Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/toFXe14PKB4VNY9A3kINI_ISuG8.roa
File: toFXe14PKB4VNY9A3kINI_ISuG8.roa (raw, json)
Hash identifier: DaXch8lSGNe0d9r9sMpYbHLFIxFjYdSwJfPOiWDZw+k=
Subject key identifier: B6:81:57:7B:5E:0F:28:1E:15:35:8F:40:DE:42:0D:23:F2:12:B8:6F
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4DE5
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/toFXe14PKB4VNY9A3kINI_ISuG8.roa
Signing time: Thu 02 May 2024 10:53:44 +0000
ROA not before: Thu 02 May 2024 10:53:44 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19941 (0x4de5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 2 10:53:44 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=B681577B5E0F281E15358F40DE420D23F212B86F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:38:6d:5f:f5:40:db:25:ef:17:25:5d:8c:94:
05:e4:35:5a:b8:d9:b5:f0:7d:ed:7d:38:b8:07:7b:
e6:5d:4a:bf:89:1b:9b:e4:4d:c4:4a:d2:d1:fd:60:
e9:22:e3:5f:2b:64:b8:7b:5c:cc:67:2c:05:eb:f6:
5f:6e:af:c0:11:63:e2:b4:a1:39:49:75:0e:9f:4b:
da:80:a3:75:29:c9:8d:1b:73:ec:15:f7:24:06:64:
b9:44:40:4f:89:a8:6c:99:9d:a8:3c:c2:59:57:58:
ef:c7:08:73:9c:23:ba:7a:98:89:d8:4b:88:78:45:
81:fe:41:fb:be:f8:49:ac:79:4b:48:01:3c:66:fd:
80:be:b0:00:4e:47:cf:ec:df:53:29:94:6e:3d:34:
78:25:14:7b:57:65:5a:8c:cd:e8:e9:ac:de:95:fb:
73:3a:3d:c5:a7:ed:1d:08:95:37:c2:40:c4:8e:b1:
99:e6:57:cc:c6:fc:44:66:00:fb:62:4c:42:fb:6a:
df:32:bf:fe:b6:cb:87:7e:50:48:6d:02:7f:b0:fd:
72:17:35:4a:82:af:59:36:24:15:0d:1a:33:d2:2a:
aa:9c:fc:02:11:e9:eb:c5:39:81:a2:bd:fe:55:d2:
78:dd:63:82:6f:69:52:68:df:b3:3f:ab:dd:80:cc:
fd:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:81:57:7B:5E:0F:28:1E:15:35:8F:40:DE:42:0D:23:F2:12:B8:6F
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/toFXe14PKB4VNY9A3kINI_ISuG8.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
86:0a:f8:d2:32:9a:1a:e6:1b:b5:b1:64:fb:fa:62:32:0b:4b:
90:3c:01:00:a0:d7:ad:75:7e:f7:d2:c7:24:b5:fe:c9:12:f4:
94:b1:bc:33:55:9e:25:0c:5b:3e:24:cc:32:39:86:0e:af:d6:
cd:75:9a:a1:a7:55:52:ef:82:fa:d9:04:99:d9:af:03:57:3f:
c9:6f:d2:63:d3:a7:27:ee:8d:76:b7:34:18:95:95:cd:27:6f:
00:15:8f:7d:13:e7:9e:4b:a0:73:84:d5:90:7c:9e:d8:cd:a1:
a7:ee:c0:8a:83:e1:a6:82:b4:72:65:a9:b2:1e:29:81:00:1e:
20:88:c1:76:f5:a1:1e:65:50:26:83:d1:c5:f3:fc:45:a1:ad:
b8:d4:14:72:ed:4c:5b:30:5c:07:5b:d9:b5:a4:b8:ad:86:f8:
92:14:5b:39:40:21:64:a2:d0:1f:a7:da:0d:d6:71:a2:f4:19:
f8:33:ea:c3:3b:d1:8b:e8:3b:04:49:aa:36:69:96:cf:28:c8:
5b:12:52:fc:f7:e6:84:db:bc:d6:76:2a:25:ef:89:12:55:6b:
86:46:ee:dd:43:2e:5a:07:2c:31:53:bd:06:e3:8c:12:79:cb:
9b:5f:c3:72:d2:b7:c0:43:0b:83:cc:5f:4f:ef:07:84:97:0f:
4d:f9:e1:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:52 2024 by rpki-client on console-fra.rpki-client.org