Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/g0eAFl7AmlPafoBzqU72UxP-Q_A.roa
File: g0eAFl7AmlPafoBzqU72UxP-Q_A.roa (raw, json)
Hash identifier: SFjTh/Mdhr0KdOWUW7H76glfC+LsSHkTL3iWhRYNw1g=
Subject key identifier: 83:47:80:16:5E:C0:9A:53:DA:7E:80:73:A9:4E:F6:53:13:FE:43:F0
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 51F6
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/g0eAFl7AmlPafoBzqU72UxP-Q_A.roa
Signing time: Tue 07 May 2024 20:54:11 +0000
ROA not before: Tue 07 May 2024 20:54:11 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.236.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20982 (0x51f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 7 20:54:11 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=834780165EC09A53DA7E8073A94EF65313FE43F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e3:81:41:d0:16:b0:91:38:d4:9d:83:5a:a9:
df:6f:fd:2b:2e:77:dd:3a:e7:f2:32:20:a2:dc:56:
db:1f:69:e8:25:92:5e:61:04:1e:30:38:39:40:f3:
ec:06:68:c6:94:57:be:02:b1:d7:00:1c:3e:96:aa:
7e:06:47:d9:48:cb:39:b3:ea:14:e8:be:61:af:ff:
32:db:86:2c:f0:38:3f:86:75:f4:14:f2:22:6a:94:
02:b3:71:f0:13:a2:6f:07:be:5b:50:3c:11:0f:82:
83:75:98:a6:db:22:be:16:7a:82:b4:f9:89:c3:10:
5d:b6:e7:02:21:a9:fb:91:91:ae:de:35:54:ed:ab:
18:88:e9:34:69:36:c8:5f:7f:f8:df:40:49:5c:44:
82:70:dd:eb:e5:2e:db:b2:2b:ca:04:32:12:be:c2:
ca:5e:29:16:5c:27:7a:c2:e5:2d:83:07:33:66:c8:
ee:23:07:e3:1e:1e:f6:d7:5f:ca:12:43:5b:17:ff:
7b:db:e0:96:4b:a9:9d:53:38:9e:a1:6c:e6:9b:98:
e6:b2:71:82:27:76:f6:00:b8:22:9c:53:20:a5:10:
36:af:46:f6:a6:a1:1d:79:24:c4:41:60:c1:5a:5d:
ec:1c:f0:3a:ad:90:c0:11:3b:89:67:f8:de:f1:79:
64:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:47:80:16:5E:C0:9A:53:DA:7E:80:73:A9:4E:F6:53:13:FE:43:F0
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/g0eAFl7AmlPafoBzqU72UxP-Q_A.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.236.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9c:88:59:94:8a:c4:7b:19:c5:cf:31:73:03:3e:3d:b7:fa:fc:
c7:b3:fb:96:28:2d:8f:7b:63:d6:47:79:37:8b:01:bf:2a:52:
8c:a8:17:fb:51:3e:0a:d1:66:98:43:8b:64:50:db:16:64:4c:
4b:7e:6e:cb:4a:84:fb:f0:17:fe:24:14:80:09:3f:a0:5a:fe:
0e:7d:fc:f5:ba:5a:7c:8e:9a:06:d3:a5:87:3f:08:a5:6a:bd:
d8:86:55:16:d2:dd:24:d2:ce:dc:91:6d:ef:9d:64:64:65:64:
fa:7e:a9:3b:c6:95:1b:6e:07:19:dd:96:90:b4:44:0e:b3:ad:
99:39:2f:0a:af:33:06:44:fc:d3:b8:5d:75:6d:17:da:f7:df:
f8:17:8e:ec:7e:87:39:db:f3:8e:ef:eb:d1:13:54:0e:29:e0:
5f:36:0e:0d:04:41:84:87:31:bb:50:94:b9:20:24:8d:08:d9:
0d:64:f6:0d:5d:b3:13:8e:ed:a3:64:e2:74:07:4e:96:fc:5f:
4b:de:12:32:fd:f0:ab:42:70:2f:2b:02:11:cd:1c:d4:95:63:
17:6e:ad:b7:db:52:b0:5a:84:98:52:40:63:2a:79:94:63:b0:
fd:23:e1:83:77:f3:da:a4:0d:f2:96:2a:c5:ad:0f:37:4b:81:
0c:9f:0b:e1
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICUfYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MDcy
MDU0MTFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDgzNDc4MDE2NUVDMDlB
NTNEQTdFODA3M0E5NEVGNjUzMTNGRTQzRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDk44FB0BawkTjUnYNaqd9v/Ssud9065/IyIKLcVtsfaeglkl5h
BB4wODlA8+wGaMaUV74CsdcAHD6Wqn4GR9lIyzmz6hTovmGv/zLbhizwOD+GdfQU
8iJqlAKzcfATom8HvltQPBEPgoN1mKbbIr4WeoK0+YnDEF225wIhqfuRka7eNVTt
qxiI6TRpNshff/jfQElcRIJw3evlLtuyK8oEMhK+wspeKRZcJ3rC5S2DBzNmyO4j
B+MeHvbXX8oSQ1sX/3vb4JZLqZ1TOJ6hbOabmOaycYIndvYAuCKcUyClEDavRvam
oR15JMRBYMFaXewc8DqtkMARO4ln+N7xeWSzAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUg0eAFl7AmlPafoBzqU72UxP+Q/AwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L2cwZUFGbDdBbWxQYWZv
QnpxVTcyVXhQLVFfQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwAr7DANBgkqhkiG9w0BAQsFAAOCAQEAnIhZlIrEexnFzzFzAz49t/r8x7P7ligt
j3tj1kd5N4sBvypSjKgX+1E+CtFmmEOLZFDbFmRMS35uy0qE+/AX/iQUgAk/oFr+
Dn389bpafI6aBtOlhz8IpWq92IZVFtLdJNLO3JFt751kZGVk+n6pO8aVG24HGd2W
kLREDrOtmTkvCq8zBkT807hddW0X2vff+BeO7H6HOdvzju/r0RNUDingXzYODQRB
hIcxu1CUuSAkjQjZDWT2DV2zE47to2TidAdOlvxfS94SMv3wq0JwLysCEc0c1JVj
F26tt9tSsFqEmFJAYyp5lGOw/SPhg3fz2qQN8pYqxa0PN0uBDJ8L4Q==
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:24:34 2025 by rpki-client