Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/VdS-0pG99dr5kfCN-lU20jHIvH8.roa
File: VdS-0pG99dr5kfCN-lU20jHIvH8.roa (raw, json)
Hash identifier: ofY67eU8K9YvCyXjqKh2IBQW3hN85hbZrJYZpLWIl88=
Subject key identifier: 55:D4:BE:D2:91:BD:F5:DA:F9:91:F0:8D:FA:55:36:D2:31:C8:BC:7F
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5089
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/VdS-0pG99dr5kfCN-lU20jHIvH8.roa
Signing time: Sun 05 May 2024 23:24:02 +0000
ROA not before: Sun 05 May 2024 23:24:02 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20617 (0x5089)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 5 23:24:02 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=55D4BED291BDF5DAF991F08DFA5536D231C8BC7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1b:c8:c6:6f:a2:7f:cf:69:f5:54:7c:54:d1:
9e:ce:ad:d4:4d:3c:48:ab:fe:e8:05:4f:a2:7c:f0:
6e:b0:19:65:10:30:b2:53:fb:c5:cc:17:fa:0f:aa:
4e:2a:d9:a7:f8:96:69:1d:ac:30:81:57:7c:52:d6:
3a:50:6f:06:3a:71:c1:ee:74:26:24:0f:b5:39:1e:
bb:ad:0d:26:d0:c4:4e:68:fb:b8:21:49:4f:62:d7:
70:b7:b3:d4:ed:31:26:86:79:10:a9:d2:ef:b2:d1:
06:2c:aa:56:f6:dd:e1:8b:c1:aa:d7:4d:26:96:a3:
e2:7c:58:87:bb:4b:fb:c6:56:a5:14:77:de:f0:a0:
16:c1:f8:d8:0f:30:8c:a4:a1:d7:62:da:c0:0a:4b:
45:ab:aa:11:fd:f7:60:13:d4:1a:a9:42:28:8b:e0:
08:7b:0d:4c:c1:1c:44:ba:e6:07:92:45:3a:f9:b3:
4b:48:f8:68:8a:e7:9b:22:b7:48:5d:10:80:81:a5:
23:4b:de:58:5b:56:2f:4d:ab:aa:0a:1a:df:bd:4f:
15:25:25:4a:d8:e4:dc:66:c8:f6:2e:a9:db:9e:67:
3e:69:71:3c:c4:92:8a:05:6f:7a:84:e6:dd:8d:f8:
29:a7:4d:19:84:aa:ac:4d:c3:35:51:e9:43:e6:a9:
d5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:D4:BE:D2:91:BD:F5:DA:F9:91:F0:8D:FA:55:36:D2:31:C8:BC:7F
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/VdS-0pG99dr5kfCN-lU20jHIvH8.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
9c:d2:b2:ee:50:ac:6a:40:56:00:27:b4:2b:57:07:c8:d0:23:
39:9c:72:b0:b4:89:4f:12:38:4e:fe:5a:94:9e:5a:67:03:f7:
ed:46:06:4f:9e:ca:b1:85:57:31:b0:df:7f:58:29:1e:dd:39:
54:3c:ff:9d:3e:fc:fb:be:62:ef:31:77:d9:3e:8b:23:0d:17:
82:c3:3f:2b:29:90:79:fc:50:92:60:4e:6a:1d:42:3f:21:e7:
8d:a0:e9:2d:9f:b5:dd:45:25:e4:3b:e3:83:c5:80:c5:0f:a7:
72:f7:d9:b7:78:30:ef:74:32:08:81:fd:6f:4d:7b:de:4a:e2:
7e:94:fd:34:dc:85:ed:6d:be:43:22:0a:f7:f3:30:ce:4a:2b:
55:20:6e:02:44:4d:c9:36:40:68:6b:75:3f:1e:98:3e:9f:28:
c9:b7:9a:97:f5:c2:5f:cd:9c:26:32:6b:65:be:d8:5c:83:c0:
33:ec:7b:8e:ca:41:4c:a9:a5:c9:c0:ae:a1:bb:ca:31:39:d0:
7d:23:79:3e:0c:6e:70:5a:28:86:fa:70:89:ad:81:58:24:cd:
22:9c:40:2c:21:d3:d8:b4:2d:24:e1:26:fd:22:12:8a:e1:a1:
f3:30:c1:33:6f:96:1c:d7:6f:8b:6f:23:89:31:86:95:22:51:
59:43:ba:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:29 2024 by rpki-client on console-fra.rpki-client.org