Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/cXGZVCAQlvmY5a6Mj_WN_8L0xPM.roa
File: cXGZVCAQlvmY5a6Mj_WN_8L0xPM.roa (raw, json)
Hash identifier: JT91TE9z4b1NiawxqfjlNL4ZDIqSqpdhf/i+tk6CQuI=
Subject key identifier: 71:71:99:54:20:10:96:F9:98:E5:AE:8C:8F:F5:8D:FF:C2:F4:C4:F3
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4E39
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/cXGZVCAQlvmY5a6Mj_WN_8L0xPM.roa
Signing time: Thu 02 May 2024 21:23:42 +0000
ROA not before: Thu 02 May 2024 21:23:42 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20025 (0x4e39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 2 21:23:42 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=71719954201096F998E5AE8C8FF58DFFC2F4C4F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:03:56:a5:8e:62:33:77:41:94:b3:2d:2e:8d:
7d:66:e5:24:f9:a8:56:2c:89:f7:94:c1:1d:3d:a2:
7d:8a:07:b4:69:9b:11:d9:4e:9c:89:ac:6b:e1:1d:
fa:78:52:8d:78:e6:3f:96:9c:f0:96:3d:b7:6e:4d:
6e:9c:68:b3:a4:ed:a5:c1:52:d9:e9:b5:5c:77:24:
a2:25:ed:9c:c5:72:23:e3:de:7f:0e:14:99:3d:9d:
e1:d1:20:8c:85:24:15:2f:d9:90:a3:a6:d5:34:58:
93:b7:06:3e:e4:9c:e7:dd:84:06:53:16:c9:a8:b2:
aa:0a:4e:0f:d1:26:29:ff:6b:b0:7b:e7:bc:e7:44:
ec:6a:e5:ed:b9:93:a7:e7:0f:a4:8c:87:b4:bd:b8:
82:78:1f:01:b5:5b:77:60:de:c5:f8:04:7c:ec:52:
9a:c0:c5:85:59:50:5a:ff:69:fd:3f:65:fa:0f:ea:
52:0b:c3:37:85:b8:4f:b3:57:d9:19:1a:99:11:ae:
04:6d:f6:c7:0e:60:da:53:8a:33:49:45:47:74:f2:
92:3b:cd:f7:a5:59:46:64:37:95:27:49:37:8e:11:
e7:07:c3:18:d8:7c:eb:3b:23:88:b1:c8:ed:e9:a5:
b0:07:34:82:7e:d1:ec:e1:03:7e:48:08:58:d3:4e:
52:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:71:99:54:20:10:96:F9:98:E5:AE:8C:8F:F5:8D:FF:C2:F4:C4:F3
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/cXGZVCAQlvmY5a6Mj_WN_8L0xPM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
18:2b:0a:68:3e:53:0a:cd:25:f4:ca:7d:65:a9:73:00:f4:7a:
8e:2e:4f:ff:ee:38:22:56:6c:c3:3e:d4:c8:8f:e3:b8:77:24:
41:a5:3c:6b:9e:31:ce:85:8f:4f:50:ca:b1:43:88:a7:1a:cf:
e3:24:c8:6f:0f:4e:e7:39:ef:68:41:55:3a:ed:4a:c9:2d:65:
74:3f:1e:47:31:76:b7:08:24:89:ee:d5:60:00:6f:c3:99:c6:
d5:7b:9e:2c:0a:91:1d:2f:fd:14:39:e3:40:06:56:91:30:18:
d8:8c:a0:d0:4c:b5:ae:1b:65:cf:ca:da:27:5f:a6:31:28:03:
de:e4:88:8c:a5:be:62:aa:04:44:9e:9f:04:c5:b8:8c:bc:f0:
38:ec:40:56:89:ad:1d:72:e2:f2:d2:5c:b2:61:30:f4:d4:96:
89:c6:d1:d8:e4:0d:b1:30:93:c8:bf:54:d7:49:c0:09:5e:fa:
2d:fc:37:11:9a:32:69:86:c2:96:de:09:9f:da:94:f2:96:a6:
4a:77:b8:de:9b:f6:51:9b:7e:14:7a:99:74:b3:36:91:96:61:
43:95:5c:bf:d4:c4:4a:18:38:f1:d5:72:87:c8:df:e0:f0:c8:
0e:77:73:88:67:0d:8a:aa:ca:5e:89:eb:73:0f:28:94:67:d2:
47:25:eb:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:36 2024 by rpki-client on console-fra.rpki-client.org