Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/fdl7ozVHsud3DJKRW3hOFoGgaVw.roa
File: fdl7ozVHsud3DJKRW3hOFoGgaVw.roa (raw, json)
Hash identifier: ceLwkjv/ALFAq7KLoyp/Hh1EcRmvPm76xQADuxXhpDg=
Subject key identifier: 7D:D9:7B:A3:35:47:B2:E7:77:0C:92:91:5B:78:4E:16:81:A0:69:5C
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 538D
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/fdl7ozVHsud3DJKRW3hOFoGgaVw.roa
Signing time: Thu 09 May 2024 23:54:04 +0000
ROA not before: Thu 09 May 2024 23:54:04 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21389 (0x538d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 9 23:54:04 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=7DD97BA33547B2E7770C92915B784E1681A0695C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:88:15:d3:88:ea:c0:c1:25:e0:7b:29:0d:08:
d8:d0:e5:84:21:30:61:80:d2:1e:43:33:3a:5e:51:
87:e3:41:66:53:e3:1f:fd:bf:23:dc:95:db:51:71:
1c:ff:4c:4e:89:48:6e:f4:c4:c7:11:f6:16:ef:de:
44:e5:7d:7c:ee:4f:a2:a9:02:e4:6a:a5:00:54:83:
cf:cb:9e:91:e6:fd:aa:dd:99:3c:ed:5f:c5:fb:ec:
58:82:09:f1:d3:8b:1d:b7:c8:85:9a:1d:fe:31:4e:
1b:7e:46:c3:dd:4e:4c:93:03:56:1d:3d:97:41:4a:
67:23:4d:90:66:50:68:e1:0b:c3:69:c8:81:80:fb:
68:b8:4a:2b:b8:a4:38:ea:aa:48:b5:e3:a1:6a:6a:
04:9f:c5:21:d4:9d:c3:43:11:ed:71:61:57:f6:eb:
f5:32:2e:5e:62:13:cf:f0:83:78:a3:7d:35:2f:2f:
9e:e8:f8:2d:5a:02:57:57:16:55:c5:af:4c:31:f6:
ee:48:fd:35:c6:75:d8:f4:eb:52:05:d3:5c:21:26:
6f:53:ff:cf:cb:d9:01:6c:b9:1b:e4:85:80:1f:93:
d4:79:a7:8c:0a:78:6b:89:23:38:2a:73:98:23:de:
35:b3:22:70:76:7c:42:6c:8c:fa:00:84:8a:7c:70:
91:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D9:7B:A3:35:47:B2:E7:77:0C:92:91:5B:78:4E:16:81:A0:69:5C
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/fdl7ozVHsud3DJKRW3hOFoGgaVw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
af:18:1a:d3:24:e8:a2:bb:31:cb:8a:16:de:2d:29:48:3c:99:
bf:09:7f:26:16:20:ca:31:fd:f3:98:9f:39:ce:6c:fb:5e:e8:
02:fa:f8:ce:34:84:03:70:19:2c:1a:e3:36:34:57:48:93:8b:
70:bb:d9:b6:48:d5:d8:ae:a6:f1:44:65:2d:10:b7:e8:34:cd:
0e:89:a0:b9:82:b5:e3:52:74:ea:32:66:04:54:36:c4:4a:92:
53:e6:2d:03:5a:47:f2:be:64:b1:2c:40:e5:48:59:4e:af:9b:
6f:e6:75:1d:9e:5e:dd:c6:cb:da:49:82:7c:dd:06:1d:e3:c5:
a9:63:c6:9b:a7:01:06:28:c7:93:b7:30:77:52:2c:b3:a0:eb:
06:1a:3e:45:10:85:15:d6:eb:fb:0b:7a:ba:81:da:b0:be:9b:
e5:2e:a9:ab:0a:8c:fe:9f:95:0c:fe:71:4a:91:21:0a:8c:08:
1c:ba:ba:21:82:49:f1:0a:bc:a7:76:82:56:ea:b2:92:e5:dc:
ea:13:49:75:02:9d:dc:48:e3:6d:36:df:0c:b4:2d:a3:d3:ed:
3c:c8:17:ec:05:e7:c8:79:e0:f1:37:4a:81:78:4f:72:61:be:
06:4a:72:4a:20:d9:04:88:5e:46:4e:4a:01:28:22:15:3d:5c:
c1:c3:e6:9a
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICU40wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MDky
MzU0MDRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDdERDk3QkEzMzU0N0Iy
RTc3NzBDOTI5MTVCNzg0RTE2ODFBMDY5NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFiBXTiOrAwSXgeykNCNjQ5YQhMGGA0h5DMzpeUYfjQWZT4x/9
vyPcldtRcRz/TE6JSG70xMcR9hbv3kTlfXzuT6KpAuRqpQBUg8/LnpHm/ardmTzt
X8X77FiCCfHTix23yIWaHf4xTht+RsPdTkyTA1YdPZdBSmcjTZBmUGjhC8NpyIGA
+2i4Siu4pDjqqki146FqagSfxSHUncNDEe1xYVf26/UyLl5iE8/wg3ijfTUvL57o
+C1aAldXFlXFr0wx9u5I/TXGddj061IF01whJm9T/8/L2QFsuRvkhYAfk9R5p4wK
eGuJIzgqc5gj3jWzInB2fEJsjPoAhIp8cJGvAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQUfdl7ozVHsud3DJKRW3hOFoGgaVwwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L2ZkbDdvelZIc3VkM0RK
S1JXM2hPRm9HZ2FWdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAK8YGtMk6KK7McuK
Ft4tKUg8mb8JfyYWIMox/fOYnznObPte6AL6+M40hANwGSwa4zY0V0iTi3C72bZI
1diupvFEZS0Qt+g0zQ6JoLmCteNSdOoyZgRUNsRKklPmLQNaR/K+ZLEsQOVIWU6v
m2/mdR2eXt3Gy9pJgnzdBh3jxaljxpunAQYox5O3MHdSLLOg6wYaPkUQhRXW6/sL
erqB2rC+m+UuqasKjP6flQz+cUqRIQqMCBy6uiGCSfEKvKd2glbqspLl3OoTSXUC
ndxI42023wy0LaPT7TzIF+wF58h54PE3SoF4T3JhvgZKckog2QSIXkZOSgEoIhU9
XMHD5po=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:38 2024 by rpki-client on console-fra.rpki-client.org