Apr 2024 16:52:34 +0000
ROA not before: Mon 08 Apr 2024 16:52:34 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15381 (0x3c15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 8 16:52:34 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=4EE58F33DA95F3A74B84B3F806FE73266A5FB765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:df:44:6d:14:fd:f0:3a:af:a1:93:7d:8c:35:
73:ba:cc:b6:06:6c:e8:40:a6:ae:0a:84:e1:4f:f1:
72:00:b0:30:76:c1:0e:3e:fc:64:ff:25:2e:e0:24:
97:81:46:82:53:96:6d:79:bb:de:36:51:eb:4b:69:
3b:36:b0:a8:54:79:08:bb:a1:cc:2c:7c:2d:c0:b7:
01:c8:5a:9f:22:98:9c:54:7f:27:b5:b8:bb:80:90:
8b:e3:2f:ca:6a:60:02:66:ef:71:2e:1a:b7:e4:77:
cd:76:77:42:f7:c7:ca:b8:ec:76:43:72:46:50:47:
ea:b9:28:b1:d2:75:6a:f5:39:52:a1:00:6a:8c:17:
76:5a:c5:d8:6c:0d:52:dd:5c:5a:86:44:1c:3c:1c:
63:9c:a6:c5:ea:3e:3a:50:28:b7:98:d3:fb:27:de:
65:76:0c:29:35:15:9e:fe:38:e1:58:04:f8:3a:31:
6a:37:9d:d6:ad:b8:13:a3:d4:f5:fa:b7:ce:b4:43:
5a:4d:fa:b9:c7:5a:4c:f5:ea:ea:bc:ac:c0:41:4d:
93:83:3c:d8:bf:5e:2e:d4:9c:c9:d4:58:12:90:a9:
5d:35:7b:e2:25:8f:9a:58:69:50:a6:e6:2c:88:42:
93:d5:39:38:02:2e:8a:5c:ac:82:dd:38:b5:f6:9f:
c7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E5:8F:33:DA:95:F3:A7:4B:84:B3:F8:06:FE:73:26:6A:5F:B7:65
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/TuWPM9qV86dLhLP4Bv5zJmpft2U.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8e:ed:4e:c7:12:70:8f:aa:11:5b:b2:0b:6c:ed:44:ad:56:16:
b5:f7:b6:fe:34:54:67:45:8a:13:cf:c2:b0:23:d2:87:ec:1d:
3e:77:ad:e8:de:43:48:d8:fe:49:3a:0c:82:4a:ef:de:bb:8a:
37:26:13:ed:1f:fb:65:2b:1a:db:2d:34:18:40:00:9d:d5:43:
cb:e4:f0:be:4a:48:8e:22:1f:97:7d:f3:d2:2a:12:40:89:5f:
ec:c1:08:e2:a5:50:ce:47:3f:40:ca:f0:c0:ce:4d:df:16:06:
c7:da:5c:79:42:13:32:88:84:fa:9b:26:17:6d:4b:0e:33:b8:
ea:9c:ef:bd:e7:79:79:f4:b2:c3:17:53:a2:4b:47:36:4f:5d:
a5:e8:9d:b9:3a:c1:0a:b3:4f:98:35:dc:f6:64:43:54:d5:6b:
06:b1:3f:21:5a:3e:89:e6:c8:18:17:a9:3c:1f:04:37:f0:3f:
f4:de:0a:16:b0:f9:6e:50:8b:32:b7:99:8f:5e:0c:4b:13:c4:
4b:0d:22:fb:3d:0f:97:d3:55:c4:f1:df:7b:d5:0f:41:5a:34:
4c:25:3c:d5:53:80:00:df:95:9d:33:69:ea:2f:bd:d7:b6:25:
5e:f1:e1:3d:a4:0e:74:2e:cd:ce:0b:8d:18:3f:dd:41:2e:9a:
ef:9a:8f:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:35:16 2025 by rpki-client