Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/tHbhA3e7ZJyOT0hJ9ZN5Szs2Lhw.roa
File: tHbhA3e7ZJyOT0hJ9ZN5Szs2Lhw.roa (raw, json)
Hash identifier: D/jNYnSFFXoBT9uFXWqlvD9i4bEVPG88XZxWv01UE9Y=
Subject key identifier: B4:76:E1:03:77:BB:64:9C:8E:4F:48:49:F5:93:79:4B:3B:36:2E:1C
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3AD1
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/tHbhA3e7ZJyOT0hJ9ZN5Szs2Lhw.roa
Signing time: Sun 07 Apr 2024 00:22:30 +0000
ROA not before: Sun 07 Apr 2024 00:22:30 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15057 (0x3ad1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 7 00:22:30 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=B476E10377BB649C8E4F4849F593794B3B362E1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ef:f3:74:ee:8f:4e:47:ed:c6:6e:fd:ff:31:
b8:8b:f2:b3:59:8c:ee:c6:69:ea:54:08:01:da:b0:
f1:fa:b4:6b:c2:b4:0b:3e:aa:9d:6b:6d:71:52:a8:
e3:93:de:ec:00:e1:3b:c9:a3:c6:53:bf:f4:a0:fd:
cc:f7:3c:1f:cc:c9:ab:72:8b:ad:05:03:52:28:24:
fa:67:5e:7c:ef:c1:38:c6:d6:46:97:74:11:9a:23:
6f:24:25:64:3d:83:b0:4e:e3:21:9d:c4:41:70:73:
3b:ec:28:4b:4e:1e:47:06:99:f1:b9:11:bb:fe:19:
ae:ed:9c:c9:7d:20:77:70:e1:e2:66:c2:4d:ce:ad:
31:b2:c1:ab:47:3f:6a:dc:89:0e:b7:bb:85:4f:da:
92:a1:fa:0a:83:a0:4d:39:23:c6:4e:f7:bc:07:a3:
e7:8c:cc:75:1a:93:c5:bb:cf:36:92:1a:06:38:a9:
50:5a:4c:05:b8:45:3a:b2:aa:99:68:2c:d1:16:18:
ce:28:4d:be:90:83:30:0d:93:6a:68:ab:80:aa:ac:
64:43:5a:8a:6d:dd:31:b7:75:2a:6a:66:82:57:0a:
d8:8a:ff:30:1c:c5:48:90:6a:54:03:a3:af:d7:59:
c8:20:45:41:5f:00:34:ed:04:e2:d6:2e:d0:00:b1:
5c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:76:E1:03:77:BB:64:9C:8E:4F:48:49:F5:93:79:4B:3B:36:2E:1C
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/tHbhA3e7ZJyOT0hJ9ZN5Szs2Lhw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
13:bd:e2:cc:fa:7e:14:46:91:b9:13:62:b9:71:6c:64:46:88:
df:0b:62:59:15:d1:b0:e7:51:4f:a3:98:bb:95:80:bc:1d:1d:
21:2c:bb:c0:a3:0f:fc:3b:59:cb:c4:c7:f0:02:cf:f4:62:e7:
76:7a:3a:87:d6:fc:9a:92:6a:63:ae:d5:86:c6:95:31:3c:4f:
ad:6a:6b:29:58:45:22:1a:b1:24:50:a7:b2:6c:62:2c:10:5f:
66:3d:63:4a:91:49:82:77:69:78:50:a2:ff:32:10:8b:f1:fd:
9b:ce:39:44:88:81:f6:5e:b6:25:a7:9a:3b:8a:e9:24:42:9e:
6d:fd:dc:bb:75:05:50:1a:2d:8b:df:d8:ea:5c:31:2b:ac:6c:
a2:7f:1b:1d:98:df:9f:c7:5f:6a:d3:a8:aa:3a:c9:c5:de:6e:
04:d9:cc:07:a9:9b:9c:46:4b:5e:b3:b0:90:83:7d:b1:b9:bb:
d5:60:a5:0c:af:10:14:7d:11:9f:00:b3:0f:17:67:9d:2a:45:
f4:88:84:65:56:6b:4c:fd:09:d5:31:eb:94:a8:83:6e:96:5a:
22:05:d3:c2:c3:1b:97:e3:c2:92:50:b3:29:93:b4:7e:df:bd:
15:9b:8e:f4:87:15:fa:38:66:f2:5a:3f:3c:69:aa:b9:fa:52:
e0:2f:6b:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:15 2024 by rpki-client on console-ams.rpki-client.org