Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/tE3uKNC4QTyS2NEYTCK5Z9Ntz2Y.roa
File: tE3uKNC4QTyS2NEYTCK5Z9Ntz2Y.roa (raw, json)
Hash identifier: +hjOO2mV3tY9xKpTBoO/hFw9npyc+J4sG6VkAYyzZNw=
Subject key identifier: B4:4D:EE:28:D0:B8:41:3C:92:D8:D1:18:4C:22:B9:67:D3:6D:CF:66
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 34F1
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/tE3uKNC4QTyS2NEYTCK5Z9Ntz2Y.roa
Signing time: Sat 30 Mar 2024 04:22:07 +0000
ROA not before: Sat 30 Mar 2024 04:22:07 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13553 (0x34f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Mar 30 04:22:07 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=B44DEE28D0B8413C92D8D1184C22B967D36DCF66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e2:5f:5e:43:1b:27:20:8f:c9:eb:b5:22:ee:
77:4c:b6:43:70:89:a6:78:9a:bf:b6:87:6e:21:b8:
26:27:d7:f1:96:84:0a:1b:2d:a9:e7:57:6e:b0:9c:
c9:e0:b7:1f:ba:ca:16:42:32:bc:9a:47:61:32:5b:
4a:69:8f:ce:1d:94:86:14:40:5f:42:d8:11:92:11:
55:3b:4a:67:9a:a4:8f:df:76:d4:5f:f7:2c:c3:bd:
5b:9b:c3:6b:ec:e7:fa:2e:d2:66:92:49:19:f4:bb:
38:b3:2c:dc:0f:eb:0d:2b:fa:f8:20:e0:e6:38:19:
88:fc:27:27:89:7f:82:0a:db:06:6e:20:32:cd:b9:
44:d1:28:39:06:0b:a5:59:19:36:a8:87:a1:0b:ca:
fe:a0:11:47:86:b9:6a:b3:e3:32:04:6e:23:83:62:
93:75:24:29:f9:be:dd:1a:e2:7b:e2:aa:7f:b9:a9:
62:17:18:fe:a4:0c:c2:40:79:84:46:34:4a:e2:07:
aa:d9:bd:29:f6:f8:92:af:2c:46:20:ea:6b:f3:8f:
13:68:4d:f0:2a:49:e0:19:0e:31:dc:7c:de:54:41:
7f:c5:88:da:4e:60:05:a7:bc:d9:e7:c1:c0:1a:43:
0e:6c:d2:04:dc:4d:e8:f8:f8:f4:61:bb:cf:de:03:
5c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:4D:EE:28:D0:B8:41:3C:92:D8:D1:18:4C:22:B9:67:D3:6D:CF:66
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/tE3uKNC4QTyS2NEYTCK5Z9Ntz2Y.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
3b:c4:40:07:db:35:60:04:6e:fd:7f:40:c9:0b:01:6a:35:20:
53:9f:f5:e6:ad:c6:34:09:03:f2:0e:13:4f:db:7f:41:aa:89:
c6:81:20:7c:16:3b:75:2b:c6:e2:e2:01:39:2b:13:8f:4a:07:
91:f2:e3:57:8a:9e:38:64:f7:52:c7:d0:6f:1c:ba:89:bc:b3:
ae:6e:a5:cb:87:9e:b4:f8:32:95:3c:b9:a8:51:4d:14:23:91:
4b:9a:9b:3c:4c:e7:1b:6a:d2:6b:8b:e9:0c:72:b6:cc:7a:a5:
07:6d:a0:bf:0a:ef:41:92:e1:fa:90:0a:a6:69:36:3d:9c:96:
2e:8f:3b:45:18:5e:78:b6:7c:5d:53:de:94:b0:33:02:a4:01:
62:d4:d4:44:ce:c8:21:17:66:1e:62:bd:19:04:de:9a:29:34:
40:2a:cc:be:83:4e:f7:36:24:15:a1:bb:91:e5:6f:1c:ea:cb:
bd:e0:c2:50:5d:1f:70:8c:c5:63:c1:71:b4:6e:f9:2e:c5:f7:
68:c3:99:0d:37:16:9a:f8:d1:1b:55:5c:29:79:46:2f:2f:da:
2b:27:3d:ea:1a:1d:68:c8:e6:7c:d5:1c:0d:29:fc:a5:dd:06:
33:84:93:c4:61:32:43:8a:72:e6:48:65:a5:08:12:bd:57:b2:
1b:04:fd:ab
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICNPEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDAzMzAw
NDIyMDdaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEI0NERFRTI4RDBCODQx
M0M5MkQ4RDExODRDMjJCOTY3RDM2RENGNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDT4l9eQxsnII/J67Ui7ndMtkNwiaZ4mr+2h24huCYn1/GWhAob
LannV26wnMngtx+6yhZCMryaR2EyW0ppj84dlIYUQF9C2BGSEVU7SmeapI/fdtRf
9yzDvVubw2vs5/ou0maSSRn0uzizLNwP6w0r+vgg4OY4GYj8JyeJf4IK2wZuIDLN
uUTRKDkGC6VZGTaoh6ELyv6gEUeGuWqz4zIEbiODYpN1JCn5vt0a4nviqn+5qWIX
GP6kDMJAeYRGNEriB6rZvSn2+JKvLEYg6mvzjxNoTfAqSeAZDjHcfN5UQX/FiNpO
YAWnvNnnwcAaQw5s0gTcTej4+PRhu8/eA1xrAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQUtE3uKNC4QTyS2NEYTCK5Z9Ntz2YwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L3RFM3VLTkM0UVR5UzJO
RVlUQ0s1WjlOdHoyWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBADvEQAfbNWAEbv1/
QMkLAWo1IFOf9eatxjQJA/IOE0/bf0GqicaBIHwWO3UrxuLiATkrE49KB5Hy41eK
njhk91LH0G8cuom8s65upcuHnrT4MpU8uahRTRQjkUuamzxM5xtq0muL6Qxytsx6
pQdtoL8K70GS4fqQCqZpNj2cli6PO0UYXni2fF1T3pSwMwKkAWLU1ETOyCEXZh5i
vRkE3popNEAqzL6DTvc2JBWhu5Hlbxzqy73gwlBdH3CMxWPBcbRu+S7F92jDmQ03
Fpr40RtVXCl5Ri8v2isnPeoaHWjI5nzVHA0p/KXdBjOEk8RhMkOKcuZIZaUIEr1X
shsE/as=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:51 2024 by rpki-client on console-fra.rpki-client.org