Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/UAkPdRNSpl6keM1wL4rfxQ_-Uuc.roa
File: UAkPdRNSpl6keM1wL4rfxQ_-Uuc.roa (raw, json)
Hash identifier: VBfhZJe6/pa5+Oas7Msk8j+5n3nKGET14hNYOf07N6Q=
Subject key identifier: 50:09:0F:75:13:52:A6:5E:A4:78:CD:70:2F:8A:DF:C5:0F:FE:52:E7
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4105
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/UAkPdRNSpl6keM1wL4rfxQ_-Uuc.roa
Signing time: Mon 15 Apr 2024 06:54:30 +0000
ROA not before: Mon 15 Apr 2024 06:54:30 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16645 (0x4105)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 15 06:54:30 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=50090F751352A65EA478CD702F8ADFC50FFE52E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ef:73:2e:f7:23:7d:f8:8e:c5:19:1f:5f:73:
53:67:e2:93:96:01:5e:ae:62:b6:80:3f:3b:1a:7b:
a2:1c:dd:6d:51:b4:d7:ed:69:a2:5f:9d:fa:da:e4:
09:c7:eb:5e:00:d4:15:cf:95:d8:f2:0c:06:b6:40:
6e:42:94:52:94:44:ec:15:ef:89:7d:ad:0d:82:da:
d4:a4:80:52:9e:75:a2:be:b1:ef:d9:af:3b:f7:4c:
c0:58:31:cf:85:4d:55:8a:85:d4:aa:1b:4c:82:54:
6b:48:0b:84:25:23:b5:90:6c:e5:f2:eb:b3:38:a5:
1b:b0:54:65:ba:38:5c:fb:3d:04:38:c8:bf:44:a0:
73:fb:f5:f1:7b:af:4c:4a:97:34:03:be:b5:d8:77:
b1:08:33:da:38:ca:8d:cc:6e:32:a6:f6:3d:eb:10:
c4:b7:d2:1b:19:e5:9b:e7:2a:d0:ce:36:d4:66:fd:
c1:24:7b:b7:df:47:25:54:bd:40:3d:de:c4:49:ed:
12:3d:81:c2:77:bf:94:48:81:9b:c6:dd:fe:84:68:
89:b2:f9:ce:32:20:98:5f:8e:d9:96:b0:93:9b:74:
c7:de:55:92:ab:fd:af:9b:7f:03:87:6b:40:f2:8a:
f4:cb:0b:d5:67:00:59:bb:e8:f5:a9:46:3d:1e:f6:
80:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:09:0F:75:13:52:A6:5E:A4:78:CD:70:2F:8A:DF:C5:0F:FE:52:E7
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/UAkPdRNSpl6keM1wL4rfxQ_-Uuc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
2f:62:af:03:f1:de:bb:70:ad:fd:0e:e5:56:92:0d:56:05:f6:
be:e1:c6:2a:26:f2:7d:c7:95:31:0f:41:03:cd:74:c2:18:d9:
e5:d8:f7:c7:27:d1:af:ec:19:eb:46:d7:aa:19:a5:8e:ea:dc:
bd:09:a4:be:b7:9c:af:50:2c:78:67:fd:cd:c5:a0:60:87:3d:
b6:64:db:b3:00:05:93:ea:d6:65:65:d5:36:cd:43:60:76:a4:
df:82:34:72:d4:90:de:c3:b8:df:6a:b9:59:bf:5e:ee:21:ae:
2d:f7:f2:ed:80:cc:fc:6b:d7:73:2e:c8:65:21:54:fa:14:0d:
a0:2b:c6:44:67:02:42:60:8a:2d:71:ac:11:b8:b9:8f:42:30:
40:d5:43:53:01:1e:a3:28:f7:aa:b0:07:ad:9b:dc:30:7c:cb:
bd:55:b6:40:82:06:e0:bc:a4:eb:fa:7b:8b:f2:d1:68:97:98:
4b:4c:06:f3:37:36:67:cf:a4:3d:c2:d8:fe:54:41:29:e8:ff:
f9:f4:71:17:90:0e:92:fe:ba:3d:44:c0:45:23:5e:30:d3:d6:
52:97:e9:6d:ba:c5:55:76:55:92:bd:70:af:fe:99:09:82:4e:
f1:a3:9e:29:c0:2e:9a:1a:7a:4c:85:53:02:39:cb:35:f4:f7:
8e:4d:69:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:38:48 2025 by rpki-client