Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/eM3JVS9jy6koEYcvKoJsjw20d0k.roa
File: eM3JVS9jy6koEYcvKoJsjw20d0k.roa (raw, json)
Hash identifier: H5qJQ7LWH9qrVn4MH0kY2p4dyoasfc3+AfcIZzU1oAw=
Subject key identifier: 78:CD:C9:55:2F:63:CB:A9:28:11:87:2F:2A:82:6C:8F:0D:B4:77:49
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 56E5
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/eM3JVS9jy6koEYcvKoJsjw20d0k.roa
Signing time: Tue 14 May 2024 10:54:08 +0000
ROA not before: Tue 14 May 2024 10:54:08 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22245 (0x56e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 14 10:54:08 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=78CDC9552F63CBA92811872F2A826C8F0DB47749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:43:ce:56:b5:ac:cb:7a:88:cd:9b:44:a7:b0:
c1:47:f9:d8:39:d5:ff:e5:f6:29:66:27:af:fa:80:
0e:48:1c:31:fe:0d:fa:2d:6c:aa:c5:07:3b:39:b3:
e7:80:01:8c:57:23:23:67:c7:a8:cd:90:fd:12:16:
20:1c:b5:9a:32:51:ff:ba:59:84:fa:d9:df:21:09:
19:a5:8b:79:15:e6:84:74:34:8e:07:a8:01:2a:1d:
3d:b5:ea:da:10:93:f7:4f:97:2d:ec:05:4e:0a:2c:
bc:3f:5a:9e:ba:93:75:77:dc:6c:82:68:73:8a:da:
56:e3:ae:06:29:06:c2:8e:54:52:2e:7e:17:c1:be:
fe:90:a5:03:aa:85:8c:d3:3c:35:c6:e5:e9:b1:58:
b6:ff:37:9d:42:5e:65:fd:38:66:71:98:03:93:8d:
c3:8f:2c:d2:79:58:77:87:2a:1d:09:46:5a:ab:8e:
00:cf:14:29:ed:55:a3:c3:17:c3:6b:08:51:5b:7f:
15:ca:ed:02:88:9e:ff:c5:1c:bc:c5:07:ed:6c:19:
ab:05:db:ea:c8:18:5f:dd:c9:b9:7f:46:9e:6d:19:
4f:c3:3d:dd:55:1f:64:90:dd:81:5c:be:1d:00:a2:
c9:4a:7f:e0:59:76:1d:c4:ac:e4:8a:93:bc:6c:5d:
08:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:CD:C9:55:2F:63:CB:A9:28:11:87:2F:2A:82:6C:8F:0D:B4:77:49
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/eM3JVS9jy6koEYcvKoJsjw20d0k.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
2d:ae:08:58:2d:6c:3f:0e:8f:fe:cb:a4:8f:85:cd:25:25:ab:
3d:fc:20:0f:9d:05:56:29:fc:bc:be:35:dc:9b:ba:75:5a:44:
5d:3c:c5:72:f1:80:05:66:e5:9d:f5:66:d8:d5:e2:26:dc:b4:
3d:b2:79:1d:a6:f0:2c:b7:87:2f:58:02:1f:10:2f:5d:53:3e:
e2:06:2d:3d:0b:da:69:8e:62:d9:4c:a8:65:f4:11:83:d5:f8:
32:2e:1b:f9:39:46:17:fe:25:ce:9c:9f:59:b2:e0:b6:4e:a7:
a2:57:a9:35:c8:bd:30:da:7f:88:b0:39:6e:c7:b0:f0:e3:93:
5e:ea:93:af:48:13:7b:9f:12:a8:df:0e:7f:61:3b:e7:ba:ff:
a7:e0:4a:1a:24:fa:91:74:1b:cc:98:46:1a:4a:af:cd:9e:48:
7f:71:99:29:f3:41:f2:75:73:db:87:17:46:91:25:f0:07:d0:
95:88:c8:32:93:b0:29:45:a2:5f:79:94:22:2e:92:da:83:68:
e1:6f:79:0a:6b:af:17:e2:7f:b7:d8:03:1b:9d:89:8b:be:44:
62:4f:7b:90:1d:a5:bc:5c:23:30:18:1a:5b:2c:ad:3e:8d:00:
2f:ad:7d:e6:9a:81:8d:24:81:01:73:af:f0:2c:b5:81:3c:fd:
3e:a6:ea:89
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICVuUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MTQx
MDU0MDhaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDc4Q0RDOTU1MkY2M0NC
QTkyODExODcyRjJBODI2QzhGMERCNDc3NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDiQ85WtazLeojNm0SnsMFH+dg51f/l9ilmJ6/6gA5IHDH+Dfot
bKrFBzs5s+eAAYxXIyNnx6jNkP0SFiActZoyUf+6WYT62d8hCRmli3kV5oR0NI4H
qAEqHT216toQk/dPly3sBU4KLLw/Wp66k3V33GyCaHOK2lbjrgYpBsKOVFIufhfB
vv6QpQOqhYzTPDXG5emxWLb/N51CXmX9OGZxmAOTjcOPLNJ5WHeHKh0JRlqrjgDP
FCntVaPDF8NrCFFbfxXK7QKInv/FHLzFB+1sGasF2+rIGF/dybl/Rp5tGU/DPd1V
H2SQ3YFcvh0AoslKf+BZdh3ErOSKk7xsXQiXAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQUeM3JVS9jy6koEYcvKoJsjw20d0kwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L2VNM0pWUzlqeTZrb0VZ
Y3ZLb0pzancyMGQway5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAC2uCFgtbD8Oj/7L
pI+FzSUlqz38IA+dBVYp/Ly+NdybunVaRF08xXLxgAVm5Z31ZtjV4ibctD2yeR2m
8Cy3hy9YAh8QL11TPuIGLT0L2mmOYtlMqGX0EYPV+DIuG/k5Rhf+Jc6cn1my4LZO
p6JXqTXIvTDaf4iwOW7HsPDjk17qk69IE3ufEqjfDn9hO+e6/6fgShok+pF0G8yY
RhpKr82eSH9xmSnzQfJ1c9uHF0aRJfAH0JWIyDKTsClFol95lCIuktqDaOFveQpr
rxfif7fYAxudiYu+RGJPe5AdpbxcIzAYGlssrT6NAC+tfeaagY0kgQFzr/AstYE8
/T6m6ok=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:37 2024 by rpki-client on console-fra.rpki-client.org