Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/rWTlq3XkXHUsEG-xNjyvt_CmeXo.roa
File: rWTlq3XkXHUsEG-xNjyvt_CmeXo.roa (raw, json)
Hash identifier: q86YeBqW+s+vIqS1wqAuOF35ZncYBt6wo3wjmaiSKr4=
Subject key identifier: AD:64:E5:AB:75:E4:5C:75:2C:10:6F:B1:36:3C:AF:B7:F0:A6:79:7A
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 44FD
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/rWTlq3XkXHUsEG-xNjyvt_CmeXo.roa
Signing time: Sat 20 Apr 2024 13:53:04 +0000
ROA not before: Sat 20 Apr 2024 13:53:04 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17661 (0x44fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 20 13:53:04 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=AD64E5AB75E45C752C106FB1363CAFB7F0A6797A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d8:cb:15:00:5b:82:63:a1:7d:de:31:e0:81:
f0:07:35:92:82:45:70:10:27:8e:46:a9:bd:04:58:
29:87:99:8f:f2:4d:1b:33:da:c2:fb:b1:23:fe:45:
73:be:11:4f:63:fa:44:26:ef:05:28:15:0e:24:c1:
28:2f:d3:45:8d:8e:2c:f8:8e:04:45:fb:27:de:ae:
23:08:30:ca:1e:d2:d5:2f:af:4c:ea:b5:d0:63:f7:
16:02:90:c5:21:f9:5c:06:a1:5e:49:c3:88:a2:4f:
75:06:61:50:c5:29:3c:ec:3b:58:4f:2b:21:7f:13:
f6:92:0c:7c:02:b8:a4:12:e1:cc:1c:58:e9:84:99:
2d:49:a6:4d:19:b3:bc:09:35:f3:ea:9e:e0:72:87:
fb:d6:a8:3a:b8:76:96:54:4c:d7:66:71:f1:dd:58:
1a:cd:5e:4f:ec:50:f8:ec:db:21:09:63:37:42:91:
5c:1d:18:4c:b4:e9:9f:0a:2b:a1:3d:e1:29:ae:f3:
b9:09:0b:e8:74:3a:ae:5e:fc:9b:f8:6b:44:52:29:
02:8b:6b:d5:c0:51:d5:97:92:f9:23:ad:32:72:59:
81:c5:a0:95:74:d4:21:33:09:23:ec:f0:1c:5f:e3:
af:8c:40:bb:56:4c:1e:c8:e5:29:62:79:ad:21:a0:
34:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:64:E5:AB:75:E4:5C:75:2C:10:6F:B1:36:3C:AF:B7:F0:A6:79:7A
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/rWTlq3XkXHUsEG-xNjyvt_CmeXo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
b4:3c:c4:2e:6a:2b:18:6f:37:79:3f:07:4b:ba:ed:86:8f:40:
8c:2f:a4:79:1c:d2:4f:04:b5:42:72:09:0b:68:08:ab:1a:2a:
6c:a6:95:c4:87:f6:b1:e4:f0:35:d7:a0:59:fe:65:55:93:99:
35:c1:98:2e:d0:2a:fd:b7:70:68:86:ad:fc:f2:44:c2:3f:f0:
ac:40:a2:6b:88:6c:9a:46:56:fa:57:a3:b0:33:18:37:3c:93:
2d:56:3a:a7:7e:c1:1b:97:b7:d8:11:9d:88:f2:ad:87:55:a0:
dc:02:25:42:fd:4e:ef:30:6d:20:75:b5:23:5c:ad:44:52:55:
88:0b:32:20:2a:14:3f:4e:8f:4c:34:b1:05:c8:7d:44:2e:c6:
82:df:ea:2f:6d:8a:6e:ad:af:15:f4:82:70:4a:95:dd:07:41:
2b:e4:57:32:96:ed:ed:87:9e:00:7e:e7:6e:e8:3c:d4:e6:12:
c1:00:08:40:1c:c6:6b:1d:70:0d:b6:99:d4:88:53:40:e4:a6:
05:62:55:ca:07:c3:cf:90:8b:55:f7:f1:07:9b:d3:6d:7f:43:
b5:54:87:ea:0f:49:29:a6:a2:1a:16:fc:16:3d:1f:bc:29:6d:
ba:62:30:33:46:6a:87:59:22:28:6f:fb:96:3b:76:83:c5:a8:
78:f4:a5:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:49 2024 by rpki-client on console-fra.rpki-client.org