Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/Vgtd-jGSlxl2ha6lKYJJdRJbj-I.roa
File: Vgtd-jGSlxl2ha6lKYJJdRJbj-I.roa (raw, json)
Hash identifier: 56WtGOu73qKv4TXSNeTzBlx8ux5dlIuzhSgQ02cs4Oc=
Subject key identifier: 56:0B:5D:FA:31:92:97:19:76:85:AE:A5:29:82:49:75:12:5B:8F:E2
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5211
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Vgtd-jGSlxl2ha6lKYJJdRJbj-I.roa
Signing time: Wed 08 May 2024 00:24:00 +0000
ROA not before: Wed 08 May 2024 00:24:00 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21009 (0x5211)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 8 00:24:00 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=560B5DFA319297197685AEA529824975125B8FE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e0:25:b8:cb:7f:b8:ae:74:c8:70:09:4d:b2:
db:1e:ef:fd:f8:38:ef:0f:0a:b1:9c:2e:6c:f6:b2:
17:b6:f4:bf:45:d1:3e:16:74:02:9a:8d:1d:8f:f8:
b6:a7:30:78:7f:11:c0:e9:85:b8:10:04:fc:fe:c3:
f5:44:50:9e:f1:6b:44:f6:c5:bb:24:a5:f9:5f:4e:
73:b9:a5:73:64:bc:f1:44:f4:4b:08:da:a4:e6:07:
dc:b4:b7:c0:be:82:82:15:19:87:69:d3:41:f0:a9:
77:9f:7a:7a:7f:d9:ce:da:f5:37:94:2a:c2:54:10:
28:e8:8e:2d:ac:44:25:3b:8a:42:a1:a4:a9:da:7b:
a6:ea:ca:81:7d:de:0d:b7:30:0d:d4:22:03:50:c5:
59:42:09:dd:9e:8c:5a:e2:9d:10:22:e2:ba:29:2d:
94:df:91:69:b6:71:8c:fe:37:d5:ae:da:27:44:09:
59:76:28:ba:88:a4:63:08:87:4c:df:81:86:fc:9b:
6b:89:ff:b4:0e:65:c9:cd:07:be:f3:9d:44:a7:0d:
c2:18:80:67:a9:28:b0:d0:47:33:4d:8d:88:d9:bb:
49:0b:e2:1e:74:e6:6d:eb:2c:d3:50:ff:3a:55:57:
8e:ca:f4:31:a1:27:3d:66:e7:43:76:03:6d:83:93:
bb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:0B:5D:FA:31:92:97:19:76:85:AE:A5:29:82:49:75:12:5B:8F:E2
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Vgtd-jGSlxl2ha6lKYJJdRJbj-I.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
9d:70:aa:90:3e:3b:f8:f6:84:d6:73:3e:38:09:07:c7:39:d1:
0a:ae:76:c1:49:73:63:10:f2:3a:de:3f:df:73:1d:ea:ce:a2:
2e:48:9b:51:d9:24:0f:dc:17:c1:ea:d7:ee:42:67:3e:79:c7:
95:3b:ac:a0:ed:44:49:11:5d:c1:a8:55:ba:b1:02:27:49:a2:
46:25:44:f6:18:31:d3:89:b2:02:fa:ad:b4:7c:48:4e:01:f1:
7f:85:b9:16:a8:7e:9f:b7:04:f9:7c:d6:9b:3a:7d:18:81:41:
d1:52:e2:7a:d5:af:00:cd:8e:fc:3e:0b:d1:8d:5b:1a:f0:65:
4f:07:57:0e:86:b1:73:f2:45:a2:86:1b:2d:78:1d:e9:88:fb:
83:2a:5e:6e:d8:3b:97:a9:f6:b3:3d:a4:02:3d:0a:fc:dc:d0:
8d:34:ce:a3:ff:bb:5c:3b:e2:52:a7:e0:a7:35:2b:64:52:f7:
66:55:ea:9b:6a:22:8a:f7:75:7e:18:f4:3e:11:68:a6:5c:83:
c4:07:a1:b0:43:ff:7b:c6:01:ca:6e:e5:a0:30:da:cf:ac:bc:
df:f4:ab:4a:0e:23:0e:0b:05:3a:c7:be:5d:b3:21:9c:03:25:
b8:d2:55:40:9a:4b:62:98:da:4f:5d:0d:80:e7:15:22:75:c8:
b1:99:e1:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:48:46 2024 by rpki-client on console-ams.rpki-client.org