Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/dtJbCOtW-mBwMckJG_mmsjOe6Wo.roa
File: dtJbCOtW-mBwMckJG_mmsjOe6Wo.roa (raw, json)
Hash identifier: zmnx5UpjkoapEaX7c+fqw3kCKdpfFlXh7OwcMEu6bM8=
Subject key identifier: 76:D2:5B:08:EB:56:FA:60:70:31:C9:09:1B:F9:A6:B2:33:9E:E9:6A
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 504D
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/dtJbCOtW-mBwMckJG_mmsjOe6Wo.roa
Signing time: Sun 05 May 2024 15:53:49 +0000
ROA not before: Sun 05 May 2024 15:53:49 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20557 (0x504d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 5 15:53:49 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=76D25B08EB56FA607031C9091BF9A6B2339EE96A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2a:54:ad:ed:06:8d:f7:a0:a7:43:73:7e:23:
10:ff:10:cb:4b:c7:6c:4b:92:46:1c:89:5c:eb:45:
28:6c:92:aa:73:4b:e4:9f:0e:49:4d:ca:de:2d:fe:
38:1a:2c:34:e5:83:ed:8b:7c:e2:5a:5b:3f:dd:75:
0c:5c:f1:60:28:79:5a:cf:12:09:9a:14:d0:f3:2f:
b1:24:5f:df:66:59:59:b3:31:8d:0c:a0:0f:a6:bb:
d1:1f:9a:79:10:6b:ac:28:e7:bc:4f:39:80:87:ab:
60:6e:be:48:bc:70:3f:78:83:e2:9d:dd:01:29:5f:
b2:cb:6c:c1:32:65:97:e6:92:f2:f1:f4:c6:4a:1b:
19:1b:6a:d3:96:4e:17:2e:c2:e3:1f:5f:9a:50:19:
42:0b:41:18:7b:5f:8f:01:91:2e:1f:cc:03:40:1c:
97:96:eb:08:d3:83:7d:f9:25:28:37:08:3d:52:f6:
7b:c7:22:d0:0d:08:94:9a:e7:2f:2c:8e:e1:2d:27:
31:1b:2b:c0:c2:2e:b8:28:d9:84:60:1b:3d:b4:ac:
9f:59:a3:e2:da:7c:ab:c0:97:0f:26:5a:4c:fb:0f:
92:b7:19:89:5a:30:f4:c3:cd:00:30:ba:1a:f1:7e:
2c:3a:52:3b:d3:e2:7b:8c:35:ff:ed:89:34:e0:50:
50:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:D2:5B:08:EB:56:FA:60:70:31:C9:09:1B:F9:A6:B2:33:9E:E9:6A
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/dtJbCOtW-mBwMckJG_mmsjOe6Wo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
09:91:d5:44:eb:d4:48:d0:6d:ae:50:ab:ac:9d:39:66:25:68:
67:8c:78:30:56:3f:e3:d0:f7:84:34:ce:be:13:95:ec:0f:5a:
aa:df:cb:c9:ba:be:7d:fd:93:14:b7:a2:0b:19:45:8d:01:02:
9f:07:b8:ef:b2:dc:1d:6c:ba:5a:f5:bc:a8:36:8f:55:c3:0b:
87:fd:ab:23:c6:df:5c:88:e0:98:e7:e6:e0:b9:e4:a2:6b:63:
6e:b6:4b:f9:ae:f7:6d:be:9c:16:30:cd:17:76:e0:3b:45:2c:
61:a8:5a:19:0f:58:ab:15:c0:e5:8c:52:03:ef:7a:33:14:b2:
3a:7f:f3:fe:ab:9f:d6:9f:df:b7:02:63:23:11:5e:ea:5f:25:
b8:b5:6c:90:79:35:2d:16:65:be:e8:8a:8b:f9:e6:02:ac:11:
c3:55:e6:d3:07:87:73:16:d5:db:12:1a:90:48:5a:48:c2:60:
01:cc:a3:9c:fd:5b:bb:46:44:db:ca:78:48:f0:c4:86:59:43:
2a:43:79:1a:a3:0e:40:9a:f7:8c:f0:ff:ee:b2:f0:e9:0c:51:
68:5c:e8:b4:b7:18:7f:d5:fb:5c:bf:ae:98:06:a7:ea:56:63:
1d:d5:06:e9:a7:ac:8c:b8:f4:dc:22:b4:f6:ed:f5:52:9c:a7:
6b:16:0c:18
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICUE0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MDUx
NTUzNDlaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDc2RDI1QjA4RUI1NkZB
NjA3MDMxQzkwOTFCRjlBNkIyMzM5RUU5NkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEKlSt7QaN96CnQ3N+IxD/EMtLx2xLkkYciVzrRShskqpzS+Sf
DklNyt4t/jgaLDTlg+2LfOJaWz/ddQxc8WAoeVrPEgmaFNDzL7EkX99mWVmzMY0M
oA+mu9EfmnkQa6wo57xPOYCHq2Buvki8cD94g+Kd3QEpX7LLbMEyZZfmkvLx9MZK
GxkbatOWThcuwuMfX5pQGUILQRh7X48BkS4fzANAHJeW6wjTg335JSg3CD1S9nvH
ItANCJSa5y8sjuEtJzEbK8DCLrgo2YRgGz20rJ9Zo+LafKvAlw8mWkz7D5K3GYla
MPTDzQAwuhrxfiw6UjvT4nuMNf/tiTTgUFBdAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQUdtJbCOtW+mBwMckJG/mmsjOe6WowHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L2R0SmJDT3RXLW1Cd01j
a0pHX21tc2pPZTZXby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAAmR1UTr1EjQba5Q
q6ydOWYlaGeMeDBWP+PQ94Q0zr4TlewPWqrfy8m6vn39kxS3ogsZRY0BAp8HuO+y
3B1sulr1vKg2j1XDC4f9qyPG31yI4Jjn5uC55KJrY262S/mu922+nBYwzRd24DtF
LGGoWhkPWKsVwOWMUgPvejMUsjp/8/6rn9af37cCYyMRXupfJbi1bJB5NS0WZb7o
iov55gKsEcNV5tMHh3MW1dsSGpBIWkjCYAHMo5z9W7tGRNvKeEjwxIZZQypDeRqj
DkCa94zw/+6y8OkMUWhc6LS3GH/V+1y/rpgGp+pWYx3VBumnrIy49NwitPbt9VKc
p2sWDBg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:48:57 2024 by rpki-client on console-ams.rpki-client.org