Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/YmHmoZfE_-u2UZEJNhaSLM3LwNI.roa
File: YmHmoZfE_-u2UZEJNhaSLM3LwNI.roa (raw, json)
Hash identifier: eoylRxmY/UGE+bDeOCwU7d1KMkCQMxpPIEChkeyo0bI=
Subject key identifier: 62:61:E6:A1:97:C4:FF:EB:B6:51:91:09:36:16:92:2C:CD:CB:C0:D2
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 537D
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/YmHmoZfE_-u2UZEJNhaSLM3LwNI.roa
Signing time: Thu 09 May 2024 21:54:27 +0000
ROA not before: Thu 09 May 2024 21:54:27 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21373 (0x537d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 9 21:54:27 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=6261E6A197C4FFEBB65191093616922CCDCBC0D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6d:aa:89:3f:4b:1b:91:c8:a1:67:c5:86:ca:
a0:8e:e1:fc:5e:84:1d:96:fc:b9:8b:15:21:d7:79:
b0:23:83:f1:3d:bb:ec:28:8c:26:26:51:f4:96:01:
45:3f:3c:f2:00:e4:01:3e:03:bb:08:04:f4:d4:e8:
bb:b7:34:95:57:84:cc:97:f7:9a:87:3a:b6:10:52:
16:4c:0f:7b:fe:b3:63:ff:35:b8:c9:f3:9d:8b:cd:
52:86:07:75:bb:49:13:fb:06:f1:b5:b6:41:0b:04:
19:65:df:b7:56:ac:06:a0:28:c3:5b:1c:32:0c:65:
04:36:e6:2c:64:4f:63:9d:c1:bf:48:ae:c6:33:dc:
09:09:ed:e9:60:31:72:e6:ed:5c:3b:c6:3f:c6:12:
5d:b2:68:fb:a4:a9:fb:8e:2a:30:e8:7a:18:af:8c:
2b:c9:ea:6f:5f:7b:7a:72:14:9a:6f:06:52:20:19:
d5:2e:de:07:1e:51:31:cf:f5:01:c0:d2:1c:77:9c:
ce:bd:b0:d1:5b:d3:cb:1a:a1:4b:73:aa:8e:2e:76:
22:70:d6:bc:dd:c8:93:92:7d:01:aa:87:91:f8:b6:
16:6a:31:a9:a3:90:ff:14:94:66:09:ef:8d:ed:34:
38:56:12:90:33:21:29:0e:2a:fe:90:7e:30:88:45:
53:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:61:E6:A1:97:C4:FF:EB:B6:51:91:09:36:16:92:2C:CD:CB:C0:D2
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/YmHmoZfE_-u2UZEJNhaSLM3LwNI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
6a:b0:d9:ae:e7:41:11:ee:73:63:30:01:4d:65:d5:a1:30:11:
d2:88:9b:0e:64:f3:16:4e:13:db:f1:fb:d3:fe:07:74:90:b7:
83:c9:aa:eb:f2:c3:c1:9f:17:82:92:2c:ba:64:55:04:aa:5b:
b5:b1:6a:8b:82:96:25:b3:bf:23:61:dc:a3:d3:1e:4a:1b:d4:
47:bd:fe:61:af:2e:7b:dc:67:50:ca:af:c3:75:38:1c:0a:b7:
b9:dd:a6:a8:fd:72:72:52:aa:cb:f2:ab:a1:2b:19:c6:92:72:
c2:cc:33:3f:83:22:7b:33:d6:53:b1:5d:f0:d6:6b:64:c6:31:
e4:03:48:77:19:5b:2c:b0:21:f8:32:cd:b7:77:c8:33:0c:fb:
a1:52:40:12:fa:59:e3:b0:ef:f1:94:20:26:a9:82:73:1e:e8:
b0:44:cf:a3:b2:1f:82:23:4b:e1:1b:8d:5f:93:e3:a0:29:a3:
d5:09:a5:f2:14:55:23:63:b2:29:88:76:35:af:32:ae:08:5c:
d5:04:5e:61:39:7f:d9:d5:4d:64:b3:52:7a:97:e7:9d:aa:9c:
0c:45:b0:69:0a:6f:e1:3b:9e:1e:85:53:1f:09:0c:31:33:99:
7d:c9:8f:06:4b:53:ac:9e:3a:b1:52:0b:19:0d:33:fb:24:5f:
d6:a5:78:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:31 2024 by rpki-client on console-fra.rpki-client.org