Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/eUWbG-8Nr1rPZoOwvKbimSr_LoQ.roa
File: eUWbG-8Nr1rPZoOwvKbimSr_LoQ.roa (raw, json)
Hash identifier: Sj1pk6/UcAXnqVnBCqsoV3e8huh2qLW0ogVP7vR7AF8=
Subject key identifier: 79:45:9B:1B:EF:0D:AF:5A:CF:66:83:B0:BC:A6:E2:99:2A:FF:2E:84
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5191
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/eUWbG-8Nr1rPZoOwvKbimSr_LoQ.roa
Signing time: Tue 07 May 2024 08:24:00 +0000
ROA not before: Tue 07 May 2024 08:24:00 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20881 (0x5191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 7 08:24:00 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=79459B1BEF0DAF5ACF6683B0BCA6E2992AFF2E84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fa:08:3d:4e:8f:d2:62:77:21:6d:7f:ad:a3:
a8:25:c7:d0:d7:56:fe:db:e7:42:57:f1:cf:59:3f:
89:1e:b0:9d:f2:73:72:71:28:c3:25:14:26:77:5a:
3a:9f:2c:e5:73:4b:61:db:cf:7a:e8:a7:1e:3a:4d:
a2:2e:ed:60:77:a5:58:53:d7:da:a1:cd:e3:15:d1:
a2:7f:eb:69:dc:5c:cf:43:55:bd:30:fe:de:f5:ed:
9b:b6:b0:b4:2c:0c:1b:e0:78:5a:11:e6:b5:df:a5:
14:41:dd:0b:98:12:1b:61:9a:00:b7:fd:b9:b9:9d:
26:af:ed:8b:1b:ec:2d:ea:83:76:d9:97:4d:dc:0f:
41:04:12:4b:ac:b5:51:c3:71:0b:46:cb:62:85:e7:
99:01:8e:c7:8d:f4:4b:7d:f9:4c:5a:7f:b4:d3:cd:
66:b5:0e:5b:da:be:c4:73:f6:e0:b1:95:bc:79:b2:
ff:6b:2e:c2:4f:69:0e:23:03:2e:9d:70:5c:82:63:
54:1f:0f:3a:ad:df:d9:de:54:a9:3f:b9:c6:01:5b:
72:25:da:5b:36:d9:9d:c7:df:38:e0:54:28:3b:55:
24:4b:dc:c6:dc:cf:e0:d7:78:5d:b5:e4:ef:19:99:
95:d9:bd:21:fc:d8:af:46:0d:db:93:30:4a:2f:1a:
87:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:45:9B:1B:EF:0D:AF:5A:CF:66:83:B0:BC:A6:E2:99:2A:FF:2E:84
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/eUWbG-8Nr1rPZoOwvKbimSr_LoQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a2:b4:62:8f:e6:bb:aa:d6:25:0f:02:58:f3:2a:0a:2f:b1:29:
04:6d:8a:5f:ab:cb:36:b6:bc:6d:21:6c:55:a4:1d:84:85:2c:
0a:a3:0d:72:c4:90:ff:fb:b3:b3:bb:c8:01:e5:60:f3:0f:6c:
4f:f8:04:86:7e:35:67:b2:48:cd:41:d4:a4:48:66:4d:ac:5a:
df:1d:00:67:c8:1d:19:25:65:c4:30:d4:72:d7:b1:0c:d4:62:
da:44:06:04:b3:77:8b:0e:82:08:59:61:be:5c:ce:73:73:d3:
bb:f2:24:d0:f2:02:51:c8:20:cc:3d:d2:c0:fe:73:d9:6d:0e:
a3:f1:10:96:a4:47:ee:34:0d:69:22:db:8f:ab:7e:fe:22:68:
6c:89:74:d0:1f:da:52:00:61:57:f6:6e:c1:f9:66:75:dd:b6:
a6:15:60:9a:a7:7e:48:71:1f:25:b8:13:98:a2:19:49:bc:ec:
8f:7d:a4:5d:86:81:2d:2c:42:28:be:a8:b0:4c:d0:a0:2b:49:
b5:08:ea:74:49:0f:07:c3:a7:36:0a:ca:0f:78:77:dd:50:48:
d4:d0:db:06:0f:fb:64:88:56:fb:3e:28:7b:7e:51:52:1b:6d:
6c:51:25:d0:d3:a1:3d:81:d5:97:7a:90:8c:29:8c:6f:b7:b8:
ff:b3:53:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:45:52 2025 by rpki-client