Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/myNuQSKn0JZk5mP2sSl3LeYvhv4.roa
File: myNuQSKn0JZk5mP2sSl3LeYvhv4.roa (raw, json)
Hash identifier: iMJAyauSFZrJET0cEdqanapOonKQ5mmQ+OWQ9qFACVM=
Subject key identifier: 9B:23:6E:41:22:A7:D0:96:64:E6:63:F6:B1:29:77:2D:E6:2F:86:FE
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3685
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/myNuQSKn0JZk5mP2sSl3LeYvhv4.roa
Signing time: Mon 01 Apr 2024 06:52:12 +0000
ROA not before: Mon 01 Apr 2024 06:52:12 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13957 (0x3685)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 1 06:52:12 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=9B236E4122A7D09664E663F6B129772DE62F86FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:44:d1:ed:29:08:74:f1:63:9a:81:ac:4d:b3:
b2:2a:8a:b6:6c:69:c8:a9:0e:24:0b:4f:de:41:e1:
e2:bf:47:81:0f:66:30:74:16:c9:b2:21:1c:13:c9:
73:4a:24:c1:7a:80:a7:46:7b:b3:1f:f0:cc:73:bb:
d3:c9:98:fd:1e:a3:4b:81:23:a2:3c:58:29:cd:25:
5e:f2:e4:2b:8d:18:62:f0:ba:07:12:37:1d:54:df:
83:a2:5a:b7:f8:18:1b:b7:2b:ab:4f:df:ad:5b:62:
ab:6d:90:98:6c:bb:93:21:d8:a5:30:93:e6:2d:ce:
ea:78:52:c6:64:33:79:62:ed:df:df:61:80:99:09:
31:f4:b1:80:4a:2c:01:3b:3a:f9:74:29:0a:02:87:
97:28:8b:56:dc:80:08:f5:2b:a3:b6:83:9c:81:df:
99:d0:66:bb:3a:ff:4c:50:fd:e6:1c:52:ba:a8:fa:
c3:b4:90:a4:f7:50:b6:9e:7d:da:b7:40:0c:93:af:
25:43:2d:64:97:1e:13:17:dc:3a:e7:42:13:6a:2b:
f4:4b:db:a4:de:b4:d6:02:05:0b:a7:6c:e6:88:f1:
4f:a9:3e:74:1d:de:73:69:f2:e6:81:af:4c:d9:6a:
81:cd:93:87:2b:eb:07:35:c5:27:36:9c:5e:fd:30:
7e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:23:6E:41:22:A7:D0:96:64:E6:63:F6:B1:29:77:2D:E6:2F:86:FE
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/myNuQSKn0JZk5mP2sSl3LeYvhv4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
02:15:49:48:9b:62:1e:3d:ab:fd:28:89:59:fe:a2:17:40:1a:
f9:f4:33:b6:93:3f:36:b5:7c:92:53:c4:cf:f9:18:89:64:89:
f3:60:cc:6f:ac:ae:a2:fb:c8:e7:3d:48:11:02:f2:87:55:2c:
47:fb:e2:bc:c7:57:72:f5:4f:04:1b:72:b3:d1:43:cf:72:3f:
fc:85:53:97:99:22:36:5e:60:45:32:d9:5b:2f:f2:e2:2a:90:
6f:43:63:3d:5f:d5:b9:bf:34:8b:e0:32:ab:98:7c:bf:25:3b:
40:a8:d7:7a:07:ec:80:ae:b7:05:d6:5f:d2:e1:c9:0e:2c:ab:
a0:cd:0f:27:18:8a:3a:37:9e:0f:08:35:5e:a4:dc:3b:92:2c:
e4:f5:0a:8e:f3:4e:15:f2:8b:c0:6e:1d:e6:a5:74:5d:ac:26:
ac:8e:aa:13:ac:09:15:d2:37:62:fe:1f:c3:fe:8c:3c:65:e8:
84:db:0b:4e:d1:29:fa:c5:e5:2d:54:41:2d:79:e4:6c:7a:74:
58:c4:1d:37:68:cf:5e:bb:5e:eb:fd:c3:4f:77:ee:d7:79:ad:
27:ec:2e:e1:96:77:d3:6a:b8:29:f6:ec:5e:56:f0:7e:77:34:
e7:dd:61:20:d0:3b:23:8a:4d:ee:f4:3e:08:2f:32:f4:47:88:
06:c6:0d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:08 2024 by rpki-client on console-ams.rpki-client.org