Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/flSXqqvHUn0ffVO-xxUdEGODy4g.roa
File: flSXqqvHUn0ffVO-xxUdEGODy4g.roa (raw, json)
Hash identifier: a2LvU8BS2nwF38mjXMnSyKfBDBaPr/kwYTjO86hwnd0=
Subject key identifier: 7E:54:97:AA:AB:C7:52:7D:1F:7D:53:BE:C7:15:1D:10:63:83:CB:88
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4B35
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/flSXqqvHUn0ffVO-xxUdEGODy4g.roa
Signing time: Sun 28 Apr 2024 20:53:32 +0000
ROA not before: Sun 28 Apr 2024 20:53:32 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19253 (0x4b35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 28 20:53:32 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=7E5497AAABC7527D1F7D53BEC7151D106383CB88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7b:3a:a2:57:66:7f:0c:aa:db:68:10:e1:0f:
b6:4b:10:da:6f:2c:cd:22:79:d0:86:5f:a7:56:ac:
35:46:06:c8:8a:63:24:7a:de:e6:1e:fc:2c:26:2c:
5a:fb:56:2d:1e:d8:66:c7:7f:a8:76:98:7b:6d:8e:
2d:a9:1c:c5:00:fc:d7:89:0c:19:1f:7a:dc:98:aa:
2f:69:69:c2:a7:b7:8f:42:45:48:a3:c6:1f:0e:67:
54:94:e9:32:51:9b:ac:eb:40:f4:b8:c0:97:a5:f9:
92:7d:a3:05:40:23:38:53:26:d1:c4:fa:6b:17:5d:
8b:83:99:e1:c7:0d:2e:aa:e8:79:f9:f4:cc:e3:3d:
28:17:06:50:b2:ea:d1:42:ee:37:77:91:52:7a:8b:
20:fb:70:40:f5:86:79:24:42:c7:27:5a:da:36:f8:
99:8a:5a:f6:20:a4:68:5f:6d:72:6d:c7:c6:e3:83:
5f:27:69:26:65:30:b2:3a:3f:88:01:39:74:df:89:
d8:d1:69:e5:bd:53:02:39:da:1b:82:bd:dd:d1:40:
a7:18:db:cd:93:47:4f:c7:b8:9e:36:3d:a7:ee:3d:
0f:71:a3:a5:11:7c:1a:5d:f1:e7:ac:d5:cb:51:cb:
6a:35:5d:ad:5d:54:cb:1d:bb:43:09:68:07:cf:fe:
c8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:54:97:AA:AB:C7:52:7D:1F:7D:53:BE:C7:15:1D:10:63:83:CB:88
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/flSXqqvHUn0ffVO-xxUdEGODy4g.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
9b:77:d7:fe:e3:f9:8f:f9:13:f2:02:f2:9d:f5:bf:96:07:1b:
67:78:d7:54:49:f6:6f:d7:2c:c4:ff:97:66:0b:70:51:d2:58:
29:71:bb:20:b2:40:58:6b:e9:7d:c9:56:45:3f:40:ee:e0:cd:
40:e5:53:c5:a5:9b:97:4f:6b:2f:de:e2:db:25:16:ad:17:8e:
0a:10:9d:4c:2b:1b:10:ac:1a:fc:79:e8:1a:05:ac:3c:05:21:
2c:2f:cf:5b:07:ec:2b:38:0d:e3:97:59:aa:3a:38:a0:21:48:
39:f4:db:f1:fc:fc:30:7f:02:4f:72:35:36:17:48:8a:93:6e:
47:16:fb:ef:ec:9a:0c:27:11:e6:88:56:56:14:99:41:fb:83:
7a:79:e2:ec:7e:08:48:b6:ca:d1:a4:90:ef:da:7c:5f:56:ca:
b0:67:21:af:84:35:a4:a1:26:d3:15:11:9f:06:43:48:8c:9d:
c0:56:f7:51:b1:82:e3:b6:88:7f:ed:96:67:7c:6d:b4:5a:ee:
ed:82:e3:e8:f0:73:91:be:24:3f:06:8d:2b:db:8e:1e:f6:38:
4b:1e:12:47:55:31:67:2d:69:38:d5:1e:2a:88:1b:9a:d6:05:
6c:bc:68:41:ca:f2:8d:7c:08:47:36:42:be:a1:7c:d7:c6:11:
93:94:09:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:39 2024 by rpki-client on console-fra.rpki-client.org