Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/fxUoKdpJQEKOkVQHVux4IXN_c1Y.roa
File: fxUoKdpJQEKOkVQHVux4IXN_c1Y.roa (raw, json)
Hash identifier: I81i7JROmxRx8uIYweDAWom9MOLJQ7u/wGlfWZzVwLY=
Subject key identifier: 7F:15:28:29:DA:49:40:42:8E:91:54:07:56:EC:78:21:73:7F:73:56
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4B75
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/fxUoKdpJQEKOkVQHVux4IXN_c1Y.roa
Signing time: Mon 29 Apr 2024 04:53:29 +0000
ROA not before: Mon 29 Apr 2024 04:53:29 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19317 (0x4b75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 29 04:53:29 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=7F152829DA4940428E91540756EC7821737F7356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:91:fc:2a:b8:c4:d1:8f:1e:9d:8e:8f:ae:94:
f3:c8:67:46:13:a4:a5:67:45:cc:99:06:21:04:4d:
02:e4:5d:1a:eb:c8:b3:3f:f4:19:56:7f:76:0f:62:
bd:09:61:99:47:6a:91:a2:ba:d7:c2:7e:67:7c:88:
f2:ba:ae:de:c1:6a:4f:d4:35:bf:2f:a9:e5:b2:81:
e0:86:e2:d5:d5:0b:49:3f:7b:bb:ba:c9:93:aa:c7:
f2:77:4b:1e:33:11:e7:e9:0e:60:dc:7b:9f:c3:25:
cc:c3:df:f9:93:60:b1:6f:2d:89:2b:77:f8:c7:7c:
df:5e:db:a4:e1:c2:af:90:f1:3e:e2:66:9b:46:76:
5e:d9:56:25:ae:68:5c:f0:ad:ab:c2:47:fc:ba:fb:
f3:6b:7b:7f:70:47:cd:b2:05:5d:a0:37:83:a2:52:
d5:73:1e:14:73:2c:83:a9:ab:47:b9:88:fb:6e:a8:
fe:c9:3d:ca:d2:d5:b4:7d:93:f1:36:ce:77:5d:a0:
84:47:6e:8a:df:11:13:da:26:e8:5c:05:c3:80:a0:
58:ba:d4:5d:eb:01:0f:0d:75:9d:b6:3e:38:3b:c8:
a2:e7:08:d0:49:99:e6:65:8d:2a:50:74:b8:76:ca:
eb:a2:20:c8:5e:95:58:b5:d3:ed:8d:c4:0f:d1:06:
e3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:15:28:29:DA:49:40:42:8E:91:54:07:56:EC:78:21:73:7F:73:56
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/fxUoKdpJQEKOkVQHVux4IXN_c1Y.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
69:a1:b1:2a:2f:b9:ee:41:99:8d:4d:56:6b:3a:34:62:19:56:
62:94:97:d6:0c:0f:3e:20:a6:e3:1a:42:48:c8:9c:d4:5c:95:
c7:eb:95:1f:80:db:e7:47:78:b9:fe:4d:9b:a2:99:da:1b:d1:
17:0e:72:e5:ba:fb:31:0c:07:a3:5d:3c:8b:0b:c5:5b:1f:ba:
10:ee:07:df:f0:3b:50:31:e8:07:6a:55:d7:0a:a5:b5:6a:e3:
55:13:7f:e0:4c:ce:ad:49:b8:a4:39:12:b4:b4:9f:7d:f5:9a:
52:cf:71:7c:b8:da:62:b8:dd:ef:6a:f6:59:bd:8d:21:57:f7:
ca:b9:a9:72:d7:4c:f5:09:24:7f:6e:fd:88:e5:00:84:a4:a8:
f0:64:ee:1c:4b:ef:e6:82:cd:49:7c:1a:b6:88:5b:b2:71:e0:
fb:5f:a7:76:22:ec:d8:9f:df:d0:4d:56:c3:51:0b:85:55:da:
76:b5:10:14:e6:ca:7d:41:36:6d:2a:dd:43:ea:e3:1b:25:66:
db:ef:b0:83:80:be:bc:d9:b8:65:7f:18:02:9a:0d:52:8b:53:
80:93:8b:96:c9:ac:4c:40:96:67:ee:48:dd:bf:f0:18:a7:75:
ea:62:b4:7b:01:06:3e:93:d9:5b:a8:15:99:84:28:ac:52:3e:
e2:40:58:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:39 2024 by rpki-client on console-fra.rpki-client.org