Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/pxz8koia_iRdgEQg_9MSWTLKOas.roa
File: pxz8koia_iRdgEQg_9MSWTLKOas.roa (raw, json)
Hash identifier: nttuCNp3uUS4agCNvc95+gZVUWIKqxPMYVyY+7WFvug=
Subject key identifier: A7:1C:FC:92:88:9A:FE:24:5D:80:44:20:FF:D3:12:59:32:CA:39:AB
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 50D1
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/pxz8koia_iRdgEQg_9MSWTLKOas.roa
Signing time: Mon 06 May 2024 08:23:55 +0000
ROA not before: Mon 06 May 2024 08:23:55 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20689 (0x50d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 6 08:23:55 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=A71CFC92889AFE245D804420FFD3125932CA39AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0a:19:a7:d6:28:ec:29:0f:9e:cc:58:4b:20:
aa:90:f3:7e:e0:97:4d:c9:57:24:63:ef:e7:29:7c:
6f:07:e6:33:13:7f:61:b2:93:74:12:73:12:e2:28:
0a:55:1b:be:31:2f:6e:d2:7d:f9:bb:e9:a3:80:f4:
0b:e2:35:3f:b8:59:99:cf:0a:72:5e:42:e3:e3:ca:
5c:5b:8c:aa:70:a7:df:d5:77:87:60:f7:29:28:73:
5a:fe:4a:ce:9a:61:1c:3a:2f:d8:19:c5:0e:da:90:
e9:14:dd:57:a2:2b:0f:fc:35:f4:84:94:81:10:35:
80:8b:2d:f1:b6:c3:45:21:ff:0c:a1:3e:c7:c5:a7:
5c:ad:3e:fc:4c:c4:96:06:7b:20:8e:e7:e6:dd:74:
9d:4a:ef:c9:78:53:04:5c:a5:42:23:94:4d:31:c0:
8f:89:04:74:3c:18:1c:d8:00:e0:c1:5e:56:86:27:
2c:52:80:93:2b:45:e2:e6:ec:0a:e5:7b:c5:eb:c5:
83:2b:60:26:87:09:d4:3f:13:e1:3f:f7:1e:dc:da:
17:9e:ce:f2:e6:9b:99:b3:d5:a2:89:09:29:98:50:
73:dd:05:0c:b1:e0:b9:89:9a:ff:49:7f:2f:84:e5:
14:0a:10:32:9b:17:44:67:8c:73:13:82:5b:ff:0f:
d0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:1C:FC:92:88:9A:FE:24:5D:80:44:20:FF:D3:12:59:32:CA:39:AB
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/pxz8koia_iRdgEQg_9MSWTLKOas.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8d:0d:5a:48:be:02:34:54:0f:67:64:0b:9e:3c:01:f9:2c:2f:
15:20:94:e6:f0:6e:13:82:5f:91:9c:7b:f9:97:a8:18:df:e3:
fb:04:50:ca:a8:e1:ea:dd:68:ba:93:20:37:97:7e:ae:8a:f5:
26:e9:59:d9:bf:cc:6f:be:54:cf:59:3e:8b:5d:06:9d:a0:35:
c3:46:14:8e:e0:13:ce:25:23:95:cd:39:1a:83:e4:37:c9:af:
56:5c:a7:4a:25:00:ea:4f:ec:aa:8e:e1:bc:45:ea:f4:bc:39:
8b:3e:c3:6b:b7:5c:c5:a5:e3:b3:7f:08:e6:5c:27:e0:e1:f4:
86:63:92:ce:e7:7a:f4:7e:3c:7a:a8:cc:2b:7c:90:2b:36:96:
f6:d3:99:25:7b:54:67:80:6b:8c:d5:c1:71:99:55:81:c4:db:
f4:6b:81:53:99:d5:63:58:5e:b9:9f:7c:e8:1c:56:ce:91:c1:
16:d8:e9:2c:da:d4:a3:b9:8b:50:84:f4:05:7f:71:27:ed:0d:
ab:7f:42:23:4f:e8:2e:02:42:65:29:a1:20:07:79:a2:2c:5f:
37:71:55:ea:ab:58:8e:9a:40:17:e7:cb:42:ee:83:bb:3c:d8:
79:e9:1f:9c:1e:95:66:0e:95:8a:52:e2:59:87:7e:e9:cc:1d:
cc:8e:5c:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:48 2024 by rpki-client on console-fra.rpki-client.org