Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/U3EVQdu7jmVWnaXo0VKsBzjDcEw.roa
File: U3EVQdu7jmVWnaXo0VKsBzjDcEw.roa (raw, json)
Hash identifier: jxfKjBdnliiRQkxCn7JXI2cQufOtj3Molk4QAV5ZMDA=
Subject key identifier: 53:71:15:41:DB:BB:8E:65:56:9D:A5:E8:D1:52:AC:07:38:C3:70:4C
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4F35
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/U3EVQdu7jmVWnaXo0VKsBzjDcEw.roa
Signing time: Sat 04 May 2024 04:54:02 +0000
ROA not before: Sat 04 May 2024 04:54:02 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20277 (0x4f35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 4 04:54:02 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=53711541DBBB8E65569DA5E8D152AC0738C3704C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:45:bc:a9:be:cc:1c:91:ed:a9:a6:7e:88:eb:
3f:e8:fa:7b:a6:72:87:3d:4e:ea:41:5f:09:e0:cb:
4d:25:cc:33:77:74:f0:cd:71:c6:d8:74:f0:06:01:
f4:2b:a3:c1:0b:9e:85:b4:d7:b3:59:87:e4:a4:2d:
c2:d5:2c:8c:d9:0d:92:6f:bb:28:10:73:fa:67:67:
cc:1b:9b:d8:2c:3d:43:8b:f8:49:02:9b:ba:87:46:
a4:22:25:fe:f7:e5:cd:fa:d7:2c:72:35:82:fe:47:
ee:a0:42:47:b2:f0:13:79:1d:b8:7d:cf:4f:4c:1e:
4c:98:bd:5e:e2:77:86:e7:cf:e4:95:8a:d7:d8:bd:
51:5a:b7:96:4e:ae:14:38:b1:c4:66:79:29:e3:91:
c3:9c:da:82:df:a7:b7:4e:33:e0:58:da:a5:14:aa:
10:b1:8c:63:bc:81:14:48:02:cb:f0:7f:70:46:11:
0e:7f:d6:61:a4:0b:19:d6:b1:99:1e:10:83:47:9d:
c4:05:61:d2:ba:d3:4a:70:e8:c5:fa:41:cb:c4:40:
fd:9b:fd:77:0e:91:2d:7d:7e:d0:30:c6:f2:79:19:
b2:33:a9:27:de:80:89:fe:aa:60:37:01:b5:06:e8:
ba:f0:50:0a:4c:07:ca:58:5b:bb:77:36:8a:36:83:
f0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:71:15:41:DB:BB:8E:65:56:9D:A5:E8:D1:52:AC:07:38:C3:70:4C
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/U3EVQdu7jmVWnaXo0VKsBzjDcEw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a4:f3:02:af:96:ce:fd:6d:ab:07:da:98:79:40:d0:90:d1:d4:
27:2d:ba:75:49:90:8e:f1:d6:94:20:56:77:28:37:2c:93:4e:
7e:98:90:bc:c0:b2:48:11:1e:6f:c1:3d:22:90:2c:69:8f:37:
f8:38:27:32:5f:7f:d7:ac:30:07:42:3d:9c:3b:bf:3b:9f:70:
39:f4:1d:bb:8d:72:a6:5d:d9:d8:d3:5e:5b:0e:b5:6b:81:38:
31:66:ad:1f:ac:4e:43:f3:c6:76:0a:57:5b:e2:05:e6:49:d3:
20:a9:a3:7e:4e:6f:ad:94:14:a4:98:f8:32:ad:50:4d:ee:41:
ce:50:38:83:ff:63:c4:a8:63:53:a8:c5:9c:63:b6:21:b6:da:
f7:d5:c1:54:7c:c8:b1:a2:e3:30:0d:06:8f:b7:21:8b:8d:8e:
3c:e6:75:23:0a:67:91:30:53:0a:bd:9e:38:5e:20:ca:9e:cb:
5c:7f:be:fa:fa:fd:e9:c3:50:4d:6a:d2:4b:28:0f:02:09:2b:
98:75:7f:20:64:57:60:6a:48:b1:83:44:55:b3:04:54:b4:76:
38:95:fc:7f:93:7f:d6:8f:1e:8d:f8:f4:b3:59:93:b8:75:1b:
4b:c5:21:20:42:c2:2d:49:22:62:bf:eb:e2:d5:9c:3a:c8:60:
44:4b:71:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:27 2024 by rpki-client on console-fra.rpki-client.org