Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/mcuBN5LDgPpSdlMcooFgSzbVl4U.roa
File: mcuBN5LDgPpSdlMcooFgSzbVl4U.roa (raw, json)
Hash identifier: Bwvf+rdGAG99XRWF1We2spKUtmDxC+bGcujgeAsOFyE=
Subject key identifier: 99:CB:81:37:92:C3:80:FA:52:76:53:1C:A2:81:60:4B:36:D5:97:85
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5175
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/mcuBN5LDgPpSdlMcooFgSzbVl4U.roa
Signing time: Tue 07 May 2024 04:53:57 +0000
ROA not before: Tue 07 May 2024 04:53:57 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20853 (0x5175)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 7 04:53:57 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=99CB813792C380FA5276531CA281604B36D59785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5e:ff:99:17:1c:ad:93:91:25:a3:2a:3a:17:
ac:90:2c:3b:7c:28:c5:d9:71:33:89:7f:e5:5a:ab:
3b:20:16:8a:5e:02:5d:6b:83:c7:32:ee:a9:54:9c:
2c:0a:7b:3a:bd:10:b6:c7:5a:1f:16:40:5f:96:8e:
f6:24:4c:0f:f1:ad:06:94:48:4a:94:69:7a:8c:0c:
1f:4a:98:e2:99:73:55:46:70:a7:8f:7f:bf:17:13:
53:0d:03:84:f0:f9:70:0d:cc:a9:e1:2b:13:25:95:
36:96:78:02:77:a7:29:15:49:34:7e:2d:47:75:10:
aa:a2:a4:9d:d4:13:f1:c4:c1:90:94:c5:cb:c3:84:
63:6b:a4:5f:41:d7:f8:82:dd:0a:33:83:f0:18:e5:
04:a3:31:2b:de:37:0e:42:50:21:43:4c:18:3b:54:
a4:e0:f5:6b:24:94:e7:9c:b7:f4:95:4f:07:fc:c4:
04:b9:b2:65:69:66:ec:54:72:be:2f:4f:4e:21:a0:
85:d9:07:e3:48:15:b7:c7:55:0a:0a:76:dd:f0:41:
65:bf:ff:02:34:a6:c8:12:e6:ad:1c:b5:ee:ac:c4:
77:61:01:75:e5:09:aa:6d:37:fe:3b:99:1e:38:56:
8e:a3:cd:82:fd:87:23:fd:71:6a:1b:fa:4f:70:b3:
88:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:CB:81:37:92:C3:80:FA:52:76:53:1C:A2:81:60:4B:36:D5:97:85
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/mcuBN5LDgPpSdlMcooFgSzbVl4U.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
33:56:84:11:90:d1:d9:84:bf:4b:78:40:93:38:3a:3f:51:b4:
4d:08:74:e5:2b:82:bb:aa:10:8f:cb:c8:bd:55:49:3f:cc:5c:
ae:45:5a:a6:28:62:f8:8e:71:2b:ca:3e:80:71:87:e5:ea:db:
51:f0:6c:ee:be:6c:f1:df:f4:05:e0:50:f1:b0:ba:73:5f:b1:
42:61:9b:db:19:be:ba:bc:6e:98:2b:36:c2:ca:f1:7b:7d:96:
d1:c1:07:70:82:63:c8:4b:5b:38:dc:f1:ff:6a:63:24:1e:31:
ab:40:7b:e5:0a:29:27:93:bd:6a:0e:1e:17:9b:6e:b3:c5:b6:
da:8e:bc:08:23:19:65:1f:53:08:e4:fd:91:84:8d:49:43:ee:
a3:e5:c7:73:ef:a8:eb:25:b9:79:99:0f:a2:07:31:d8:eb:81:
6c:ee:68:65:8b:e6:14:ba:da:62:7a:e0:e4:68:90:6b:19:37:
fb:28:63:44:bd:0a:ae:1f:d5:44:cd:1d:ec:d4:c7:e0:df:21:
43:e9:30:a8:00:99:73:d2:7a:3a:91:63:87:29:9f:b8:37:3c:
d7:df:be:b7:80:66:ce:c7:64:1d:85:ba:d9:54:04:6b:df:53:
85:be:9c:86:58:25:aa:c7:ac:75:ae:d1:39:77:69:49:85:44:
81:ce:f1:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:45 2024 by rpki-client on console-fra.rpki-client.org