Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/jqwtwIpxUjGY9r7dUQkMX-zrDXw.roa
File: jqwtwIpxUjGY9r7dUQkMX-zrDXw.roa (raw, json)
Hash identifier: dxjOXoe259Sy66K7IwECfxOObAls3iL7H50zAoE9xyg=
Subject key identifier: 8E:AC:2D:C0:8A:71:52:31:98:F6:BE:DD:51:09:0C:5F:EC:EB:0D:7C
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4E49
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/jqwtwIpxUjGY9r7dUQkMX-zrDXw.roa
Signing time: Thu 02 May 2024 23:23:47 +0000
ROA not before: Thu 02 May 2024 23:23:47 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20041 (0x4e49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 2 23:23:47 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=8EAC2DC08A71523198F6BEDD51090C5FECEB0D7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:19:66:1b:66:de:81:e2:eb:c1:fd:28:a5:35:
a5:61:98:d6:5e:ba:b8:96:98:b3:25:76:81:4f:04:
38:10:91:9e:10:ca:f2:2b:01:35:2a:5b:44:b9:55:
60:62:90:85:46:3b:6f:70:4d:f4:5e:18:52:e8:50:
27:b2:0b:96:10:0f:b9:6d:af:66:43:26:fc:65:40:
44:ad:4f:9d:cf:0a:d5:d5:ae:2b:4c:27:18:ca:19:
9a:0b:d9:5f:70:1e:a0:04:cb:89:61:ed:95:3b:a8:
6c:a0:ef:76:77:77:69:b4:75:05:bc:57:da:fc:a9:
ec:99:f0:f2:b8:35:4b:3b:10:87:fe:38:2e:6f:fc:
6c:47:3b:48:98:22:24:14:23:83:2d:95:74:42:2c:
b3:4d:28:87:29:63:88:d7:17:31:83:ea:a5:eb:17:
db:fe:57:21:32:1a:a9:a6:a1:94:c4:ed:6c:76:5b:
c7:a5:a1:39:98:cf:97:ea:f7:32:c0:98:11:91:d0:
3f:39:76:3f:10:eb:fe:b6:70:27:e6:d5:a5:da:1b:
97:40:7f:5a:7e:50:54:a0:7c:da:35:9f:a6:86:f5:
6d:10:e0:6d:e1:19:11:a4:9a:bd:3e:7d:01:41:89:
c8:f5:13:f8:a2:98:0e:a3:66:e2:b3:02:5a:48:f0:
61:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:AC:2D:C0:8A:71:52:31:98:F6:BE:DD:51:09:0C:5F:EC:EB:0D:7C
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/jqwtwIpxUjGY9r7dUQkMX-zrDXw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a5:5f:42:3b:96:ef:69:54:c5:a0:f8:4b:81:f9:7d:f6:d5:ed:
7f:93:a3:41:5d:4b:55:c5:de:2b:68:34:32:4c:52:ed:1c:16:
27:7d:d7:6c:ac:2e:de:4c:56:c4:1c:f0:aa:24:c1:94:07:1b:
aa:9e:4e:fc:84:50:1a:73:4f:28:82:8f:48:b1:6c:30:34:cd:
a7:f7:04:39:a2:19:8b:f5:f9:c3:3f:e9:f6:f9:9d:2a:42:40:
8f:aa:09:6b:11:96:ce:18:e9:2c:a0:d3:2b:81:db:33:45:9e:
17:95:1f:c3:37:0c:94:23:6c:77:4f:96:7d:29:77:d6:16:83:
cd:3b:75:46:35:9a:bf:9e:ba:f6:10:4c:2b:5e:a2:39:8a:07:
a6:eb:a8:4f:a5:e8:df:52:c7:aa:f7:bf:10:ef:1d:28:53:21:
c1:4e:a8:26:5d:95:9a:b1:53:b3:57:5f:8e:02:c0:34:f3:10:
cf:da:27:87:36:ee:97:fe:99:41:f4:46:18:0a:d7:28:27:b9:
3e:51:c4:80:67:69:8c:75:65:84:a7:d3:f4:53:7f:4c:c5:99:
47:c7:67:52:ed:32:72:31:a1:38:ad:99:57:95:88:0f:62:34:
f0:2f:4e:39:51:16:77:e4:bc:85:00:e7:28:01:cc:34:59:79:
75:ed:0a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:42 2024 by rpki-client on console-fra.rpki-client.org