Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/Z2LEvyapoeXy9KK9FADH0-wNDQI.roa
File: Z2LEvyapoeXy9KK9FADH0-wNDQI.roa (raw, json)
Hash identifier: N7P4mAFtBF6efW0T74lIzpdG+Z0Xn7WxwrVr2TpUeIY=
Subject key identifier: 67:62:C4:BF:26:A9:A1:E5:F2:F4:A2:BD:14:00:C7:D3:EC:0D:0D:02
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 44BD
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Z2LEvyapoeXy9KK9FADH0-wNDQI.roa
Signing time: Sat 20 Apr 2024 05:53:04 +0000
ROA not before: Sat 20 Apr 2024 05:53:04 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17597 (0x44bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 20 05:53:04 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=6762C4BF26A9A1E5F2F4A2BD1400C7D3EC0D0D02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:1f:f9:e5:be:6b:ed:ce:08:15:2b:e2:f3:af:
8a:b7:e6:1e:00:ce:b6:4c:fe:8e:e2:c5:e2:92:67:
dd:d3:9d:b3:46:0c:02:31:f8:4a:41:fe:03:17:2d:
7a:28:89:ee:95:6c:27:30:87:a3:36:2f:21:93:d7:
d1:23:40:10:77:d3:e7:d5:f6:e7:a9:2e:fe:cd:02:
ec:5b:b0:a6:ee:08:64:44:7c:6f:01:9f:80:e6:65:
ae:22:a6:fe:63:20:8b:31:e4:f7:fc:9f:fe:45:06:
13:ab:23:29:87:a1:1d:83:51:77:7b:a5:b8:1a:5f:
2a:fe:0a:8b:e0:49:b0:c4:db:1a:c1:f3:16:33:3b:
49:17:f2:cd:4c:5a:42:98:b0:59:89:e2:8c:fd:cc:
08:6d:16:7d:06:93:9e:f0:22:d3:4a:0f:93:fb:76:
06:70:90:19:71:31:06:32:32:27:f5:01:e4:fc:42:
5c:8e:85:90:77:44:69:7b:06:ac:46:2a:f2:fa:70:
ba:87:6f:f5:18:17:18:99:02:2f:9d:5d:7d:a5:a7:
ac:33:ab:a0:22:1f:f4:f6:a5:7a:40:b8:08:d6:86:
cc:02:53:28:a9:6a:a1:20:cb:57:67:0c:61:85:53:
6e:dd:59:cc:77:8a:6a:73:bb:41:11:1e:63:9c:d9:
ec:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:62:C4:BF:26:A9:A1:E5:F2:F4:A2:BD:14:00:C7:D3:EC:0D:0D:02
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Z2LEvyapoeXy9KK9FADH0-wNDQI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
3d:26:bb:9d:da:7e:9c:76:48:b7:88:8e:e1:87:5c:0b:4a:9f:
02:46:44:b3:a5:71:27:1c:bc:3e:e8:e4:ac:ec:2b:34:ea:c2:
81:86:86:3d:b6:92:ae:90:01:e0:e4:71:88:57:30:04:ac:d3:
39:5c:fe:53:12:83:57:7f:1a:1d:70:00:b7:06:fd:8e:fe:74:
c8:f5:d5:41:63:5b:25:40:96:9b:1e:33:b7:d9:3c:50:8c:c7:
45:c8:65:97:a2:ef:81:2b:17:fa:cd:ca:6a:39:70:eb:e3:94:
71:e8:80:af:6c:56:00:9b:f6:ca:03:df:9d:65:e0:f9:2b:cc:
ff:20:47:e2:ef:45:60:92:27:fe:b3:bf:c9:37:15:52:7f:9f:
99:02:5e:cc:bb:58:4b:32:f4:cd:cc:30:20:9c:54:c3:83:00:
5f:be:41:d4:b3:db:c5:13:a1:2e:7e:30:f4:76:0a:1d:ff:f1:
a0:22:45:25:25:07:d0:51:95:aa:ae:a0:c8:1e:8c:f9:60:1c:
2f:42:fb:e2:d0:4b:78:61:1c:ed:91:6b:1c:c7:43:3b:97:f8:
cb:2b:5e:4d:57:5e:01:46:4b:b0:ba:19:0b:a7:24:ed:70:ed:
97:b3:a2:a6:3a:93:16:ee:89:4f:d8:82:7f:21:ec:25:e1:eb:
40:97:3c:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:48:51 2024 by rpki-client on console-ams.rpki-client.org