Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/g_SZsYx9gaT0mQIP5LCHNO5WdGU.roa
File: g_SZsYx9gaT0mQIP5LCHNO5WdGU.roa (raw, json)
Hash identifier: mwNs3xrh2R7PuBgWQzSmzt45vZHj2+59TiJE7DREPVA=
Subject key identifier: 83:F4:99:B1:8C:7D:81:A4:F4:99:02:0F:E4:B0:87:34:EE:56:74:65
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3B61
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/g_SZsYx9gaT0mQIP5LCHNO5WdGU.roa
Signing time: Sun 07 Apr 2024 18:22:34 +0000
ROA not before: Sun 07 Apr 2024 18:22:34 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15201 (0x3b61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 7 18:22:34 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=83F499B18C7D81A4F499020FE4B08734EE567465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ee:75:36:16:9b:64:f8:53:eb:88:39:e3:98:
65:fd:17:cb:e3:56:00:25:85:8c:f6:6d:3e:19:57:
95:5e:03:70:29:91:70:0b:47:58:d4:e1:34:8e:f5:
2b:24:bf:73:5b:4a:ad:a1:b9:3d:f8:b5:26:0f:81:
40:86:6f:24:9c:6b:32:f6:a2:38:03:24:b5:d9:b2:
89:39:ba:2e:69:62:2a:cb:68:32:ac:d9:b2:54:a8:
ca:f7:37:3e:03:fe:c8:9f:9e:44:b9:c7:27:74:eb:
0f:f9:a8:c5:e4:92:b9:49:3b:e7:8f:da:93:41:57:
95:b2:47:7d:2f:2e:7a:2e:fc:b3:7b:91:b1:8a:69:
10:c2:b6:12:89:f0:6a:44:61:77:ec:97:2b:5f:d9:
40:a0:dc:e3:17:d1:a4:cf:c1:50:da:d0:b7:10:f4:
b1:40:a8:32:a1:bc:2e:92:d9:c7:94:d1:c3:64:84:
79:00:ba:ca:cc:3b:f8:7d:c3:4d:b7:51:45:b4:ab:
4a:2b:83:32:ce:2e:6c:7d:e4:11:a2:a2:8e:4e:8d:
2c:18:e5:7b:42:8b:71:69:ff:2e:2c:43:b2:54:6f:
72:19:67:b5:7c:3b:b0:35:33:46:8a:02:d3:2c:c5:
c6:8f:5c:ab:28:9a:c4:71:8b:3a:dd:2b:d7:15:e7:
24:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:F4:99:B1:8C:7D:81:A4:F4:99:02:0F:E4:B0:87:34:EE:56:74:65
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/g_SZsYx9gaT0mQIP5LCHNO5WdGU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
22:a3:6a:fe:1d:cf:3f:db:1f:8a:c9:d4:97:1f:b8:2a:c6:b5:
b6:42:b3:63:fa:0b:d3:13:a2:58:52:d7:f3:48:92:5d:aa:c9:
89:45:54:59:bd:b8:07:2b:26:7c:33:57:66:fc:3c:19:0f:77:
58:b6:7f:78:68:32:c0:2f:e7:50:e1:c7:06:cd:d2:97:c6:49:
2c:3b:85:f1:57:09:51:b9:f1:c8:70:62:3e:42:32:fb:eb:0e:
58:cb:68:7c:f0:75:dc:4f:3d:f7:0d:1e:8b:d7:68:39:7c:01:
fc:b8:e2:29:d4:47:71:04:3a:3f:0f:d2:a0:10:da:58:a2:33:
59:96:06:37:9d:7d:a5:ef:10:96:2b:bf:21:77:c4:de:1d:e9:
77:65:a3:b6:f8:fa:22:c6:d2:32:11:6e:ca:53:bf:5a:2e:f9:
aa:22:34:cc:7d:af:b3:5e:48:39:07:cd:28:e3:83:6f:d8:2a:
1a:45:7d:a3:94:01:3d:f2:c1:05:ad:cd:e5:85:24:c3:da:39:
33:68:19:92:97:38:20:b6:b0:ef:1d:eb:e0:d5:bb:7a:ee:df:
a4:28:ce:ca:2a:67:60:f7:3a:5e:97:18:9d:ba:8c:11:b0:16:
f4:4b:34:ba:1b:47:51:c6:4b:b9:a9:0e:ca:48:5a:7d:23:eb:
ce:79:3e:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:39 2024 by rpki-client on console-fra.rpki-client.org