Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/g5w_0q4qeyb5ZhTfgzielPzVqy4.roa
File: g5w_0q4qeyb5ZhTfgzielPzVqy4.roa (raw, json)
Hash identifier: Y3yB+7U1cQzAApl5OCd04C2jyboj2VMvY9qirisjTBI=
Subject key identifier: 83:9C:3F:D2:AE:2A:7B:26:F9:66:14:DF:83:38:9E:94:FC:D5:AB:2E
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4D89
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/g5w_0q4qeyb5ZhTfgzielPzVqy4.roa
Signing time: Wed 01 May 2024 23:23:41 +0000
ROA not before: Wed 01 May 2024 23:23:41 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19849 (0x4d89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 1 23:23:41 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=839C3FD2AE2A7B26F96614DF83389E94FCD5AB2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:28:90:9d:4c:7d:e7:06:f8:b9:b8:19:88:21:
30:16:83:f2:3f:ca:92:2f:2c:26:00:51:c8:e3:af:
00:83:e1:59:d0:c0:85:10:91:56:3c:ea:66:5d:91:
b5:d8:70:81:7f:25:13:80:be:b6:7f:6c:c0:75:39:
ea:dc:34:d8:cd:99:3e:49:73:76:66:5f:59:64:90:
60:30:8e:20:99:e4:71:82:f2:ec:59:3c:11:2d:1f:
39:80:f8:a1:62:b8:11:c6:af:cd:9b:f5:a0:33:ae:
b5:51:8e:69:cb:57:b4:ef:45:d0:99:ae:f5:b4:6b:
1f:27:cb:06:33:74:5e:66:c8:3a:14:d0:17:a6:57:
02:4a:8f:67:91:9f:10:59:96:c5:ab:ef:e3:5d:ba:
80:2a:97:6d:31:ff:03:fa:bd:79:fc:4f:fb:16:8e:
d8:3b:f4:e3:d5:c3:d1:8c:28:2b:1b:7f:de:af:bf:
ac:6f:9f:29:79:64:9a:04:60:c7:02:e4:2c:76:15:
7a:88:e3:9e:63:cc:bd:59:8c:78:16:74:de:e9:ed:
0d:e5:54:72:7f:1a:de:dc:49:c2:97:d1:a0:31:59:
70:f3:be:f6:6c:0c:48:4a:d9:2a:32:0f:91:55:83:
1a:87:e6:33:57:d9:e9:76:fc:9e:c6:c8:c0:13:54:
b4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:9C:3F:D2:AE:2A:7B:26:F9:66:14:DF:83:38:9E:94:FC:D5:AB:2E
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/g5w_0q4qeyb5ZhTfgzielPzVqy4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
60:16:90:54:06:c1:9d:f3:fa:8d:3a:50:bb:a3:d0:96:8a:e9:
52:a0:18:f5:b8:57:b8:1f:99:de:72:a0:78:48:8f:0d:97:e8:
2d:30:77:b6:b2:13:cc:f2:32:cb:f9:51:df:b2:2d:8a:68:22:
d6:f7:03:34:f4:3d:32:52:48:f4:69:07:f0:41:d5:31:99:65:
6b:72:af:bb:e3:55:1d:32:54:9d:a7:35:57:4d:f0:dd:a2:76:
44:f5:d1:19:c4:3d:35:9d:a9:6f:f1:a4:46:de:8a:f9:b0:14:
f0:d3:ea:35:e6:e2:82:5c:f6:41:42:78:cc:d6:d6:fe:57:24:
95:4a:fb:75:24:5c:d1:db:8a:73:23:26:a0:26:ad:15:ec:ab:
0b:4e:93:d9:94:e9:18:c7:28:9e:17:eb:8b:7b:9f:8c:d7:64:
c8:26:57:08:ae:e5:9b:29:e7:a1:fd:b3:a3:6c:42:27:7d:f7:
0d:ea:b9:4e:15:9e:cf:8e:29:c8:6b:f3:6a:18:5a:b7:34:d1:
3b:3a:e1:5b:dc:c7:82:a5:c4:86:9c:54:e1:9e:18:15:b5:27:
b6:7b:41:dd:a7:d0:55:74:fa:fd:a1:23:6e:be:a6:ef:1b:c2:
32:ce:74:dc:31:8f:57:2f:9c:84:82:b4:0e:82:c3:3c:57:68:
81:cf:dd:44
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICTYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MDEy
MzIzNDFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDgzOUMzRkQyQUUyQTdC
MjZGOTY2MTRERjgzMzg5RTk0RkNENUFCMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2KJCdTH3nBvi5uBmIITAWg/I/ypIvLCYAUcjjrwCD4VnQwIUQ
kVY86mZdkbXYcIF/JROAvrZ/bMB1OercNNjNmT5Jc3ZmX1lkkGAwjiCZ5HGC8uxZ
PBEtHzmA+KFiuBHGr82b9aAzrrVRjmnLV7TvRdCZrvW0ax8nywYzdF5myDoU0Bem
VwJKj2eRnxBZlsWr7+NduoAql20x/wP6vXn8T/sWjtg79OPVw9GMKCsbf96vv6xv
nyl5ZJoEYMcC5Cx2FXqI455jzL1ZjHgWdN7p7Q3lVHJ/Gt7cScKX0aAxWXDzvvZs
DEhK2SoyD5FVgxqH5jNX2el2/J7GyMATVLT3AgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQUg5w/0q4qeyb5ZhTfgzielPzVqy4wHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L2c1d18wcTRxZXliNVpo
VGZnemllbFB6VnF5NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAGAWkFQGwZ3z+o06
ULuj0JaK6VKgGPW4V7gfmd5yoHhIjw2X6C0wd7ayE8zyMsv5Ud+yLYpoItb3AzT0
PTJSSPRpB/BB1TGZZWtyr7vjVR0yVJ2nNVdN8N2idkT10RnEPTWdqW/xpEbeivmw
FPDT6jXm4oJc9kFCeMzW1v5XJJVK+3UkXNHbinMjJqAmrRXsqwtOk9mU6RjHKJ4X
64t7n4zXZMgmVwiu5Zsp56H9s6NsQid99w3quU4Vns+OKchr82oYWrc00Ts64Vvc
x4KlxIacVOGeGBW1J7Z7Qd2n0FV0+v2hI26+pu8bwjLOdNwxj1cvnISCtA6CwzxX
aIHP3UQ=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:45:50 2025 by rpki-client