Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/_KumhK_C57R3J7awZyJnV2afQ3s.roa
File: _KumhK_C57R3J7awZyJnV2afQ3s.roa (raw, json)
Hash identifier: 7pF9mhuSKlELQ5b9x+nyI/7d49YyKNGOZ1e4r3C8lfg=
Subject key identifier: FC:AB:A6:84:AF:C2:E7:B4:77:27:B6:B0:67:22:67:57:66:9F:43:7B
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3359
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/_KumhK_C57R3J7awZyJnV2afQ3s.roa
Signing time: Thu 28 Mar 2024 01:22:00 +0000
ROA not before: Thu 28 Mar 2024 01:22:00 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13145 (0x3359)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Mar 28 01:22:00 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=FCABA684AFC2E7B47727B6B067226757669F437B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c5:de:23:fd:5e:f7:19:69:4c:41:40:37:59:
49:fe:52:44:d7:40:00:8b:fd:95:98:d6:ed:0c:6d:
5b:6f:1e:f2:38:65:58:87:6a:9f:c0:64:80:2a:3e:
91:ac:a9:3c:b6:aa:ae:42:15:ba:26:a5:b1:20:53:
1f:dc:ee:0a:84:af:de:77:15:6c:34:b1:f2:d2:93:
eb:c5:b0:4d:93:14:61:63:84:70:52:55:21:78:a4:
91:bf:7f:b7:03:c0:11:f7:df:0b:e5:1e:f9:26:04:
79:b1:7b:f7:53:8e:8b:c6:18:e5:0c:29:c4:25:2d:
94:1b:e4:a0:40:39:d6:0a:b1:73:31:ec:2b:3b:4a:
32:f6:ac:24:1e:0d:43:b5:fb:4b:82:5d:f3:15:b2:
d1:03:bc:ae:fe:c4:be:ce:1b:3e:43:2e:b7:53:49:
24:a8:f1:17:e7:ad:d2:3f:4b:5c:05:a7:00:98:22:
54:14:56:20:f7:b9:c9:7c:fd:4e:16:d2:c0:34:63:
72:f7:c0:bd:2d:d9:6c:46:61:7c:8f:84:6d:d4:d4:
b2:c2:b7:6d:9b:99:47:39:c4:3c:84:e4:69:b9:6b:
20:f2:86:b6:bb:34:c7:ad:3b:59:17:25:6d:40:62:
cb:ea:f8:5b:d7:50:3d:9b:e3:72:78:8a:4f:74:01:
a2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:AB:A6:84:AF:C2:E7:B4:77:27:B6:B0:67:22:67:57:66:9F:43:7B
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/_KumhK_C57R3J7awZyJnV2afQ3s.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
67:7f:07:ce:54:36:85:a3:a9:31:aa:c9:65:37:3b:32:f4:33:
4e:b5:72:93:91:a5:88:e2:cf:13:39:3b:04:30:be:ce:da:ff:
da:08:84:16:41:2e:5d:3a:dd:fe:b0:b7:49:79:0d:26:d8:c1:
18:67:02:b2:52:de:42:cd:d8:3c:2c:8c:53:e0:ee:3c:42:f9:
79:da:27:e9:c6:36:17:59:c8:d8:df:8a:0d:25:76:a8:04:f7:
d8:97:2b:5b:4d:9a:37:db:42:d4:3c:36:86:a3:20:8c:c7:9b:
6a:53:91:77:71:9a:b9:c9:cb:16:3f:2c:34:5b:0e:7f:1f:ef:
79:4e:9f:45:af:69:45:66:18:3c:ef:93:ab:3d:e2:45:c7:3e:
1f:b0:40:1f:86:7b:68:68:96:09:46:d9:75:bd:80:fa:cf:63:
ad:1d:37:50:67:1c:98:05:21:de:c4:db:05:bf:1a:95:e5:61:
c1:b0:58:c1:36:88:e5:99:32:ae:66:3b:f1:80:81:b3:08:3f:
b0:d6:e0:8b:3f:e9:ce:fd:a2:4f:a4:4a:7f:15:de:af:cb:03:
f5:ab:ea:bb:e9:90:dd:64:e0:2e:3a:21:19:96:d3:f8:aa:0f:
06:9e:e3:fe:11:39:9b:e0:ee:36:69:d3:d0:98:67:b6:e8:b9:
de:a3:1f:b0
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICM1kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDAzMjgw
MTIyMDBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEZDQUJBNjg0QUZDMkU3
QjQ3NzI3QjZCMDY3MjI2NzU3NjY5RjQzN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVxd4j/V73GWlMQUA3WUn+UkTXQACL/ZWY1u0MbVtvHvI4ZViH
ap/AZIAqPpGsqTy2qq5CFbompbEgUx/c7gqEr953FWw0sfLSk+vFsE2TFGFjhHBS
VSF4pJG/f7cDwBH33wvlHvkmBHmxe/dTjovGGOUMKcQlLZQb5KBAOdYKsXMx7Cs7
SjL2rCQeDUO1+0uCXfMVstEDvK7+xL7OGz5DLrdTSSSo8RfnrdI/S1wFpwCYIlQU
ViD3ucl8/U4W0sA0Y3L3wL0t2WxGYXyPhG3U1LLCt22bmUc5xDyE5Gm5ayDyhra7
NMetO1kXJW1AYsvq+FvXUD2b43J4ik90AaIDAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQU/KumhK/C57R3J7awZyJnV2afQ3swHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L19LdW1oS19DNTdSM0o3
YXdaeUpuVjJhZlEzcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAGd/B85UNoWjqTGq
yWU3OzL0M061cpORpYjizxM5OwQwvs7a/9oIhBZBLl063f6wt0l5DSbYwRhnArJS
3kLN2DwsjFPg7jxC+XnaJ+nGNhdZyNjfig0ldqgE99iXK1tNmjfbQtQ8NoajIIzH
m2pTkXdxmrnJyxY/LDRbDn8f73lOn0WvaUVmGDzvk6s94kXHPh+wQB+Ge2holglG
2XW9gPrPY60dN1BnHJgFId7E2wW/GpXlYcGwWME2iOWZMq5mO/GAgbMIP7DW4Is/
6c79ok+kSn8V3q/LA/Wr6rvpkN1k4C46IRmW0/iqDwae4/4ROZvg7jZp09CYZ7bo
ud6jH7A=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:33 2024 by rpki-client on console-fra.rpki-client.org