Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/r0PNV4ex94iyTz0A-pmlO-FoXxw.roa
File: r0PNV4ex94iyTz0A-pmlO-FoXxw.roa (raw, json)
Hash identifier: 9Pma154UrPwPrSf28BhCG1nTXk7nPKcdEBZu9C9EH0M=
Subject key identifier: AF:43:CD:57:87:B1:F7:88:B2:4F:3D:00:FA:99:A5:3B:E1:68:5F:1C
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4189
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/r0PNV4ex94iyTz0A-pmlO-FoXxw.roa
Signing time: Mon 15 Apr 2024 23:22:54 +0000
ROA not before: Mon 15 Apr 2024 23:22:54 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16777 (0x4189)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 15 23:22:54 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=AF43CD5787B1F788B24F3D00FA99A53BE1685F1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a1:cd:c5:90:6c:1c:24:03:3c:d6:6b:fd:95:
01:2f:04:87:83:c8:02:f7:87:cf:37:cb:48:30:98:
ff:d3:cf:85:52:9b:58:1c:56:0f:7c:7b:aa:30:1d:
0d:6e:a7:1c:a8:c1:d3:14:78:99:e0:11:35:a3:f2:
0e:11:fe:d2:e9:b1:e0:0c:c2:75:8c:14:83:61:ee:
de:c8:91:a3:39:86:44:7d:f8:58:6f:6e:41:12:be:
fd:17:7b:40:e0:df:f5:22:7e:3f:01:b0:60:2d:ba:
53:d4:9c:85:c0:89:02:5b:05:f9:71:28:58:44:c2:
a1:d9:2e:60:e5:db:7f:e1:35:b2:81:8d:0f:02:eb:
32:db:76:d8:7d:ad:39:6b:b8:0d:2d:34:a3:0f:f8:
11:2e:22:e4:6c:d8:db:b7:49:53:ea:82:d0:40:10:
9b:20:7c:47:3f:26:4c:d8:9d:34:fe:32:01:76:e6:
98:7c:31:d4:d3:7b:e9:e4:58:64:56:02:f9:f6:03:
0f:f4:62:e6:61:eb:6e:17:67:5e:87:46:5b:94:32:
b1:d4:92:8d:5c:1a:8a:63:ef:7c:3a:32:c2:3f:0e:
b3:f7:a1:51:9e:ea:de:49:a2:4c:6a:4e:64:e6:2e:
d8:9c:e2:5b:8e:08:28:e9:17:3a:74:7e:73:7f:38:
43:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:43:CD:57:87:B1:F7:88:B2:4F:3D:00:FA:99:A5:3B:E1:68:5F:1C
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/r0PNV4ex94iyTz0A-pmlO-FoXxw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
9b:09:16:46:9d:fc:03:3c:d6:50:68:77:9d:d9:9d:0e:c2:f6:
e1:c8:43:6d:67:6a:9c:14:83:8a:09:1d:79:ec:38:dd:e1:08:
55:ea:6d:05:00:59:4f:c6:8f:a1:72:ca:37:41:f6:e9:36:0e:
8d:a8:9b:26:0b:69:04:11:5f:86:34:d2:ac:55:da:18:10:3b:
8f:bf:e7:8c:dd:7b:a5:ea:74:c4:9c:1d:ec:44:f6:94:99:22:
63:a8:b5:7b:f4:3f:ab:d9:e7:d3:de:27:72:96:ae:7c:1b:d4:
29:68:4a:ea:5c:eb:3a:12:f9:45:9f:7f:26:f7:0a:47:ad:68:
21:d7:d7:a3:5b:b1:db:b9:66:f0:1d:a1:a6:2f:4c:f3:e5:82:
cb:16:60:cd:c5:a1:96:92:44:c7:b5:2c:4b:c5:dc:5e:d7:9e:
1d:0f:9b:3a:10:dd:11:8c:04:55:fe:a6:36:54:bd:ea:89:51:
89:d6:b8:ce:4c:75:56:2a:c4:b3:d8:30:61:cc:a8:03:36:3c:
04:6b:2a:a8:71:65:dc:47:0b:7c:2f:9a:57:cd:58:7d:a6:7c:
35:01:2d:85:ca:d9:45:6f:c1:3c:17:eb:2f:db:b6:e4:85:66:
63:67:2b:1a:11:a5:39:8b:04:d4:f6:7b:95:69:25:ab:7d:eb:
b9:a4:09:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:49 2024 by rpki-client on console-fra.rpki-client.org