Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/ie2k0-50SUehcCayxqxlU8MRLbI.roa
File: ie2k0-50SUehcCayxqxlU8MRLbI.roa (raw, json)
Hash identifier: Gw0eEVU6Ezw0TeOS7QR6PARSNp737R1KbsE7xZr39+U=
Subject key identifier: 89:ED:A4:D3:EE:74:49:47:A1:70:26:B2:C6:AC:65:53:C3:11:2D:B2
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 44CD
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/ie2k0-50SUehcCayxqxlU8MRLbI.roa
Signing time: Sat 20 Apr 2024 07:53:13 +0000
ROA not before: Sat 20 Apr 2024 07:53:13 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17613 (0x44cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 20 07:53:13 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=89EDA4D3EE744947A17026B2C6AC6553C3112DB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ec:6c:d9:4f:c4:2e:f9:c7:61:2d:94:42:a4:
9b:25:2b:b8:3f:53:f3:3c:37:70:06:ef:95:85:0b:
ab:d6:ca:62:fb:7c:73:9b:18:87:f5:17:66:04:1e:
fb:c2:f2:20:0b:f1:36:45:8a:d8:4a:9c:df:45:85:
45:5f:11:0d:41:0a:90:d4:0f:aa:4d:04:7e:17:bd:
b8:c0:fc:f2:c0:79:d9:b4:d5:dc:5a:2b:9b:fc:2a:
34:5a:77:1e:67:8a:dd:69:1c:fb:bc:7b:9d:41:b7:
0d:99:d1:66:98:d0:9a:2f:99:a6:83:03:28:09:46:
c0:fe:3e:52:de:6c:6d:3c:ac:52:b8:d2:42:ed:98:
a9:9b:0a:28:9e:17:2f:00:da:69:6c:c8:18:dd:58:
4f:72:cd:db:8b:be:00:f1:57:a0:bc:c9:c4:5e:69:
7b:65:23:ba:54:29:79:fc:7b:20:73:e3:f6:7f:68:
a9:fc:8e:f2:fb:a4:32:7d:64:1a:e2:40:49:fd:54:
f5:17:e5:8e:f8:73:48:ac:80:44:74:1b:91:a0:1c:
ca:34:6f:59:a7:34:3c:99:99:b4:00:35:f2:c8:eb:
5f:3c:d3:21:6d:df:27:fa:c8:ae:66:65:10:62:98:
89:6c:a2:d1:5f:5f:33:5b:46:9b:c5:40:26:bc:3b:
b3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:ED:A4:D3:EE:74:49:47:A1:70:26:B2:C6:AC:65:53:C3:11:2D:B2
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/ie2k0-50SUehcCayxqxlU8MRLbI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
36:07:75:4a:2b:a9:7d:3e:57:3b:5f:f6:02:ed:2d:07:42:39:
02:68:b3:83:d0:72:1d:46:20:e8:fd:00:93:77:bd:dd:2a:09:
c0:c2:3b:ea:82:b7:5e:8a:9a:4a:ee:22:f4:c6:e3:ec:5f:a1:
a0:1f:8c:2f:fe:67:f8:77:27:65:7d:0d:17:9d:ce:de:85:97:
f1:18:ea:a1:9e:6c:df:4e:02:b4:7f:2d:f9:12:8c:59:1c:81:
d4:54:27:b8:e5:77:28:20:bd:8a:75:40:1f:c3:43:3f:9a:b7:
eb:c5:d9:88:94:c5:d1:e7:fe:bb:8c:83:87:18:5e:ee:54:02:
01:c0:58:6d:2a:00:5f:35:cb:4d:81:4e:0d:8f:9a:94:fd:ee:
07:49:a3:18:3b:b1:c9:b3:a4:58:8e:89:38:2a:cb:8f:ce:62:
42:90:d5:e6:57:6c:c9:74:58:5b:be:63:02:36:99:d6:ab:aa:
37:ec:3e:16:d3:21:83:ae:c3:0d:b2:eb:cd:30:80:bb:1f:6b:
aa:7b:6d:53:55:22:c7:84:8f:2a:f7:45:44:11:8b:fd:77:2b:
7d:38:40:bc:a9:c4:73:60:13:eb:18:96:14:5b:e3:ab:74:fd:
e7:f8:82:06:e0:bd:d1:03:34:18:b0:16:70:48:0e:2b:bd:7b:
8d:d7:a8:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:41 2024 by rpki-client on console-fra.rpki-client.org