Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/gY3SJl37CjQ4Wij2A7NuTKVsBd8.roa
File: gY3SJl37CjQ4Wij2A7NuTKVsBd8.roa (raw, json)
Hash identifier: WN85adUp5UJMmkccA9JjQGsKpOxrFAMrh92GXsoKhtQ=
Subject key identifier: 81:8D:D2:26:5D:FB:0A:34:38:5A:28:F6:03:B3:6E:4C:A5:6C:05:DF
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 580D
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/gY3SJl37CjQ4Wij2A7NuTKVsBd8.roa
Signing time: Wed 15 May 2024 23:54:23 +0000
ROA not before: Wed 15 May 2024 23:54:23 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22541 (0x580d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 15 23:54:23 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=818DD2265DFB0A34385A28F603B36E4CA56C05DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:12:5f:fc:48:5a:82:b4:81:03:31:ad:7b:52:
9c:c2:bb:94:9f:6a:ed:66:50:8e:2f:3b:c0:5b:a3:
65:3b:71:ab:bc:e4:e9:18:73:5d:de:7f:79:b5:76:
54:3f:0a:1b:54:16:7a:a8:ff:ea:85:70:63:d0:36:
db:7a:a3:59:87:f0:f1:a8:7e:f0:1d:45:53:9c:8c:
08:15:1b:89:01:1a:2d:ef:74:bf:0a:df:4a:3d:dd:
0b:96:84:0f:1d:d1:16:89:4d:3e:71:ef:8d:cb:5e:
ad:2e:a8:e8:3b:f1:b1:fd:7b:81:95:5b:6e:c7:8e:
2a:09:5b:3a:d0:85:da:3b:98:e5:6a:d6:51:7a:6a:
e8:ea:6d:7c:f8:7d:d8:23:46:ed:36:0e:fa:7b:c7:
a4:ad:3f:02:dd:d2:b6:06:e8:9b:80:dd:63:9a:32:
c1:21:7b:83:af:cf:71:d5:c9:af:31:02:5e:c7:e7:
fc:18:c4:ae:a9:48:5d:57:71:74:46:56:04:e7:91:
34:72:82:b5:3d:8c:23:84:24:d2:77:16:4c:59:f4:
63:af:26:db:ff:3f:a1:66:ab:65:2b:4e:0e:51:b4:
7b:bd:30:a5:5c:52:c6:d9:f2:9b:1e:7f:c5:92:87:
cf:b8:69:cf:a3:81:0f:f7:84:74:ae:22:50:61:1c:
ac:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:8D:D2:26:5D:FB:0A:34:38:5A:28:F6:03:B3:6E:4C:A5:6C:05:DF
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/gY3SJl37CjQ4Wij2A7NuTKVsBd8.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
2b:db:d4:a4:44:85:48:92:b1:8f:b3:28:61:80:fd:60:ea:52:
3a:e5:03:d2:20:ad:2e:3b:90:fb:02:f1:2c:71:57:00:35:17:
79:5f:d4:69:ec:83:22:5b:9d:c6:52:72:f7:77:80:76:d5:73:
cc:87:98:b7:a9:12:bd:62:72:59:eb:b9:5b:63:8f:c8:11:ed:
f1:9e:fc:c3:be:0a:46:e2:88:1c:a0:0b:df:05:4f:3f:0b:7b:
73:f9:b9:64:60:cd:28:5c:43:1c:9c:ad:b4:87:55:bc:fb:6b:
a3:96:22:de:b1:79:db:dd:9e:61:60:ea:18:81:9b:e6:20:c9:
a8:b0:ec:b8:fd:df:ad:3d:4e:5d:6a:1e:f6:33:7b:c2:7e:00:
c4:5e:68:fc:7f:86:a0:20:a2:4f:a0:4e:9c:17:82:2b:93:6a:
f0:b5:09:d0:d3:40:b6:0b:d8:49:38:e4:d7:26:95:8b:d0:0d:
a9:ca:1c:3e:b7:00:71:9d:29:b9:1f:21:9f:bf:8b:15:f3:26:
d6:ff:43:75:14:a0:80:a6:90:1f:8e:68:d6:1f:07:6f:a2:8d:
30:e5:87:bb:63:11:a7:6f:bb:8e:85:4f:bf:2e:7e:8e:c3:9b:
b2:5a:35:9d:3e:de:69:2f:3e:2e:35:64:19:da:9c:1c:b1:bc:
b1:1e:1d:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:39 2024 by rpki-client on console-fra.rpki-client.org