Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/fU27o36BR0bmKNiBvwfTVhKQPEc.roa
File: fU27o36BR0bmKNiBvwfTVhKQPEc.roa (raw, json)
Hash identifier: tBSJcH0pWtO3JBRn5NBBYYpSuaSHDwlnKLtR0g8bI+s=
Subject key identifier: 7D:4D:BB:A3:7E:81:47:46:E6:28:D8:81:BF:07:D3:56:12:90:3C:47
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 425D
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/fU27o36BR0bmKNiBvwfTVhKQPEc.roa
Signing time: Wed 17 Apr 2024 01:52:58 +0000
ROA not before: Wed 17 Apr 2024 01:52:58 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16989 (0x425d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 17 01:52:58 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=7D4DBBA37E814746E628D881BF07D35612903C47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:62:fa:a7:05:ba:89:8b:86:27:17:79:84:d3:
5a:ff:32:1e:86:ef:27:da:0a:80:11:81:6b:ac:6f:
bf:77:21:0e:08:00:ff:19:ba:71:db:64:61:b1:9b:
99:c3:a7:ea:b3:52:ca:eb:61:90:4a:76:84:be:d1:
80:eb:9c:52:b7:50:7e:2c:17:e5:66:4c:cc:b7:9c:
b1:8a:89:33:1a:44:18:b6:53:a1:cb:0b:a6:f7:be:
5f:d0:7d:08:f8:88:74:e2:49:3d:11:5f:e3:66:f0:
ef:c2:8e:95:f0:b6:6a:26:7f:01:2e:f6:e0:be:79:
ed:b6:92:4c:3b:f0:9b:79:02:17:ab:db:1f:c5:91:
4f:d4:88:29:6f:d2:80:67:93:76:89:ee:9c:82:55:
b3:37:44:c2:6a:f6:5e:6b:8b:0a:49:a7:bc:7b:c3:
42:2b:02:c3:9e:91:25:94:49:fc:0c:4e:7e:15:cb:
4c:8a:8a:8d:a6:30:ed:dc:f3:3a:cd:a4:0e:fe:e2:
eb:2f:3f:b3:54:cd:fe:e4:53:df:3d:1e:c7:c6:01:
aa:9f:88:b3:c0:f1:53:aa:93:f9:c6:7a:5f:e5:80:
56:b9:75:0b:93:93:d6:b6:35:13:79:71:f1:bb:4a:
25:82:e7:3a:fa:39:7a:10:b3:fa:87:83:30:03:93:
98:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:4D:BB:A3:7E:81:47:46:E6:28:D8:81:BF:07:D3:56:12:90:3C:47
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/fU27o36BR0bmKNiBvwfTVhKQPEc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
7c:a0:80:92:0b:be:65:15:48:75:c8:55:d8:09:a4:19:63:a2:
0e:11:5a:91:7f:9c:2f:df:a4:83:bf:36:9e:d3:4d:22:53:87:
67:51:76:c8:e3:39:d7:6a:d6:b1:73:70:69:d6:bd:74:7b:56:
34:45:98:e2:f7:2a:ea:03:a6:2f:e0:99:3e:c1:24:a0:1d:c1:
8c:69:19:55:0f:35:f5:4d:3f:77:f6:ff:a5:f0:c5:51:9f:b0:
59:ba:bf:a8:6d:b9:cf:f3:ee:95:3d:67:69:6c:e8:6f:0f:9d:
b4:21:64:c7:fd:ff:2e:58:9d:18:35:e1:ab:8e:60:48:7f:94:
36:ce:e1:40:5d:d6:84:7e:6d:15:e0:e2:63:b8:b6:8c:a9:c6:
12:2d:01:ff:9c:0c:fb:87:d3:e0:78:b4:dc:7c:dd:61:af:0c:
c9:92:24:6b:88:4f:4a:1b:b7:04:8b:ad:36:f3:1f:53:13:d6:
26:9e:42:21:e0:28:6d:87:82:f4:4b:f8:55:11:13:64:73:f1:
26:67:62:66:88:ce:1f:05:cc:48:48:a9:08:66:0f:df:8f:fc:
55:da:a6:a4:1d:6b:02:c3:47:93:2b:de:bb:51:29:35:38:8d:
c3:18:66:5f:4e:21:65:eb:5a:2e:97:db:a4:8d:02:2a:e4:63:
00:e2:cb:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:00 2024 by rpki-client on console-ams.rpki-client.org