Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/UPEdTLgJiCSpYJMaCn2IecqI9Nk.roa
File: UPEdTLgJiCSpYJMaCn2IecqI9Nk.roa (raw, json)
Hash identifier: SY2wSeVecunKycw9LlnE8LEiDQ0lU/A/suiIqizBRUU=
Subject key identifier: 50:F1:1D:4C:B8:09:88:24:A9:60:93:1A:0A:7D:88:79:CA:88:F4:D9
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4C45
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/UPEdTLgJiCSpYJMaCn2IecqI9Nk.roa
Signing time: Tue 30 Apr 2024 06:53:34 +0000
ROA not before: Tue 30 Apr 2024 06:53:34 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19525 (0x4c45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 30 06:53:34 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=50F11D4CB8098824A960931A0A7D8879CA88F4D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:65:07:27:81:dd:15:c9:cc:91:d0:39:9b:62:
8a:6c:48:76:0a:3c:6d:f9:1a:c9:70:f2:6e:bd:cd:
c3:b4:4a:92:d6:f1:25:bc:3d:f1:cc:d8:c3:99:ab:
af:ed:31:85:61:f2:33:fd:55:8a:26:7c:70:ff:61:
64:c0:e3:61:47:53:74:5a:e0:66:07:5e:33:a0:e5:
ca:49:a5:ee:b4:cc:01:d9:2e:c2:50:d2:19:32:bb:
18:34:2f:8d:a7:d8:f6:5f:30:34:60:52:b4:26:77:
ea:af:27:1d:46:d0:e8:dc:41:fa:b2:8b:27:25:c0:
97:c3:80:6c:7d:ed:c9:1b:06:b6:9d:3b:bb:14:25:
c0:11:97:13:29:b9:14:d8:82:90:6e:07:54:d2:8c:
8e:9c:84:59:27:7a:ee:2d:0d:96:49:4e:92:5c:99:
79:a7:6f:e4:38:0b:6c:13:a8:e4:f0:c2:e3:f5:eb:
c5:d3:3d:ab:a3:dc:5a:0e:44:ea:dd:43:57:3a:5a:
fa:49:8c:46:ec:9a:50:d1:f5:29:91:4e:a6:00:82:
c0:79:dd:29:2f:85:94:ed:ac:ba:ea:98:f7:58:50:
1e:20:55:1e:5f:ae:a9:dc:12:83:cf:34:c7:e2:bb:
7e:85:60:d2:8e:46:3b:07:23:c0:3b:c3:20:77:be:
9d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F1:1D:4C:B8:09:88:24:A9:60:93:1A:0A:7D:88:79:CA:88:F4:D9
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/UPEdTLgJiCSpYJMaCn2IecqI9Nk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
7e:af:ef:9c:d2:b4:34:30:0c:89:03:a3:50:66:6f:5a:18:f7:
fa:55:b7:2c:b7:32:16:65:0d:8e:17:d5:d3:59:80:17:dc:24:
4d:50:30:69:44:2c:13:3c:f4:52:f5:d8:5e:c3:1b:c5:b0:78:
ec:d0:dc:9c:12:ea:fd:5d:59:1b:11:d0:7c:0b:b5:42:b4:c6:
d9:f1:73:a5:a4:84:d7:06:43:20:74:de:7c:ef:31:c9:99:0e:
4f:c1:59:57:65:9f:a5:e9:0b:ff:e0:98:22:64:81:a5:d8:de:
7c:9b:3b:95:f5:15:5c:b9:48:e1:d9:47:ef:41:af:01:7f:83:
22:2f:6d:e8:31:dd:9f:7e:bd:12:6c:74:dd:0e:57:5f:2a:85:
8d:ad:77:4f:05:9d:53:f8:83:31:04:a4:46:e7:cb:35:5c:f9:
40:4d:c1:27:c8:f3:54:0b:96:d0:1d:d4:3c:c8:95:ea:0d:69:
3d:0f:80:31:fe:5e:f7:a0:c9:21:24:b4:b1:d3:62:4c:4f:93:
ec:67:0a:dc:65:c9:b1:2c:cd:41:f6:73:c5:3f:2f:56:06:b0:
b0:17:09:64:37:1c:96:c3:03:34:a7:7e:c3:13:7b:40:7d:21:
70:1c:71:53:99:e9:1d:6f:50:5e:4e:96:b0:ef:69:91:b5:a0:
91:50:db:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:28 2024 by rpki-client on console-fra.rpki-client.org