Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/V2u6I6M_A46egiUJlCM4QCBpeEw.roa
File: V2u6I6M_A46egiUJlCM4QCBpeEw.roa (raw, json)
Hash identifier: sd3f81CGT5QmNrApCSUvAfLYQKHkP8yfQkKTF9m1sAc=
Subject key identifier: 57:6B:BA:23:A3:3F:03:8E:9E:82:25:09:94:23:38:40:20:69:78:4C
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4FD9
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/V2u6I6M_A46egiUJlCM4QCBpeEw.roa
Signing time: Sun 05 May 2024 01:23:48 +0000
ROA not before: Sun 05 May 2024 01:23:48 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20441 (0x4fd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 5 01:23:48 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=576BBA23A33F038E9E822509942338402069784C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:25:bf:f0:ed:22:80:2d:0c:df:96:41:4d:9d:
54:20:4a:57:d2:7f:a7:3b:99:07:dc:b5:f0:1c:03:
66:a4:62:dc:69:26:07:5f:2d:9a:95:03:27:ba:ec:
da:a2:5b:ea:32:71:82:e5:ec:52:fe:29:80:4d:62:
ea:90:62:4c:c6:0e:c6:97:e4:2c:ce:c9:61:ee:f4:
ef:94:16:9d:e8:3f:60:a9:f7:cd:5c:4d:88:25:b1:
15:ae:92:09:a1:13:72:da:c6:f0:3c:da:45:b4:dc:
b0:bc:7b:02:62:84:63:03:2a:84:e5:88:08:db:b0:
a8:4f:48:9f:64:65:be:bc:33:e8:46:9b:03:a0:54:
f6:f1:33:73:b3:73:22:a7:43:39:ed:5e:be:04:79:
76:44:02:a2:c1:81:d1:ad:32:0e:86:7c:53:e9:aa:
ce:38:36:57:4e:58:aa:87:03:c8:ed:b3:d3:64:a7:
e3:d5:38:aa:24:b3:1b:ba:2b:7d:6f:e8:43:39:1d:
85:c1:24:c4:5a:e7:9b:3d:c4:72:38:ef:3e:71:d7:
51:ce:96:b5:44:44:9e:b6:04:e2:a4:61:2d:f9:3c:
f8:c5:c6:87:6c:a2:b9:d3:e9:29:fa:49:aa:9e:6a:
68:2e:4e:78:f7:01:31:8b:7f:a9:22:ce:71:d4:11:
f0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:6B:BA:23:A3:3F:03:8E:9E:82:25:09:94:23:38:40:20:69:78:4C
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/V2u6I6M_A46egiUJlCM4QCBpeEw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
32:af:0a:f2:a5:bf:73:61:19:3f:aa:bd:42:8d:a3:78:53:33:
52:b1:97:20:e1:50:f0:fe:dd:4c:22:24:24:a6:8f:6b:56:1a:
4d:27:51:68:0a:dc:69:76:40:24:03:86:b2:4b:3a:49:5c:65:
17:2f:b4:81:51:1f:25:91:bd:1d:c4:7b:92:18:57:e6:f4:72:
8d:3b:73:d6:8b:5a:9c:b2:35:4a:24:11:01:ea:60:2b:c9:b9:
0c:8c:16:1c:2e:1b:c8:1f:9c:41:a0:7b:93:44:35:b6:31:8f:
e1:a1:db:0f:ef:7d:87:be:f7:d0:25:83:8b:de:3c:ee:13:2a:
e7:18:b4:b6:e0:e4:2c:3e:bc:e6:f6:2d:21:64:c8:bf:29:c9:
c8:94:34:79:c7:9d:bd:62:de:e3:a9:d3:28:74:1b:99:c4:a3:
3f:40:ef:1a:82:52:39:87:76:55:ee:29:e8:ad:3f:8a:0f:6f:
c9:29:d9:a5:0f:1d:3e:38:e0:3e:ee:8e:00:be:7c:75:20:45:
8a:c6:a9:6a:de:ad:90:6b:d5:a7:65:69:db:43:af:22:ef:77:
42:89:07:fd:7a:67:8f:d6:e7:d2:c3:a2:2c:39:32:61:fa:39:
84:a8:bf:61:5b:aa:77:32:d8:2c:54:df:06:b4:70:1d:e3:c4:
0e:52:84:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:46:03 2025 by rpki-client