Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/Uz97E4V4BW9WWxvYwnzI0lS8fvA.roa
File: Uz97E4V4BW9WWxvYwnzI0lS8fvA.roa (raw, json)
Hash identifier: k/d7UwfpYlxWtpr9qqUW3TNQ2u36NJ83uVV2looH5Og=
Subject key identifier: 53:3F:7B:13:85:78:05:6F:56:5B:1B:D8:C2:7C:C8:D2:54:BC:7E:F0
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5161
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Uz97E4V4BW9WWxvYwnzI0lS8fvA.roa
Signing time: Tue 07 May 2024 02:23:54 +0000
ROA not before: Tue 07 May 2024 02:23:54 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20833 (0x5161)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 7 02:23:54 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=533F7B138578056F565B1BD8C27CC8D254BC7EF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:26:7a:73:01:15:20:10:89:a4:44:cf:f3:d8:
18:88:ab:3b:56:ad:6d:aa:7c:bf:38:97:bf:6c:31:
fd:ef:05:82:0f:4e:68:09:46:a6:75:a4:63:e4:4d:
1a:5a:1d:2b:9f:4a:19:53:d5:26:6c:bd:2a:bc:d5:
ef:d5:0b:7e:f2:de:01:b7:46:07:3e:69:e1:b9:1d:
9f:94:ac:fc:f0:31:90:6f:7b:bc:e5:b0:66:3e:d6:
9a:d9:03:c7:c8:58:02:a6:cc:1e:bf:62:00:8b:77:
c6:56:2f:4d:b9:9d:0c:9b:1c:be:0e:b4:8f:b7:f7:
4d:54:a0:35:ad:a2:35:07:3e:d3:a9:c5:58:2b:98:
a5:2a:77:7c:41:e3:f2:01:08:fb:f1:cf:4a:7f:bc:
b9:1b:33:88:5a:70:33:e0:02:fc:cb:64:15:bd:95:
12:1f:c6:13:9b:66:2d:94:7d:8e:50:f4:52:a5:aa:
de:1f:fa:7c:3d:bf:8e:2a:c4:26:70:d1:af:9f:ba:
32:51:48:e3:b8:62:16:64:98:6c:2e:17:24:68:6e:
96:10:c7:38:60:08:b8:0a:32:f1:c4:e2:58:a1:35:
8b:85:d4:c7:15:83:10:6a:36:70:5d:10:28:e2:71:
b5:bb:5d:0b:5d:46:49:29:b1:12:31:2a:13:7b:80:
36:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:3F:7B:13:85:78:05:6F:56:5B:1B:D8:C2:7C:C8:D2:54:BC:7E:F0
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Uz97E4V4BW9WWxvYwnzI0lS8fvA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
82:c6:d9:2c:8e:be:9f:95:4f:b6:59:46:24:c7:52:95:d3:ec:
d7:c5:7a:42:d2:ed:fe:57:4e:25:3b:0d:78:88:f7:6e:2b:13:
cb:1f:d3:6c:aa:66:4f:6a:f4:0e:eb:17:c8:7b:45:13:c5:8b:
ed:8b:3f:2a:f4:de:4f:f4:a6:5d:ec:dd:57:a2:f8:00:b0:10:
fd:06:ff:2b:f8:bf:47:9b:ea:22:ce:a5:07:d8:72:44:db:f7:
b1:d0:e0:26:86:4f:3c:2e:bf:ad:1a:d4:c5:8b:c3:66:80:11:
8d:73:fc:72:51:6c:61:13:e8:51:55:9f:38:02:ec:44:bb:c8:
68:3c:95:07:2f:4e:99:69:ee:a5:36:f3:eb:66:e2:3d:1a:3f:
e5:2d:06:ea:4d:95:ae:b5:1c:b1:16:d1:ac:7e:3b:8c:68:65:
4a:55:da:97:2d:b8:c2:a5:04:fc:de:8d:de:70:48:f6:91:dc:
80:bd:46:e9:57:3c:70:bd:be:e4:17:fc:9e:5b:8a:1c:86:57:
39:01:16:ce:52:ae:e6:78:b1:98:9e:ea:5f:eb:29:1e:83:88:
c2:a7:88:ee:2c:88:2b:7e:92:52:ff:50:d7:51:08:6b:0c:34:
8c:e5:3c:c7:ae:f2:c7:4c:5a:e6:7e:a0:03:05:46:da:72:7d:
53:9c:ab:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:28 2024 by rpki-client on console-fra.rpki-client.org