Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/kLCDBvcFp557QjmNf_d8nfCx78g.roa
File: kLCDBvcFp557QjmNf_d8nfCx78g.roa (raw, json)
Hash identifier: vCUOw+pQbHU9as6J10uOUUno3MtbyMAsHEiS0VuRPxk=
Subject key identifier: 90:B0:83:06:F7:05:A7:9E:7B:42:39:8D:7F:F7:7C:9D:F0:B1:EF:C8
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 44C1
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/kLCDBvcFp557QjmNf_d8nfCx78g.roa
Signing time: Sat 20 Apr 2024 06:23:02 +0000
ROA not before: Sat 20 Apr 2024 06:23:02 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17601 (0x44c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 20 06:23:02 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=90B08306F705A79E7B42398D7FF77C9DF0B1EFC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:20:00:00:60:24:db:7b:fe:5b:15:3c:5b:d3:
26:04:71:1d:bf:dd:13:cd:35:3c:41:6e:84:85:db:
51:e2:88:ec:c6:33:03:e1:d1:21:44:72:24:ce:d4:
e9:41:c0:45:69:d2:18:e1:c2:88:d2:b8:e8:25:0e:
c0:f1:e3:f8:06:af:d4:da:df:fa:75:bf:04:c9:19:
f9:e2:c7:87:5f:8f:7f:e9:b7:f5:94:82:49:66:c2:
2c:a0:d8:e8:5b:18:b6:ab:71:a0:13:6d:a5:4c:72:
53:0c:2a:d0:45:79:e1:f0:21:13:ff:66:b9:88:f7:
56:fa:59:a0:85:72:99:41:1e:15:da:b8:2a:c5:25:
80:c9:fc:e6:2f:4e:68:db:8f:57:e9:94:d3:a3:1b:
d0:bf:d5:5e:38:89:64:3f:ea:c4:76:91:b5:41:ac:
6a:90:5c:36:f7:63:e3:92:bf:bb:64:be:45:e5:dc:
32:8a:cb:88:b6:9a:ce:c3:b6:bc:bd:f1:12:16:86:
b8:77:88:98:19:ff:32:ce:fa:27:d5:55:7c:d1:76:
fd:9d:eb:6d:b0:d2:e0:c3:85:b3:4c:96:a4:45:19:
e5:d3:ea:f7:90:48:b3:5f:57:32:ba:b6:05:51:e7:
e8:8a:1f:b6:49:ea:3a:67:0c:4b:65:31:63:12:73:
6d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:B0:83:06:F7:05:A7:9E:7B:42:39:8D:7F:F7:7C:9D:F0:B1:EF:C8
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/kLCDBvcFp557QjmNf_d8nfCx78g.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a9:17:d6:76:20:07:7c:2d:98:9c:1b:34:8c:ab:ff:f8:78:26:
9f:af:ec:88:6c:93:04:4e:a7:67:85:3d:27:ae:5e:15:a6:f8:
3a:b1:2c:ba:5a:80:ff:9a:bb:4f:50:84:f0:4f:07:79:31:a4:
0b:2c:ba:55:2b:48:11:e1:64:74:cb:3a:b8:d1:f5:4a:fe:e4:
22:e2:dc:ec:3d:17:da:b3:34:00:19:6c:67:4b:4f:54:39:a7:
dd:a1:9c:c1:af:b6:62:dc:e2:89:62:92:85:cd:5f:8e:26:8a:
4e:eb:82:a7:e1:56:99:fa:5f:7d:be:db:1f:12:53:95:66:57:
c0:30:ae:e1:69:84:5c:10:aa:2e:c3:98:82:a3:71:d8:5a:67:
85:b3:ef:a3:95:ca:15:de:24:da:4a:38:c4:31:bb:d7:bd:80:
cc:51:a4:07:4b:64:a9:91:7e:02:24:62:67:d7:58:4a:ac:74:
43:0e:c2:69:fc:b5:18:79:bc:f6:39:69:31:1c:10:c6:d5:01:
8e:9e:c4:65:9c:a0:91:ac:e3:33:34:ce:da:22:5b:7a:ee:04:
f5:59:08:62:b1:24:25:59:4c:42:1e:00:fa:e5:47:21:28:a9:
e4:dc:2c:38:7d:57:2b:07:9a:06:fe:3d:29:15:2c:12:46:73:
ad:71:5e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:43 2024 by rpki-client on console-fra.rpki-client.org