Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/ZENPQ-ozaUHgb-jSbWcJThbsTZk.roa
File: ZENPQ-ozaUHgb-jSbWcJThbsTZk.roa (raw, json)
Hash identifier: vpFuo0/I9//9864T9dCTKhBd59cROOeR3G4yPxTZuvo=
Subject key identifier: 64:43:4F:43:EA:33:69:41:E0:6F:E8:D2:6D:67:09:4E:16:EC:4D:99
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4535
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/ZENPQ-ozaUHgb-jSbWcJThbsTZk.roa
Signing time: Sat 20 Apr 2024 20:53:04 +0000
ROA not before: Sat 20 Apr 2024 20:53:04 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17717 (0x4535)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 20 20:53:04 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=64434F43EA336941E06FE8D26D67094E16EC4D99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f4:a4:9b:a4:7f:19:e6:7d:1b:4a:4d:2b:ca:
ca:11:5f:ef:81:51:32:6b:83:af:a2:7a:b1:9f:d1:
95:d7:68:74:17:58:3f:8f:ef:4a:fe:f5:8f:e9:17:
0e:61:c1:5f:e6:fd:19:69:42:8b:d7:83:d7:06:00:
d0:d2:a1:f3:19:33:72:9b:ee:1c:c4:f0:e8:75:a7:
d5:24:bf:d8:65:02:89:99:3d:19:88:bb:87:d9:fe:
66:71:73:2c:43:50:c1:75:d2:84:0c:d6:06:7b:b2:
ee:03:ec:dd:da:85:ee:14:be:cb:87:21:26:5e:4c:
d8:73:97:78:c6:50:33:68:27:ba:73:48:a9:df:5b:
13:d0:7c:ef:e7:95:18:d9:8b:7d:40:8d:06:ea:ec:
fd:65:a0:2e:60:bb:3f:d1:4f:d5:6f:c6:41:b6:d9:
47:5c:1d:67:ec:02:49:2a:c8:31:a5:bd:28:a4:b4:
b7:a8:b3:85:1e:51:19:7a:40:bd:f6:5e:fc:6f:81:
56:fb:e2:18:ff:80:0a:2f:38:0b:87:ac:28:11:9e:
3b:20:f0:09:44:07:30:4a:e3:29:58:2b:e5:a7:dc:
49:d7:da:83:77:6c:4e:29:25:18:b2:c2:7f:21:9c:
bd:3e:9c:ab:d0:84:c8:d1:40:7c:2f:3d:1e:13:71:
b8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:43:4F:43:EA:33:69:41:E0:6F:E8:D2:6D:67:09:4E:16:EC:4D:99
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/ZENPQ-ozaUHgb-jSbWcJThbsTZk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
0f:1f:ee:8d:3c:18:fe:13:36:9d:0f:41:49:34:c5:22:b6:56:
67:c2:7e:d5:6c:87:db:36:f8:de:0e:4d:64:2d:7a:25:1c:38:
98:96:58:07:a4:9f:02:89:6e:61:8d:6d:0f:60:0c:1b:0a:ef:
3d:ac:6f:4a:26:0c:1f:1f:32:e1:19:e6:af:45:29:b7:12:e6:
31:59:4f:d9:ef:60:0a:e7:fc:ee:74:17:51:18:b2:bf:f4:31:
23:d4:9c:7a:b2:91:47:91:c4:e6:e3:e1:ea:06:32:c1:25:c6:
de:52:2a:53:cd:fb:1a:28:7b:a9:db:c0:e7:3c:a3:89:03:62:
6b:e4:28:ba:a7:8c:49:d6:5a:5d:b9:7d:55:aa:9e:7b:71:d5:
cd:da:e5:00:f0:ce:2b:d0:a1:64:69:4a:f1:b8:3b:e4:df:63:
f1:4c:f5:5c:6a:b4:ec:83:39:d1:87:f0:13:bc:68:90:bc:9b:
3a:d6:98:67:74:80:a0:03:a8:f4:7b:93:87:e0:e9:d3:ef:ea:
13:d8:8f:5f:ef:cc:9f:b1:ec:1c:4a:55:88:2b:c0:06:c4:36:
2d:3c:f6:04:e8:9e:0e:42:6c:b4:08:d4:6c:55:54:1d:b2:ee:
3b:1f:37:67:12:80:ea:e6:c9:24:0b:33:d9:9c:04:eb:b8:96:
fe:ad:71:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:32 2024 by rpki-client on console-fra.rpki-client.org