Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/WmYm8HT6TkFMduXEsQegTLYl9ec.roa
File: WmYm8HT6TkFMduXEsQegTLYl9ec.roa (raw, json)
Hash identifier: w0lBbKuT/ik5QfcNGDfFB2bj6IPnfM2OG1WckY4jPU8=
Subject key identifier: 5A:66:26:F0:74:FA:4E:41:4C:76:E5:C4:B1:07:A0:4C:B6:25:F5:E7
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 34DD
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/WmYm8HT6TkFMduXEsQegTLYl9ec.roa
Signing time: Sat 30 Mar 2024 01:52:11 +0000
ROA not before: Sat 30 Mar 2024 01:52:11 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13533 (0x34dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Mar 30 01:52:11 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=5A6626F074FA4E414C76E5C4B107A04CB625F5E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a9:97:28:0c:37:f4:45:6d:e7:c3:8f:f1:5d:
ba:4f:e9:38:a2:66:03:9d:19:a9:fe:09:62:1e:12:
0e:f9:4a:3e:18:51:80:89:1c:fa:6e:ad:41:cd:c7:
b4:09:ec:b3:26:fc:ed:2d:69:7d:bb:46:2c:da:91:
34:3c:b6:6b:1c:a5:98:db:2f:e6:27:12:8b:fe:7d:
ec:09:24:40:49:6d:b1:6d:e9:82:34:7f:b9:00:82:
ab:f5:ce:e9:75:60:51:b7:86:bb:67:94:91:43:c7:
33:26:d3:c1:97:95:7c:12:36:8b:4c:6d:e2:56:6e:
ea:d8:dc:42:de:1c:73:1d:06:cb:2e:b3:d4:60:39:
27:74:4b:33:d6:f8:eb:8a:ce:90:eb:d8:e9:b0:eb:
7a:ba:80:77:64:99:af:e7:6a:16:6c:eb:2a:54:84:
d5:48:04:d1:85:6a:29:60:2e:ff:33:5b:2c:6f:ce:
46:10:1f:bc:df:2c:5f:42:95:7d:ec:f0:a9:d6:05:
74:5d:9d:d1:f7:93:86:39:90:b6:70:73:15:ea:59:
d0:70:74:2f:c6:fb:81:b0:4b:9a:6b:de:6e:40:f3:
43:e0:8d:01:01:6b:76:39:b6:dd:41:d0:74:63:f0:
6e:3d:b6:17:3e:d5:0a:c7:6b:e8:34:fe:1a:bd:ce:
2e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:66:26:F0:74:FA:4E:41:4C:76:E5:C4:B1:07:A0:4C:B6:25:F5:E7
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/WmYm8HT6TkFMduXEsQegTLYl9ec.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
3d:2f:88:ab:12:dc:bf:3c:bd:2f:87:dd:7d:dd:b6:a0:95:48:
18:3c:6b:1e:6d:da:ac:89:e8:7c:1d:5a:d5:c2:02:6f:bd:0f:
d6:85:9e:d4:d3:38:af:a9:01:7b:57:9c:a8:8d:cc:c1:da:70:
fb:aa:29:b5:4f:24:12:c6:94:a2:37:aa:f8:23:3b:cd:35:50:
97:8b:59:b4:48:da:44:32:4f:6c:5f:3f:b2:71:08:f6:5b:1e:
ad:45:6e:67:5f:e8:ea:a7:98:3b:58:0a:a5:20:ee:a8:ee:ff:
7a:0f:d2:45:16:4b:ad:7e:98:b9:a5:67:d3:31:cb:de:9d:03:
47:b3:c3:91:49:8a:5c:6f:e6:ae:65:b9:bb:0c:42:71:79:69:
70:c6:40:0f:4f:d2:8a:09:de:b1:31:b2:94:ed:b6:8c:e5:36:
e5:0c:03:f9:2f:81:0b:78:9f:5e:61:2d:16:e7:78:54:e9:a6:
79:b2:79:eb:ee:f8:ef:0d:d7:c6:58:7c:8d:39:d4:49:63:51:
03:e8:3c:4e:85:09:df:ed:9b:69:b2:f6:41:65:e6:08:3e:a6:
c2:84:f1:eb:8e:bc:dd:3d:2a:ef:92:db:2c:59:f1:e0:c1:97:
7b:32:14:d8:79:0c:6f:c9:50:89:8f:69:ee:48:94:c2:63:62:
47:7c:31:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:30 2024 by rpki-client on console-fra.rpki-client.org