Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/mdlS_sPsEe_HnpfgRv-VRBUdFVQ.roa
File: mdlS_sPsEe_HnpfgRv-VRBUdFVQ.roa (raw, json)
Hash identifier: QtuY1eVftKJI2iKqZSojfvyI44KWuNiebZYt+47TpXA=
Subject key identifier: 99:D9:52:FE:C3:EC:11:EF:C7:9E:97:E0:46:FF:95:44:15:1D:15:54
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 481D
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/mdlS_sPsEe_HnpfgRv-VRBUdFVQ.roa
Signing time: Wed 24 Apr 2024 17:53:13 +0000
ROA not before: Wed 24 Apr 2024 17:53:13 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18461 (0x481d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 24 17:53:13 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=99D952FEC3EC11EFC79E97E046FF9544151D1554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:dc:b3:be:86:7a:97:f0:d4:ce:95:17:4f:3a:
68:4a:32:c1:8c:6e:9a:41:1a:3e:a7:ad:78:2e:d4:
8a:95:d5:ac:0f:a7:81:a1:3d:70:e1:ac:d5:a9:4e:
0f:cc:66:76:3d:86:d8:15:2b:94:16:67:83:0b:05:
73:d3:0e:ae:82:a9:8e:7e:f0:56:4f:48:a3:87:32:
4e:c4:ab:51:7f:10:9c:f3:55:80:99:5d:85:0c:a7:
e4:40:e3:ca:52:3c:29:78:a6:78:38:8d:e0:b2:02:
a6:c9:29:9c:b0:4f:11:81:ce:da:e0:7c:b7:8b:2f:
23:b2:f7:e8:94:a5:9b:fa:9e:ef:1b:1a:c3:32:0f:
b0:eb:54:2b:fe:4f:d7:47:85:d9:45:24:56:af:1e:
2c:1b:1a:5c:10:d5:9c:98:dd:f7:87:1c:6c:a0:5a:
3a:34:08:a3:f5:11:00:ea:48:5b:89:54:dc:c6:02:
45:6b:eb:c2:53:9c:9b:7a:9a:fe:b7:81:f2:6d:79:
18:56:2f:2f:8a:e3:f2:a2:12:cd:20:42:52:c1:b8:
60:3d:f9:9f:fd:05:ad:fc:c4:15:38:7d:74:e4:7e:
64:89:2f:35:78:ea:7d:f8:d4:37:07:59:fe:b0:e3:
04:4a:9a:29:c5:4a:67:da:4c:ea:d2:46:2c:7e:ba:
f7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D9:52:FE:C3:EC:11:EF:C7:9E:97:E0:46:FF:95:44:15:1D:15:54
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/mdlS_sPsEe_HnpfgRv-VRBUdFVQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
39:c6:66:8d:0c:b1:7c:5c:0b:cb:45:e6:ab:b5:c1:3e:3c:28:
ce:9f:42:a3:59:28:20:33:df:40:11:d9:26:6e:b2:fc:1e:a6:
f8:de:f8:09:57:3d:2e:df:ad:b6:89:00:22:b4:cc:6f:8b:a5:
cf:f8:b0:16:86:3e:9b:7f:75:bc:00:e3:4d:ff:66:6d:47:7d:
4c:59:89:55:2c:0c:6c:95:e3:d8:21:5f:a0:55:fa:a1:84:95:
03:69:78:8c:8c:af:f5:c3:5b:49:6b:3e:24:05:84:d0:77:c5:
46:4d:06:c5:cb:c0:92:ec:37:cf:8c:09:cc:d8:ab:7c:a5:60:
8b:a2:29:43:9a:8d:d8:6b:dd:52:cd:fe:92:0c:38:bf:69:8a:
5b:4b:3a:99:e1:12:bb:9b:b6:31:a3:34:51:93:8a:0d:9d:2a:
eb:4d:3f:c5:51:75:4a:db:64:15:d8:60:99:e6:f6:68:da:ee:
34:fb:66:96:e0:28:c1:78:43:4b:49:28:cb:b5:e6:2d:21:7a:
ed:a8:42:69:bf:fc:5c:07:11:b7:00:ba:06:cc:ff:f2:ca:37:
85:50:51:35:a7:26:74:c9:6d:d2:94:69:65:b5:b3:96:47:f0:
5f:eb:ff:f1:04:ae:d6:ef:f0:4f:2a:f6:8f:ce:9b:73:39:13:
d2:c3:8e:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:45 2024 by rpki-client on console-fra.rpki-client.org