Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/Vd2AaIv0b8c9Vw1PnxpphQXtPmY.roa
File: Vd2AaIv0b8c9Vw1PnxpphQXtPmY.roa (raw, json)
Hash identifier: PjYy7pebotklpnu7MIe7/sPn7PXV5HeGqiz4W/Rbaxc=
Subject key identifier: 55:DD:80:68:8B:F4:6F:C7:3D:57:0D:4F:9F:1A:69:85:05:ED:3E:66
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4545
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Vd2AaIv0b8c9Vw1PnxpphQXtPmY.roa
Signing time: Sat 20 Apr 2024 22:53:12 +0000
ROA not before: Sat 20 Apr 2024 22:53:12 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17733 (0x4545)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 20 22:53:12 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=55DD80688BF46FC73D570D4F9F1A698505ED3E66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:36:4f:eb:72:62:43:07:39:90:7c:64:72:f4:
81:3d:a3:cd:38:aa:6d:07:2f:41:ea:26:31:6f:7a:
4d:a2:84:8d:8a:4f:94:71:40:41:af:2b:cd:99:dc:
07:01:b0:5f:4d:ae:1f:51:5f:66:6f:9b:66:1f:bd:
ce:70:8b:e7:02:63:ad:d4:2c:34:f8:26:be:bd:d4:
71:2e:25:62:47:ba:b5:dd:de:88:a9:1d:ca:c1:b2:
5e:7c:10:58:0a:05:3c:67:25:cc:92:ce:29:bd:a0:
9d:6a:40:33:a0:15:7e:f4:3b:1d:6c:83:a4:a2:2f:
d3:57:2c:bf:c6:8f:8f:c4:9f:9b:52:a3:3a:17:34:
de:46:bb:02:06:47:73:95:19:59:69:99:24:31:17:
67:3e:e3:e9:46:18:a3:f0:7e:b0:73:f3:04:21:95:
7b:d4:ac:62:90:07:10:a1:5f:38:bc:66:d4:52:ac:
ad:10:25:2c:7d:80:c7:30:8f:52:a6:5c:f5:7c:2c:
2c:24:79:a5:8b:10:7e:8a:4e:0b:20:0a:89:af:57:
4b:8f:81:b4:a0:5e:89:8a:28:aa:6a:32:d3:47:a3:
c5:f2:69:4d:c0:a7:05:fb:46:54:c7:fa:42:21:be:
ad:c8:c3:f8:7c:94:cc:23:7d:97:d5:0c:e3:34:52:
14:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:DD:80:68:8B:F4:6F:C7:3D:57:0D:4F:9F:1A:69:85:05:ED:3E:66
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Vd2AaIv0b8c9Vw1PnxpphQXtPmY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
1a:75:8f:5a:c4:75:87:e9:79:a1:4c:27:49:12:b2:7b:e3:05:
69:72:e9:a4:f1:0f:dd:24:9f:80:0c:42:34:a2:83:d9:29:20:
ee:25:21:dc:45:15:c8:8a:5e:6b:9c:67:53:8e:5d:18:f9:05:
2a:9a:c3:55:80:b0:be:65:3c:a1:11:30:97:2e:b8:4f:2b:7b:
a1:ae:8f:08:6c:4d:72:84:c6:b8:d6:40:63:b9:d7:f9:20:2b:
3f:f8:b0:e8:fb:a3:aa:e5:09:43:db:ef:94:53:45:38:6d:3a:
e6:85:02:7d:9c:70:24:19:4e:6d:3e:9b:25:37:62:97:d4:ce:
db:6b:d9:20:da:ca:78:3e:51:c8:8f:66:ab:2a:a1:a0:b6:f3:
54:70:79:2e:3c:be:2d:a9:1c:76:58:67:ee:3c:62:9a:74:b9:
9f:d2:b2:29:f7:24:c5:33:72:73:80:25:ee:dc:e9:e4:36:28:
ad:96:67:a3:a1:a4:f5:5e:5b:0c:66:18:51:c6:1b:29:10:dd:
8b:d8:5f:8f:bb:8c:15:83:cf:e7:69:41:30:10:d6:d8:5f:38:
de:42:74:14:f3:23:a6:74:58:d7:22:25:c1:46:dc:51:bc:e0:
09:a5:4a:ba:fe:ce:7c:78:38:be:4b:1b:44:00:f7:5e:e1:33:
0e:dd:3b:1b
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICRUUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MjAy
MjUzMTJaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDU1REQ4MDY4OEJGNDZG
QzczRDU3MEQ0RjlGMUE2OTg1MDVFRDNFNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVNk/rcmJDBzmQfGRy9IE9o804qm0HL0HqJjFvek2ihI2KT5Rx
QEGvK82Z3AcBsF9Nrh9RX2Zvm2Yfvc5wi+cCY63ULDT4Jr691HEuJWJHurXd3oip
HcrBsl58EFgKBTxnJcySzim9oJ1qQDOgFX70Ox1sg6SiL9NXLL/Gj4/En5tSozoX
NN5GuwIGR3OVGVlpmSQxF2c+4+lGGKPwfrBz8wQhlXvUrGKQBxChXzi8ZtRSrK0Q
JSx9gMcwj1KmXPV8LCwkeaWLEH6KTgsgComvV0uPgbSgXomKKKpqMtNHo8XyaU3A
pwX7RlTH+kIhvq3Iw/h8lMwjfZfVDOM0UhRhAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQUVd2AaIv0b8c9Vw1PnxpphQXtPmYwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L1ZkMkFhSXYwYjhjOVZ3
MVBueHBwaFFYdFBtWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBABp1j1rEdYfpeaFM
J0kSsnvjBWly6aTxD90kn4AMQjSig9kpIO4lIdxFFciKXmucZ1OOXRj5BSqaw1WA
sL5lPKERMJcuuE8re6GujwhsTXKExrjWQGO51/kgKz/4sOj7o6rlCUPb75RTRTht
OuaFAn2ccCQZTm0+myU3YpfUzttr2SDayng+UciPZqsqoaC281RweS48vi2pHHZY
Z+48Ypp0uZ/Ssin3JMUzcnOAJe7c6eQ2KK2WZ6OhpPVeWwxmGFHGGykQ3YvYX4+7
jBWDz+dpQTAQ1thfON5CdBTzI6Z0WNciJcFG3FG84AmlSrr+znx4OL5LG0QA917h
Mw7dOxs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:29 2024 by rpki-client on console-fra.rpki-client.org