Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/bSyc6oZFyZr-tFigzfGbzYF0bTo.roa
File: bSyc6oZFyZr-tFigzfGbzYF0bTo.roa (raw, json)
Hash identifier: othUbwNak7X22DWIAQXAo05aiHPq/c9moht1dYU81No=
Subject key identifier: 6D:2C:9C:EA:86:45:C9:9A:FE:B4:58:A0:CD:F1:9B:CD:81:74:6D:3A
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4531
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/bSyc6oZFyZr-tFigzfGbzYF0bTo.roa
Signing time: Sat 20 Apr 2024 20:23:05 +0000
ROA not before: Sat 20 Apr 2024 20:23:05 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17713 (0x4531)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 20 20:23:05 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=6D2C9CEA8645C99AFEB458A0CDF19BCD81746D3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b1:37:0f:bb:77:94:88:83:80:55:e1:f0:6a:
01:a5:1a:a8:6f:4b:8a:e7:59:7f:9a:98:74:c5:74:
30:35:7e:06:80:e5:2e:cf:b9:b3:1e:1d:65:99:8c:
05:8c:28:a1:e2:d6:e8:c8:71:3c:34:35:1e:9a:08:
af:fb:ec:19:02:b4:02:12:c3:30:12:e2:68:94:80:
a8:e6:ee:d6:ab:5f:30:15:35:31:32:be:ca:86:1a:
04:e6:36:80:0a:cd:3c:39:38:43:a2:2b:bf:29:60:
9b:e7:9f:7d:2f:df:bb:51:64:b7:f8:fe:43:bf:89:
22:ff:11:69:ab:71:c1:35:7e:d5:91:f0:ee:e8:a1:
70:04:8f:3d:61:0f:56:25:ce:8e:07:4e:51:26:73:
8c:e9:12:bd:e1:e6:4a:54:2b:84:3d:8a:09:8b:dd:
81:62:56:36:a6:3a:59:25:63:6d:f0:b9:7b:78:7e:
98:5d:98:6a:3c:63:80:6d:c4:db:42:ec:b8:45:b9:
e3:ec:10:d1:47:28:83:79:8b:bb:84:9e:60:ad:c2:
87:58:82:fc:4e:65:b5:55:44:d5:5b:f5:42:09:40:
e3:0e:39:5f:d2:8b:6a:33:5b:6b:55:dd:97:b5:1a:
75:f6:60:21:aa:03:17:a3:79:db:6e:74:65:1b:58:
e8:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:2C:9C:EA:86:45:C9:9A:FE:B4:58:A0:CD:F1:9B:CD:81:74:6D:3A
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/bSyc6oZFyZr-tFigzfGbzYF0bTo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
51:ff:2d:35:36:d8:95:f1:1f:a0:15:47:e9:54:3b:33:a6:c4:
66:59:df:b5:d7:5e:0f:e3:f8:71:ca:e9:06:05:cb:e1:10:fa:
eb:9a:a7:8a:8a:6c:64:e2:bb:31:fa:b7:d9:a9:15:cf:c3:27:
57:87:80:b9:9f:4d:76:a8:ef:ac:aa:12:84:68:01:f2:3c:29:
84:b6:72:4a:0a:2e:65:b8:a1:14:71:37:a0:9f:a3:85:57:05:
84:80:64:50:b0:7b:3f:3a:f2:00:17:1d:04:57:37:09:55:c2:
a8:ed:1e:8b:52:d5:dd:b0:b9:46:33:7b:2d:71:f8:2a:1f:75:
90:51:b0:d9:8b:f0:07:8e:de:f5:44:1d:f7:0d:9e:d0:c5:4a:
39:7a:d6:e1:7c:11:5e:bb:f6:32:1f:ca:39:82:ac:ac:aa:14:
8f:d0:b7:9d:7f:26:52:64:54:75:d5:b2:4c:f5:fd:4d:a9:6b:
33:8d:63:75:eb:0e:8e:ea:8f:8e:b0:34:38:03:4e:7c:15:4c:
77:34:21:df:d1:c4:cd:2f:62:bb:59:b1:d3:9d:e4:01:5a:f0:
ee:ad:46:b3:ee:db:e7:6a:7b:d9:5f:53:66:29:df:11:88:79:
fa:8e:18:76:e7:9f:72:bc:14:63:cc:0e:ee:ca:13:23:09:1f:
29:4d:7d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:35 2024 by rpki-client on console-fra.rpki-client.org