Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/muI2HWyAqVKo_oiQ_sE8FTWRyS0.roa
File: muI2HWyAqVKo_oiQ_sE8FTWRyS0.roa (raw, json)
Hash identifier: c9Smh64/cREl53Sn6984dUp+bJhh9o4xnAdiJs3Xtv4=
Subject key identifier: 9A:E2:36:1D:6C:80:A9:52:A8:FE:88:90:FE:C1:3C:15:35:91:C9:2D
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3B9D
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/muI2HWyAqVKo_oiQ_sE8FTWRyS0.roa
Signing time: Mon 08 Apr 2024 01:52:36 +0000
ROA not before: Mon 08 Apr 2024 01:52:36 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15261 (0x3b9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 8 01:52:36 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=9AE2361D6C80A952A8FE8890FEC13C153591C92D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f3:6b:bb:bb:f5:c6:5a:1f:42:6a:f5:ae:59:
9d:f2:20:67:67:03:36:a3:a6:48:f7:5d:49:61:50:
dd:6a:f7:86:30:b8:8a:88:c3:4b:70:9d:07:89:d6:
c3:3a:aa:7c:03:b9:e1:d6:60:b5:48:68:45:21:4a:
83:85:aa:c0:22:c7:ef:e1:a0:88:ba:40:d6:5a:01:
80:c9:04:23:44:92:99:b1:4b:02:ae:14:fb:c7:bd:
b4:c0:e9:f6:21:4d:63:cc:41:11:fd:5e:1f:22:24:
fd:b2:70:38:7c:87:7d:9b:94:52:d9:cd:18:49:1f:
42:98:15:8e:2b:23:00:75:96:f3:e9:5a:4c:03:78:
ec:5f:6e:09:f2:70:d8:3b:75:86:07:05:61:c5:58:
e6:d7:e1:42:fa:46:98:c7:3b:16:e4:40:2c:e4:1a:
ec:75:af:06:f8:11:f1:0f:0e:87:72:e1:6b:19:f4:
a1:cd:f4:dc:d5:79:5f:a0:4e:fe:01:9a:b5:be:0f:
61:2c:10:47:48:05:7f:dc:9e:99:30:e8:00:9e:64:
ab:79:71:a4:25:fe:45:24:db:48:05:c8:22:fb:35:
2d:5e:96:7c:0a:07:9a:1e:1f:7c:e2:47:ae:6a:e4:
bc:be:d4:90:94:88:03:50:86:1b:9a:39:27:12:64:
79:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:E2:36:1D:6C:80:A9:52:A8:FE:88:90:FE:C1:3C:15:35:91:C9:2D
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/muI2HWyAqVKo_oiQ_sE8FTWRyS0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
18:c8:36:f8:db:78:aa:1b:87:75:1e:ef:1c:79:52:09:a2:79:
bc:9d:95:c8:ea:8c:1e:bc:f3:41:08:1e:44:2b:15:b6:e2:1d:
3d:5c:4c:18:6d:50:21:a3:79:7c:78:d9:56:7f:89:cc:ec:01:
f9:ab:30:c9:0d:dc:c6:e2:b7:47:48:65:b1:f6:ee:d5:4e:7e:
e8:cd:29:03:b5:0e:0b:e2:a9:6e:45:ab:ed:c8:e2:6f:96:e8:
22:29:f8:b1:d0:ec:6a:e4:97:f7:db:08:1b:c7:3b:34:92:a6:
d0:0f:1f:3c:f1:05:45:1c:90:47:d8:ab:38:53:87:cb:d3:05:
8f:2c:80:fe:0b:4e:47:b7:70:74:e9:a0:14:68:f0:b7:22:4b:
1d:51:42:a2:1b:45:3a:fe:c8:00:95:99:1c:c0:60:6a:aa:df:
6c:47:b5:ec:0d:85:b4:27:91:b1:82:fc:32:a0:b3:32:4a:23:
59:c9:0c:13:73:b3:c0:e2:b9:ef:6f:87:32:f4:d5:e6:20:d2:
2a:16:3a:a6:f0:d0:13:79:9a:63:86:fb:96:23:ce:3a:56:19:
9f:94:09:0d:0c:9d:e8:2c:1b:09:7c:47:da:fe:62:34:07:8b:
34:0f:8c:85:cb:42:e5:8f:32:ae:66:48:c1:6d:70:b3:5e:d5:
1d:29:3a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:45 2024 by rpki-client on console-fra.rpki-client.org