Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/pgPgDCZxiDsbBTWqAPAUqrTmUJ0.roa
File: pgPgDCZxiDsbBTWqAPAUqrTmUJ0.roa (raw, json)
Hash identifier: e4v0m9MZ5M+/hmEf3pCIk6nTAuComtQ8fHgS7o9knrM=
Subject key identifier: A6:03:E0:0C:26:71:88:3B:1B:05:35:AA:00:F0:14:AA:B4:E6:50:9D
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 2C59
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/pgPgDCZxiDsbBTWqAPAUqrTmUJ0.roa
Signing time: Wed 24 May 2023 03:54:11 +0000
ROA not before: Wed 24 May 2023 03:54:11 +0000
ROA not after: Sat 17 Feb 2024 02:46:59 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11353 (0x2c59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 24 03:54:11 2023 GMT
Not After : Feb 17 02:46:59 2024 GMT
Subject: CN=A603E00C2671883B1B0535AA00F014AAB4E6509D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:98:d6:f2:56:7f:a7:0e:c5:8e:ce:56:82:b9:
c1:15:d5:e6:39:e0:dc:ae:4c:8a:56:0d:e7:b7:3a:
07:90:31:f1:2b:fb:ec:b3:0f:fe:84:ec:70:ff:b1:
1b:9e:23:4f:9d:c0:76:00:2e:c9:66:b9:21:3d:30:
33:80:a7:53:35:3f:3a:be:aa:27:1b:1e:d6:6a:07:
d7:56:d5:fe:58:d3:18:85:d1:6a:c0:51:7f:69:97:
cf:27:b2:54:c2:1c:3f:04:9f:64:df:15:d5:8c:a3:
67:61:8c:3c:a9:4a:5e:e8:47:cc:28:eb:26:ce:8d:
3a:d1:88:33:99:ef:e0:aa:16:d0:f4:59:9f:91:3a:
5c:f1:89:fe:3a:1d:b0:de:5c:9b:f4:a2:02:30:75:
8d:38:7e:cf:71:75:c4:f6:28:3a:a3:18:8f:47:d8:
fa:2e:d4:de:81:83:42:03:70:53:90:27:38:ba:67:
5c:6f:c3:ff:06:f3:e0:54:86:9a:62:e2:cd:0a:35:
04:8a:3d:6f:02:53:7e:38:f5:b2:39:98:e9:53:b0:
dd:aa:42:b2:ff:6b:ce:b2:d4:92:48:ba:2d:fa:80:
ed:d0:25:2b:53:0f:fa:c2:35:7d:82:2f:62:f2:10:
ae:b8:6c:28:f8:60:ea:13:bb:b8:17:c5:fe:1d:16:
a0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:03:E0:0C:26:71:88:3B:1B:05:35:AA:00:F0:14:AA:B4:E6:50:9D
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/pgPgDCZxiDsbBTWqAPAUqrTmUJ0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
4c:db:4f:56:47:d2:e7:a7:88:43:2b:d7:98:36:42:66:bd:7b:
e7:02:e8:9c:f5:89:29:c6:82:ad:cf:f7:79:20:a5:43:f1:ef:
1a:ce:82:13:ac:a7:5e:36:d1:8d:5c:a5:41:a4:54:cc:34:f0:
2e:89:d0:54:f8:52:87:d9:bb:5b:6e:fc:8c:d7:e9:7b:16:80:
fa:5a:ab:91:cf:5a:5c:33:0b:01:94:b5:36:99:33:e2:c4:51:
6b:f0:7b:ad:ad:45:b1:fd:db:7a:82:0c:52:be:dc:7d:b3:18:
d5:de:cf:1b:90:a6:51:e0:73:64:c2:5e:73:c9:71:16:fb:42:
db:9f:d5:6f:2e:a6:6f:f8:31:f7:56:16:e2:15:92:b1:34:38:
01:0d:95:aa:fb:f9:15:df:36:88:00:d7:49:83:30:1a:17:27:
d6:41:8f:cd:49:90:54:23:93:10:49:35:ab:29:5d:cf:b0:4d:
4e:7e:8b:27:92:76:8b:ab:65:2a:73:40:90:f4:2d:47:3a:0e:
91:ad:f9:70:d9:8a:da:29:c5:da:4b:a9:3a:1a:74:55:a8:7e:
96:c4:3b:4e:ee:ce:ec:0d:91:8e:67:67:b2:f7:a4:73:54:ef:
98:af:77:db:62:99:b1:79:08:c5:d7:20:b1:3f:d6:01:69:e8:
2a:75:20:1c
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICLFkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yMzA1MjQw
MzU0MTFaFw0yNDAyMTcwMjQ2NTlaMDMxMTAvBgNVBAMTKEE2MDNFMDBDMjY3MTg4
M0IxQjA1MzVBQTAwRjAxNEFBQjRFNjUwOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCumNbyVn+nDsWOzlaCucEV1eY54NyuTIpWDee3OgeQMfEr++yz
D/6E7HD/sRueI0+dwHYALslmuSE9MDOAp1M1Pzq+qicbHtZqB9dW1f5Y0xiF0WrA
UX9pl88nslTCHD8En2TfFdWMo2dhjDypSl7oR8wo6ybOjTrRiDOZ7+CqFtD0WZ+R
Olzxif46HbDeXJv0ogIwdY04fs9xdcT2KDqjGI9H2Pou1N6Bg0IDcFOQJzi6Z1xv
w/8G8+BUhppi4s0KNQSKPW8CU3449bI5mOlTsN2qQrL/a86y1JJIui36gO3QJStT
D/rCNX2CL2LyEK64bCj4YOoTu7gXxf4dFqC9AgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQUpgPgDCZxiDsbBTWqAPAUqrTmUJ0wHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L3BnUGdEQ1p4aURzYkJU
V3FBUEFVcXJUbVVKMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAEzbT1ZH0ueniEMr
15g2Qma9e+cC6Jz1iSnGgq3P93kgpUPx7xrOghOsp1420Y1cpUGkVMw08C6J0FT4
UofZu1tu/IzX6XsWgPpaq5HPWlwzCwGUtTaZM+LEUWvwe62tRbH923qCDFK+3H2z
GNXezxuQplHgc2TCXnPJcRb7Qtuf1W8upm/4MfdWFuIVkrE0OAENlar7+RXfNogA
10mDMBoXJ9ZBj81JkFQjkxBJNaspXc+wTU5+iyeSdourZSpzQJD0LUc6DpGt+XDZ
itopxdpLqToadFWofpbEO07uzuwNkY5nZ7L3pHNU75ivd9timbF5CMXXILE/1gFp
6Cp1IBw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:11 2024 by rpki-client on console-ams.rpki-client.org