Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/eqIdafcVRSjEiP1rFtYtrkqDbdQ.roa
File: eqIdafcVRSjEiP1rFtYtrkqDbdQ.roa (raw, json)
Hash identifier: HDdVKHOq5gZ5OEUdCx8HypN55KBXFdiT77iW+TBd+KI=
Subject key identifier: 7A:A2:1D:69:F7:15:45:28:C4:88:FD:6B:16:D6:2D:AE:4A:83:6D:D4
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 35E9
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/eqIdafcVRSjEiP1rFtYtrkqDbdQ.roa
Signing time: Sun 31 Mar 2024 11:22:10 +0000
ROA not before: Sun 31 Mar 2024 11:22:10 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13801 (0x35e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Mar 31 11:22:10 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=7AA21D69F7154528C488FD6B16D62DAE4A836DD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:59:50:ac:4e:c5:71:74:76:eb:5e:11:e5:82:
e0:d4:6f:4f:9e:85:e6:21:1f:7c:31:91:48:1c:58:
3d:85:a1:f1:84:ec:54:dd:f3:f4:bb:45:4e:da:00:
a4:d6:54:fc:bf:ca:94:36:18:7f:d4:d3:de:68:b7:
41:5a:ee:9b:60:8b:a7:85:f3:3d:32:a8:ad:e5:f9:
d2:39:8e:25:4c:d9:a3:9a:2a:9f:2b:7e:95:4d:4d:
d8:dc:8d:3a:bd:7a:7d:50:3f:ef:f1:a9:8d:02:47:
28:cc:38:94:02:53:6b:84:f1:a3:4a:ab:ec:50:19:
af:38:e7:15:e2:d0:81:04:d1:32:0b:33:23:58:71:
11:77:51:19:b6:86:50:d6:b8:66:5d:56:a4:b0:56:
55:c4:9a:eb:fc:d2:bf:37:b4:ed:42:1b:08:0e:52:
ba:ea:e1:d6:85:ea:20:ed:b0:7c:c7:0f:19:63:7c:
70:31:22:8f:70:64:a8:ab:d4:e2:07:a8:ec:9c:1c:
18:7e:63:5c:92:92:cf:2a:2c:ef:60:60:d7:97:96:
df:72:ce:f3:e2:23:04:28:c8:e2:71:42:e6:46:4b:
b0:20:a4:ee:b1:47:5f:5f:d2:75:c1:27:22:f5:7d:
20:29:52:6f:ac:ef:a7:60:26:f7:4a:14:e4:0c:27:
53:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A2:1D:69:F7:15:45:28:C4:88:FD:6B:16:D6:2D:AE:4A:83:6D:D4
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/eqIdafcVRSjEiP1rFtYtrkqDbdQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
46:de:88:c2:f9:5c:fe:ec:cb:fb:c8:31:dd:1f:2d:00:d4:65:
ad:e2:29:7d:0a:2f:e2:4c:88:f0:25:74:81:39:d3:84:a5:df:
06:9d:fb:c4:5a:14:73:48:21:8b:61:2e:33:8b:2d:95:f4:ba:
43:c9:cf:f6:aa:91:9a:e5:55:65:cc:f5:95:9a:13:ec:09:bd:
54:df:99:2c:ae:c3:33:c4:70:80:70:19:92:14:1b:19:60:ce:
3c:b1:5d:1d:7c:4d:d4:c4:c3:fe:a0:a5:e6:64:c0:84:76:d8:
8f:aa:42:54:2b:97:d3:e2:75:30:92:86:e9:f7:4a:8a:e8:09:
18:cd:2b:4d:bf:03:e3:c1:d1:ce:ac:49:4f:98:a4:66:a5:ce:
84:01:df:9a:d2:bc:5b:c0:3f:11:ee:a4:e4:60:88:29:f8:bf:
ee:20:3f:38:7a:01:74:b7:63:69:15:d4:9d:f3:84:c5:56:04:
82:03:9f:4e:32:10:a9:6f:82:f5:35:12:05:48:b2:e3:d5:58:
1b:89:f3:74:bd:98:17:e5:a7:ca:04:5e:76:51:6d:bd:03:1a:
7f:2f:d3:53:93:07:7d:2d:5c:cc:b2:29:b9:8b:41:20:ad:dc:
70:24:00:3f:84:ab:22:37:9a:cb:b6:25:e5:9e:a0:8d:b7:55:
e2:7e:fb:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:48:59 2024 by rpki-client on console-ams.rpki-client.org