Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/p6wOeItm7w_0J5wc8O0dTpzhv_c.roa
File: p6wOeItm7w_0J5wc8O0dTpzhv_c.roa (raw, json)
Hash identifier: 8baDyNjCm/oxZ1fmJTFInPABaqIc6ItS6xAVgNZJi58=
Subject key identifier: A7:AC:0E:78:8B:66:EF:0F:F4:27:9C:1C:F0:ED:1D:4E:9C:E1:BF:F7
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5039
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/p6wOeItm7w_0J5wc8O0dTpzhv_c.roa
Signing time: Sun 05 May 2024 13:24:01 +0000
ROA not before: Sun 05 May 2024 13:24:01 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20537 (0x5039)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 5 13:24:01 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=A7AC0E788B66EF0FF4279C1CF0ED1D4E9CE1BFF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:86:a4:6e:cc:fe:c4:ef:79:41:62:53:f3:25:
db:b7:f2:8a:44:ed:31:c9:1c:14:da:fe:58:7a:81:
b5:c9:f3:43:01:6e:60:23:f9:e2:e3:72:a5:02:cc:
5a:b3:4d:bf:fa:f4:52:7f:5f:a1:4f:f7:77:fe:25:
f2:7f:e1:8e:4d:f0:38:43:3e:6c:b6:73:2a:ee:92:
58:3b:71:e3:14:5d:13:c1:f0:d2:5d:38:09:7b:3e:
50:c5:ee:17:7d:e6:ee:73:f1:6c:41:1b:1f:93:d9:
54:46:09:b9:d0:c9:b4:ec:ba:c5:64:dd:4b:a4:3d:
3b:64:46:10:37:ee:0d:f6:5f:16:e4:a0:57:00:97:
1c:37:23:01:84:24:f5:ad:ae:f5:28:36:e0:86:9e:
ed:4e:1b:3e:89:21:a9:38:42:60:51:00:1d:01:4a:
80:56:56:10:f0:ab:8a:db:ad:0d:55:4b:42:64:2c:
a0:f4:12:c3:77:81:eb:8a:ec:c4:c6:f6:33:e7:d8:
31:62:cc:55:1b:f7:75:da:b2:cb:a4:69:d9:3b:52:
a0:b6:28:7c:09:0d:2f:96:2a:d9:d3:30:2c:bc:d3:
dd:a7:30:6a:3b:a9:c9:0b:a8:ee:13:be:f8:5b:10:
a5:9d:42:9d:43:6e:89:d2:7b:dd:f8:0c:15:39:4d:
9a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:AC:0E:78:8B:66:EF:0F:F4:27:9C:1C:F0:ED:1D:4E:9C:E1:BF:F7
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/p6wOeItm7w_0J5wc8O0dTpzhv_c.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
2d:12:57:7c:91:3a:a7:7e:28:c5:48:56:7b:8b:71:80:9e:b7:
63:25:1e:09:23:83:c1:a7:8c:95:4f:22:8d:98:00:9e:07:74:
00:2f:02:25:33:a5:f2:4d:19:02:e0:63:84:88:ab:61:69:89:
d2:9b:15:d1:a5:74:ae:32:43:37:c7:4d:4f:53:15:a8:36:7f:
05:df:28:54:04:b9:7d:f6:5e:a5:48:44:38:0a:d4:ba:82:b3:
6c:a4:a1:bf:03:f9:56:c8:2a:2a:fe:3e:3c:14:8e:dd:78:44:
98:35:44:fb:c5:f6:c6:ef:66:ac:b2:02:e6:83:14:80:12:ff:
bd:fe:c4:bf:27:62:b0:cd:d2:02:1f:d6:3a:e7:f6:ff:e7:96:
cd:6b:57:c0:31:2f:ab:c3:3a:3b:4f:44:85:d0:e3:08:65:09:
e8:2f:41:8a:e5:b8:c9:b7:90:1a:6d:20:a6:5a:c3:96:4b:9f:
6f:d7:e7:e7:7d:37:39:35:66:d5:a5:e8:ab:98:13:b2:db:04:
59:19:16:77:ff:e1:7c:a2:ef:b2:ba:a9:74:ca:d7:a2:00:50:
f5:d6:8d:95:03:2c:2c:05:53:fd:15:bb:50:24:76:36:0c:d8:
32:8c:6a:74:7b:33:0f:68:bc:17:90:1b:a2:7c:f8:83:72:20:
a5:86:53:18
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICUDkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MDUx
MzI0MDFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEE3QUMwRTc4OEI2NkVG
MEZGNDI3OUMxQ0YwRUQxRDRFOUNFMUJGRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4hqRuzP7E73lBYlPzJdu38opE7THJHBTa/lh6gbXJ80MBbmAj
+eLjcqUCzFqzTb/69FJ/X6FP93f+JfJ/4Y5N8DhDPmy2cyruklg7ceMUXRPB8NJd
OAl7PlDF7hd95u5z8WxBGx+T2VRGCbnQybTsusVk3UukPTtkRhA37g32XxbkoFcA
lxw3IwGEJPWtrvUoNuCGnu1OGz6JIak4QmBRAB0BSoBWVhDwq4rbrQ1VS0JkLKD0
EsN3geuK7MTG9jPn2DFizFUb93Xassukadk7UqC2KHwJDS+WKtnTMCy8092nMGo7
qckLqO4TvvhbEKWdQp1DbonSe934DBU5TZqZAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQUp6wOeItm7w/0J5wc8O0dTpzhv/cwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L3A2d09lSXRtN3dfMEo1
d2M4TzBkVHB6aHZfYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAC0SV3yROqd+KMVI
VnuLcYCet2MlHgkjg8GnjJVPIo2YAJ4HdAAvAiUzpfJNGQLgY4SIq2FpidKbFdGl
dK4yQzfHTU9TFag2fwXfKFQEuX32XqVIRDgK1LqCs2ykob8D+VbIKir+PjwUjt14
RJg1RPvF9sbvZqyyAuaDFIAS/73+xL8nYrDN0gIf1jrn9v/nls1rV8AxL6vDOjtP
RIXQ4whlCegvQYrluMm3kBptIKZaw5ZLn2/X5+d9Nzk1ZtWl6KuYE7LbBFkZFnf/
4Xyi77K6qXTK16IAUPXWjZUDLCwFU/0Vu1AkdjYM2DKManR7Mw9ovBeQG6J8+INy
IKWGUxg=
-----END CERTIFICATE-----
Generated at Fri Apr 11 18:28:14 2025 by rpki-client