Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/pmp49nCGEvArNf7QYT8JyrP--is.roa
File: pmp49nCGEvArNf7QYT8JyrP--is.roa (raw, json)
Hash identifier: r1enbD4jP/FMmcdvmVPS6ZwiEAMAnuTYmuun+rbeY0I=
Subject key identifier: A6:6A:78:F6:70:86:12:F0:2B:35:FE:D0:61:3F:09:CA:B3:FE:FA:2B
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4E7D
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/pmp49nCGEvArNf7QYT8JyrP--is.roa
Signing time: Fri 03 May 2024 05:53:43 +0000
ROA not before: Fri 03 May 2024 05:53:43 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20093 (0x4e7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 3 05:53:43 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=A66A78F6708612F02B35FED0613F09CAB3FEFA2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:81:f0:3d:7c:96:53:13:9b:24:a6:4e:e6:bc:
8e:dd:36:c8:74:a6:82:c5:e2:a4:11:8b:e8:f5:32:
0b:a6:db:69:bf:74:9a:93:12:fc:16:11:f4:e8:0d:
8f:8b:d9:e9:27:5f:c4:b6:94:49:54:42:24:40:97:
d7:62:c5:76:1c:9a:c0:39:97:f3:17:e0:32:ee:69:
67:95:9e:c2:5d:62:88:e7:fe:ea:b4:66:d2:c6:af:
a1:7c:d9:c7:aa:c6:af:07:c0:2c:be:ea:49:d7:a1:
2d:68:2e:ca:ee:0a:bd:35:55:86:b5:23:6a:3e:0b:
6e:47:45:3f:15:4c:e5:00:1c:cc:07:92:16:3d:16:
5a:2b:b8:00:d5:15:15:ae:d0:5f:cf:68:a8:fe:03:
85:ea:38:f2:e6:19:c8:93:e9:15:dc:c8:cf:8c:29:
dd:ac:a7:33:97:6e:00:5b:53:94:72:08:b1:f7:92:
ad:41:fa:f6:b4:2f:46:09:e2:ea:84:dc:aa:55:4a:
ef:99:02:74:4a:78:cf:45:a9:56:95:f6:b3:20:e8:
84:82:a3:b2:34:ee:5a:6f:ec:78:6b:d5:69:5b:2d:
b0:ac:bf:c5:29:d9:38:64:36:f8:df:cd:de:d4:9d:
67:cf:53:43:a0:e1:9e:13:0e:83:d0:a9:6f:a6:c2:
8c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6A:78:F6:70:86:12:F0:2B:35:FE:D0:61:3F:09:CA:B3:FE:FA:2B
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/pmp49nCGEvArNf7QYT8JyrP--is.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
27:0c:5e:d3:56:70:81:00:17:59:87:86:52:e9:e1:a1:62:81:
3d:90:99:77:53:63:c0:d8:1e:04:87:87:0d:b6:10:72:60:bf:
ea:b3:42:0c:2e:9c:69:bd:4b:ab:48:33:d8:19:8e:f3:6b:ec:
5b:f7:13:f6:0d:c2:c7:82:1c:42:e5:10:7b:50:12:0e:3e:95:
b5:9e:6d:4f:44:19:a0:7c:88:62:30:3a:82:be:63:34:bc:59:
f1:4b:d7:ed:f7:b9:37:4d:e1:ce:43:2b:14:7d:d7:50:22:e2:
6b:48:53:4f:25:16:0a:cf:96:9b:0e:04:a6:d8:e6:de:ca:38:
b3:18:82:e4:10:ee:91:9b:df:63:6b:b1:c3:47:f4:fe:2d:7e:
3d:bc:00:cf:c3:51:63:bf:ef:23:0b:2e:b1:f6:4d:c2:4c:43:
14:d6:54:82:87:d4:ec:74:16:5e:d1:8c:f0:5c:ac:9b:d3:78:
28:a6:2b:0c:e9:e7:f5:03:99:ce:6b:20:ea:06:5c:2d:4a:77:
2b:9d:01:63:1f:e7:8d:71:52:44:e8:49:3e:c3:e9:43:19:b2:
a2:a4:39:57:77:42:23:75:5b:9a:c9:af:d6:43:17:d5:eb:63:
88:7c:4f:52:63:e8:57:87:c0:c0:75:e0:48:b8:7c:8d:09:b3:
43:15:f7:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:11 2024 by rpki-client on console-ams.rpki-client.org