Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/WEM0_eN6zb3XI7TzjD4_7mnf6hw.roa
File: WEM0_eN6zb3XI7TzjD4_7mnf6hw.roa (raw, json)
Hash identifier: 268Lc3MBk1LcKGdimhIDzv7YwVS/ply8SLo2GqMqpT0=
Subject key identifier: 58:43:34:FD:E3:7A:CD:BD:D7:23:B4:F3:8C:3E:3F:EE:69:DF:EA:1C
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4401
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/WEM0_eN6zb3XI7TzjD4_7mnf6hw.roa
Signing time: Fri 19 Apr 2024 06:22:59 +0000
ROA not before: Fri 19 Apr 2024 06:22:59 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17409 (0x4401)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 19 06:22:59 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=584334FDE37ACDBDD723B4F38C3E3FEE69DFEA1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:19:26:13:1e:55:e0:3b:28:89:fa:71:9b:b3:
02:8b:2b:1e:1a:d4:a1:ec:cc:91:c7:b7:8a:b6:7e:
8a:1b:a6:59:e2:be:01:1c:2c:d8:0a:4f:72:df:a0:
d9:fd:07:51:2a:af:b6:43:76:5f:c2:52:2b:51:4a:
8e:81:ae:5f:8b:fd:1d:9a:ec:f8:b3:8e:54:f8:dc:
7d:cd:d1:21:d1:64:fe:34:bf:0e:d2:b1:81:84:6b:
20:11:c6:34:92:25:5f:d8:c4:6d:06:61:8f:75:ed:
e6:73:b5:fe:61:07:93:6d:a1:d9:c8:75:88:a0:68:
d5:fd:99:ba:50:91:dc:42:45:43:8b:33:04:4f:3a:
b6:ac:3a:ba:1e:b0:d8:a2:2b:31:6d:07:0d:1c:87:
59:42:14:28:31:ab:91:52:3b:bb:a5:31:6f:68:64:
fe:37:78:d6:05:d6:66:87:e7:77:48:65:6c:51:c9:
c0:84:4d:04:72:e5:ff:14:ff:4e:43:f7:80:fe:7b:
80:60:bf:4a:2a:ca:44:0c:d6:b0:35:d8:2c:a8:37:
2d:f0:a5:c4:69:f3:4e:5a:62:e2:66:fa:ac:ff:25:
01:17:fa:33:d1:2d:40:2b:14:f4:15:10:be:a7:a0:
15:d9:75:3e:e4:92:86:9b:8c:f6:56:5a:cb:c7:56:
a6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:43:34:FD:E3:7A:CD:BD:D7:23:B4:F3:8C:3E:3F:EE:69:DF:EA:1C
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/WEM0_eN6zb3XI7TzjD4_7mnf6hw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
93:95:ca:c1:5f:61:51:c5:f7:49:87:47:57:cc:16:58:34:72:
6a:79:57:0e:da:ad:f7:9a:7c:1c:50:2b:f0:2d:32:df:af:96:
b7:79:0e:e3:f5:f5:5b:01:61:41:3f:3d:2b:c4:f2:90:7b:81:
62:3c:3f:c9:c6:2b:a7:ec:56:c5:2c:33:c6:af:5a:1a:03:40:
10:e9:c1:27:28:03:2a:ba:77:84:51:a3:2d:15:64:a6:89:c4:
77:cf:3c:ff:a7:f5:d4:c2:18:e2:bb:51:22:b8:13:1a:09:be:
48:58:6e:03:20:58:c8:d6:d3:e0:ca:cc:a5:bc:52:f2:1e:27:
7b:f7:77:1e:de:83:c3:01:49:dc:b5:a3:87:aa:96:0d:71:ce:
ff:d9:92:a1:95:55:99:55:bb:d4:72:a7:a8:68:ef:10:3f:db:
55:e2:13:e4:ce:99:fb:4b:64:23:61:c6:e0:cf:1b:c8:e6:54:
bf:a7:e0:25:09:7c:1d:35:77:63:3a:b2:ef:76:80:fc:64:7a:
54:de:ba:0b:b1:23:c2:68:0b:d8:3c:03:c0:99:95:3d:ff:70:
db:d9:7d:27:d4:58:1f:1d:43:8e:73:ed:8d:12:3e:02:50:e5:
90:d0:a5:4a:ce:70:05:56:eb:8f:be:52:3b:9f:1d:85:fc:45:
a5:8b:d2:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:29 2024 by rpki-client on console-fra.rpki-client.org