Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/kD8D3iLlkdQzkYl2I6aX4SGvs2Q.roa
File: kD8D3iLlkdQzkYl2I6aX4SGvs2Q.roa (raw, json)
Hash identifier: wGs1xpOCy17N6TQT1yixQ2ZuKLhgGmWnVVCranoJR2M=
Subject key identifier: 90:3F:03:DE:22:E5:91:D4:33:91:89:76:23:A6:97:E1:21:AF:B3:64
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5159
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/kD8D3iLlkdQzkYl2I6aX4SGvs2Q.roa
Signing time: Tue 07 May 2024 01:24:08 +0000
ROA not before: Tue 07 May 2024 01:24:08 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20825 (0x5159)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 7 01:24:08 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=903F03DE22E591D43391897623A697E121AFB364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d2:9f:ec:e1:b6:a9:8b:36:d4:fc:40:fc:2e:
42:8f:7c:e2:be:14:d3:30:ac:ab:e6:b8:4d:69:a9:
4d:f2:b1:eb:7b:f3:5c:13:1d:56:8a:f3:62:9c:8f:
80:a2:9d:ac:a2:9e:0c:2c:19:38:18:b7:b4:31:7d:
0f:3f:47:6f:b5:f6:20:c5:64:11:3b:86:11:1a:32:
9d:36:92:d7:45:dc:48:cb:4c:ca:d2:89:b9:06:e0:
23:ba:d3:eb:d3:41:6c:04:04:93:38:f8:4b:71:cc:
13:47:06:5f:07:43:65:ae:ba:ea:8c:7c:3d:11:dc:
6e:00:f7:3b:a5:b8:d2:a5:8f:04:08:47:04:a8:52:
71:28:25:ea:b0:1a:19:35:de:c5:00:87:cb:89:66:
8f:ab:b8:6c:2b:e2:14:40:d6:cb:3b:52:01:0d:cb:
d0:1f:e2:7d:dc:71:a9:b8:eb:b0:3c:a7:e8:a5:ce:
df:36:85:28:87:01:1d:5d:c4:58:77:86:15:1f:34:
e3:8e:23:f2:b7:85:cc:58:27:b9:3d:47:4e:c5:b0:
0e:b5:4b:06:59:e9:f5:ac:c7:3e:e9:0e:cc:dc:c6:
d4:2b:22:d4:cf:45:38:b4:32:4d:f5:18:85:30:c0:
e8:83:46:9a:59:81:91:ff:b4:c1:a6:21:ce:1f:35:
c8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:3F:03:DE:22:E5:91:D4:33:91:89:76:23:A6:97:E1:21:AF:B3:64
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/kD8D3iLlkdQzkYl2I6aX4SGvs2Q.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
77:f5:85:37:99:35:ca:e9:ec:40:9c:05:16:14:7d:6a:cd:a9:
4f:54:44:40:55:c8:96:38:0c:58:6b:03:bb:aa:b7:0d:3c:b7:
a2:95:c9:e9:dc:a2:ad:e8:73:ce:a0:89:8b:77:f9:31:65:25:
52:68:24:23:ec:1b:84:eb:e6:10:77:f1:3b:44:9b:a7:24:71:
23:28:89:cd:be:06:a4:eb:02:ad:48:25:1e:60:02:4a:d5:db:
f6:08:fb:54:5a:f9:66:36:87:81:a2:47:e6:1c:17:dc:8b:e0:
95:1b:2a:bb:84:2a:cb:c6:f1:30:53:16:db:57:60:1f:77:82:
7c:b4:60:a0:9a:df:39:40:e9:5b:43:94:c8:78:6d:da:60:26:
3b:04:9d:58:90:a9:5f:f6:8e:6d:70:69:45:4f:b8:cb:ce:96:
bb:25:88:75:88:0c:68:3b:98:6c:ed:06:8a:fe:a8:29:79:5f:
fa:6c:67:d6:92:9d:43:67:e2:24:9d:5d:7c:79:67:73:b3:4a:
e6:9c:d6:c7:4b:9f:2b:0a:7d:22:b0:f6:67:b7:1e:a8:83:6c:
c9:99:d1:25:e8:03:28:a9:1a:4d:c6:e3:5a:6d:d3:b6:6e:7d:
42:6a:4d:b9:72:93:70:69:36:45:ac:ae:65:e3:98:54:2c:d9:
46:c0:5b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:05 2024 by rpki-client on console-ams.rpki-client.org