Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/n4eP-RyAm_38xhkCMsV9BgxIpXY.roa
File: n4eP-RyAm_38xhkCMsV9BgxIpXY.roa (raw, json)
Hash identifier: tc8CC4zQ62Y07NWMKq396LgD8t8EbmyATW+z+Y6HaHU=
Subject key identifier: 9F:87:8F:F9:1C:80:9B:FD:FC:C6:19:02:32:C5:7D:06:0C:48:A5:76
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3DF5
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/n4eP-RyAm_38xhkCMsV9BgxIpXY.roa
Signing time: Thu 11 Apr 2024 04:53:10 +0000
ROA not before: Thu 11 Apr 2024 04:53:10 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15861 (0x3df5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 11 04:53:10 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=9F878FF91C809BFDFCC6190232C57D060C48A576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:45:97:c0:50:01:31:b5:f8:40:1b:5f:48:d6:
12:cb:54:25:9b:3e:8a:f9:69:42:c9:dd:7a:41:5e:
ca:af:37:8d:3b:1b:ea:21:4a:01:61:6e:1c:7e:2c:
fc:4d:53:18:97:aa:54:68:f7:e2:41:88:c6:8a:1f:
91:d8:e7:79:d0:a8:fc:54:7b:7f:a1:0f:16:e0:88:
5d:6b:0d:32:37:50:0b:27:77:48:1c:4b:de:7c:6b:
d0:3b:0e:7f:91:79:26:d0:66:6c:49:57:27:d8:c9:
63:18:fe:3c:e6:c4:15:02:c3:3a:05:80:54:83:7c:
1c:5f:82:df:9c:5a:45:48:e6:65:1d:c8:c6:32:39:
bb:5b:96:34:fa:e2:15:29:0d:8c:3e:98:6d:e2:e7:
2a:b5:89:55:01:64:3f:e8:5f:e3:d7:2c:74:9f:85:
3c:28:ce:d3:22:2d:74:fe:54:33:89:9a:4c:32:52:
2e:17:5d:b0:6f:88:62:50:4c:94:0e:5b:e3:00:00:
ee:ed:32:0f:26:37:3d:13:39:9a:eb:60:c9:b1:ed:
53:af:24:76:6d:db:fd:a9:43:70:88:59:0e:47:fa:
02:05:00:b9:9d:8f:3d:50:ca:44:ab:17:33:00:83:
ee:be:2c:2b:e4:94:69:8b:81:93:5d:78:bd:63:dc:
df:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:87:8F:F9:1C:80:9B:FD:FC:C6:19:02:32:C5:7D:06:0C:48:A5:76
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/n4eP-RyAm_38xhkCMsV9BgxIpXY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
9a:86:8c:1c:2e:28:e6:03:9f:0f:89:52:a3:11:1b:f5:fa:e9:
dc:b2:cc:db:e3:e7:67:59:c3:fd:56:d0:db:2c:b1:74:77:90:
2c:cb:99:73:17:1a:5a:e8:3e:dd:19:a0:b5:39:23:36:f6:b5:
57:3b:17:24:14:c8:43:f6:3a:d6:bb:5a:7c:3e:6c:c4:d8:2c:
29:4f:84:b7:2d:7d:d3:63:92:7f:02:87:72:5c:e3:6f:82:91:
37:f5:25:5c:79:4e:f2:87:77:da:ee:d7:1a:c8:ce:6e:0b:4e:
b2:39:08:ae:de:1c:e4:72:66:17:44:04:7f:72:a3:0c:da:03:
fc:eb:11:7e:e1:0a:b3:fe:04:10:cf:30:d0:c0:de:22:b2:6c:
37:10:6c:a0:fa:1d:5d:5e:60:1a:9a:56:55:a4:c8:69:29:67:
2d:50:ea:79:5a:0b:2b:43:d6:e5:5e:25:18:57:a5:ac:b2:32:
bc:95:e6:a4:4c:7f:d1:7d:ab:fd:b0:d4:df:5e:8e:f3:4e:6c:
17:0c:91:f4:f9:87:b2:11:a2:2f:c1:5a:62:e2:f3:14:25:f0:
ce:e8:9f:1c:4d:88:4e:6d:b9:86:8d:0d:38:ee:d0:96:eb:a1:
bc:b4:0b:88:32:57:07:31:6a:0b:14:c1:c6:ec:79:8d:8d:7f:
11:a3:e4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:45 2024 by rpki-client on console-fra.rpki-client.org