Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/dSgVxMKmx9hhJPrL9O2nRN2P_KA.roa
File: dSgVxMKmx9hhJPrL9O2nRN2P_KA.roa (raw, json)
Hash identifier: UIjwm2YHYVk3SG8X6TYKlg+6r+03rqXdHqnjX3SdoKM=
Subject key identifier: 75:28:15:C4:C2:A6:C7:D8:61:24:FA:CB:F4:ED:A7:44:DD:8F:FC:A0
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4D91
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/dSgVxMKmx9hhJPrL9O2nRN2P_KA.roa
Signing time: Thu 02 May 2024 00:23:40 +0000
ROA not before: Thu 02 May 2024 00:23:40 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19857 (0x4d91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 2 00:23:40 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=752815C4C2A6C7D86124FACBF4EDA744DD8FFCA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fc:fe:74:e0:82:ab:aa:03:48:92:80:64:06:
b7:c2:b7:05:14:e9:cf:68:fd:7d:52:68:34:35:9f:
93:3d:eb:61:27:bf:8d:a1:a5:af:ed:c0:5c:12:78:
75:99:0a:9e:07:ab:0b:fc:b2:07:7b:ef:dc:d2:53:
ce:9a:ed:76:fd:1d:cc:f0:bd:12:0b:1d:1f:c9:75:
5b:3b:3e:2e:7a:a8:5d:98:2b:f0:82:c0:c7:5d:78:
a8:f4:c7:b3:69:5a:02:bf:9f:a7:5c:8b:89:38:12:
0c:f9:d1:5d:32:c0:c5:1a:f4:e0:d2:3b:f3:ef:16:
8d:cf:95:7a:0d:38:2f:10:84:1c:ed:60:b6:d9:93:
e6:ab:ae:f6:6b:5d:74:ad:aa:02:90:07:25:80:28:
f1:79:b5:9b:34:16:d5:84:ce:3d:f0:00:0f:2a:3e:
4c:50:35:d4:52:20:64:c9:fb:51:4e:37:ca:4f:c7:
19:ed:0b:1c:f0:2f:92:f4:86:17:c4:8e:26:f7:8c:
27:d0:04:fb:38:86:f5:f4:71:2f:4e:74:e9:2b:19:
f1:44:ff:97:91:b8:3f:48:e8:9d:33:80:fb:2a:de:
f6:ba:a6:67:89:4e:24:48:63:ed:af:34:9b:f7:c4:
7a:2a:8d:af:ea:83:09:ad:9f:8f:2b:78:99:3a:6e:
96:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:28:15:C4:C2:A6:C7:D8:61:24:FA:CB:F4:ED:A7:44:DD:8F:FC:A0
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/dSgVxMKmx9hhJPrL9O2nRN2P_KA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
9c:e6:81:41:41:02:77:65:89:8c:b0:af:86:cb:48:3c:d7:9b:
61:de:11:ef:3e:3c:96:8c:90:35:47:82:67:52:5f:fe:b7:09:
41:7a:27:dc:ef:72:ab:55:f8:5d:5f:17:a3:cb:46:2c:73:3e:
81:d6:00:9e:27:e4:57:23:16:22:d7:6e:6a:ae:b3:94:30:4e:
36:28:30:f3:2e:47:1d:50:d1:43:94:b5:dc:60:45:bb:22:d3:
2e:b6:83:c3:b5:27:8f:8d:c5:0c:20:96:c9:ad:6a:0f:9e:ac:
5f:e5:bf:32:eb:89:4d:db:88:02:1b:aa:5d:56:66:c6:63:ca:
7a:43:58:66:2f:5c:b5:70:a7:7f:ee:d2:d3:61:b4:79:c6:3c:
77:c7:83:15:36:1b:5e:e3:23:26:c1:45:d4:64:6c:33:ad:1d:
cb:a5:dc:36:a0:51:7e:74:5f:b9:93:42:e2:3e:b2:cc:b5:59:
69:83:97:71:a2:db:76:94:ce:00:4a:53:fc:b6:57:99:55:9d:
ac:ad:b6:73:8f:c7:cf:8d:83:57:18:ad:a7:dd:4b:cf:d1:85:
3a:bc:d0:ec:42:eb:2b:3a:f5:47:bd:5e:e7:85:41:9b:13:1a:
c5:79:00:bb:49:e3:e7:46:3c:83:97:fe:d6:d1:94:e1:25:f8:
c5:92:b6:2a
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICTZEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MDIw
MDIzNDBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDc1MjgxNUM0QzJBNkM3
RDg2MTI0RkFDQkY0RURBNzQ0REQ4RkZDQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCg/P504IKrqgNIkoBkBrfCtwUU6c9o/X1SaDQ1n5M962Env42h
pa/twFwSeHWZCp4Hqwv8sgd779zSU86a7Xb9HczwvRILHR/JdVs7Pi56qF2YK/CC
wMddeKj0x7NpWgK/n6dci4k4Egz50V0ywMUa9ODSO/PvFo3PlXoNOC8QhBztYLbZ
k+arrvZrXXStqgKQByWAKPF5tZs0FtWEzj3wAA8qPkxQNdRSIGTJ+1FON8pPxxnt
CxzwL5L0hhfEjib3jCfQBPs4hvX0cS9OdOkrGfFE/5eRuD9I6J0zgPsq3va6pmeJ
TiRIY+2vNJv3xHoqja/qgwmtn48reJk6bpbjAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQUdSgVxMKmx9hhJPrL9O2nRN2P/KAwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L2RTZ1Z4TUtteDloaEpQ
ckw5TzJuUk4yUF9LQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAJzmgUFBAndliYyw
r4bLSDzXm2HeEe8+PJaMkDVHgmdSX/63CUF6J9zvcqtV+F1fF6PLRixzPoHWAJ4n
5FcjFiLXbmqus5QwTjYoMPMuRx1Q0UOUtdxgRbsi0y62g8O1J4+NxQwglsmtag+e
rF/lvzLriU3biAIbql1WZsZjynpDWGYvXLVwp3/u0tNhtHnGPHfHgxU2G17jIybB
RdRkbDOtHcul3DagUX50X7mTQuI+ssy1WWmDl3Gi23aUzgBKU/y2V5lVnayttnOP
x8+Ng1cYrafdS8/RhTq80OxC6ys69Ue9XueFQZsTGsV5ALtJ4+dGPIOX/tbRlOEl
+MWStio=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:37 2024 by rpki-client on console-fra.rpki-client.org