Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/uVAdUQ0TC-ImuMWbqJaj2FzsaJs.roa
File: uVAdUQ0TC-ImuMWbqJaj2FzsaJs.roa (raw, json)
Hash identifier: UxcShZaBYQy/yMGcKBYwWwbMW18mbhOjKpkEvq+ZTGg=
Subject key identifier: B9:50:1D:51:0D:13:0B:E2:26:B8:C5:9B:A8:96:A3:D8:5C:EC:68:9B
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 37F1
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/uVAdUQ0TC-ImuMWbqJaj2FzsaJs.roa
Signing time: Wed 03 Apr 2024 04:22:17 +0000
ROA not before: Wed 03 Apr 2024 04:22:17 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14321 (0x37f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 3 04:22:17 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=B9501D510D130BE226B8C59BA896A3D85CEC689B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:40:71:5e:22:ed:cf:f6:d5:d2:5f:86:4d:e3:
17:67:81:4c:d1:3f:26:6d:21:75:2f:42:4a:55:85:
28:4f:83:b5:a8:34:df:ed:42:99:44:74:b4:e4:9c:
78:90:64:1b:a0:4a:a4:ad:5f:7d:13:1c:b6:89:1e:
36:73:a5:8b:0b:e8:bd:24:20:a9:f5:dc:bd:d8:7d:
23:b3:66:b1:98:b1:c8:d1:e6:e5:33:f5:07:95:0a:
7b:c1:4a:98:5c:4c:8d:1c:03:24:64:d8:a2:ec:55:
07:05:a5:54:b1:a1:83:60:5f:c3:1a:80:17:5e:6e:
bb:b8:6d:0c:2a:51:7d:a1:93:28:cb:9d:5d:c7:63:
56:e2:f5:da:11:79:2d:77:a8:2c:8b:57:f2:d0:26:
5c:88:a9:82:99:2d:ec:c7:20:bf:9f:64:b8:3e:91:
de:af:78:55:ba:f3:6b:b5:92:ee:de:3c:0f:d8:a5:
c5:40:33:04:0c:b9:2c:e7:80:19:d7:43:a8:a3:f6:
b3:95:31:69:ea:81:ab:fb:cb:cf:b2:bc:71:34:20:
b9:fe:80:0c:72:62:3d:c7:ed:61:9b:6a:7b:f0:f1:
58:5b:bc:f1:38:d7:13:34:58:76:74:23:c9:c6:a0:
3a:fd:6b:8c:93:2c:f4:46:b0:2e:14:8b:ca:04:ec:
86:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:50:1D:51:0D:13:0B:E2:26:B8:C5:9B:A8:96:A3:D8:5C:EC:68:9B
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/uVAdUQ0TC-ImuMWbqJaj2FzsaJs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
71:cb:6d:a1:a8:9e:f3:3e:73:a6:15:d8:53:08:6f:33:c9:23:
0e:43:e7:7b:35:bd:d8:f0:e0:a4:8d:42:92:8c:ea:95:ab:e5:
8a:fa:6b:14:3b:0d:5e:c8:fc:30:fa:b7:2f:14:d5:e7:c6:16:
9b:b0:f9:ba:b3:3d:63:39:6b:27:f1:4f:23:b0:bb:f0:d3:2b:
f5:db:49:2a:6e:f1:2e:02:29:f4:b6:f5:51:aa:71:52:71:29:
fd:14:f6:0c:20:29:e3:5e:a5:b5:d7:90:98:da:0c:77:4d:19:
9d:59:1a:5b:32:15:b2:c4:66:53:14:ec:cd:04:80:17:87:18:
c4:96:9b:d4:1a:8a:e3:9e:b3:31:fc:6a:9e:8c:55:c1:ff:c2:
ff:22:c9:4e:28:c8:9b:51:d8:ef:c8:24:c7:d4:c4:e3:38:30:
96:48:5e:aa:e7:1a:e4:c3:3b:d6:a8:d9:a1:73:50:6a:74:5c:
1f:7f:aa:b8:54:ae:5a:c1:9f:26:4d:6b:9c:53:b7:8a:b8:57:
e7:01:c2:4b:dc:93:21:37:1c:04:d4:40:fc:8c:ba:d2:67:23:
02:e7:4e:bf:67:58:23:fe:b7:3a:c3:84:17:55:8a:c1:57:7b:
64:84:ea:04:ec:96:7f:fe:31:fc:18:97:35:d3:bd:b6:60:70:
05:42:28:93
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICN/EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MDMw
NDIyMTdaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEI5NTAxRDUxMEQxMzBC
RTIyNkI4QzU5QkE4OTZBM0Q4NUNFQzY4OUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSQHFeIu3P9tXSX4ZN4xdngUzRPyZtIXUvQkpVhShPg7WoNN/t
QplEdLTknHiQZBugSqStX30THLaJHjZzpYsL6L0kIKn13L3YfSOzZrGYscjR5uUz
9QeVCnvBSphcTI0cAyRk2KLsVQcFpVSxoYNgX8MagBdebru4bQwqUX2hkyjLnV3H
Y1bi9doReS13qCyLV/LQJlyIqYKZLezHIL+fZLg+kd6veFW682u1ku7ePA/YpcVA
MwQMuSzngBnXQ6ij9rOVMWnqgav7y8+yvHE0ILn+gAxyYj3H7WGbanvw8VhbvPE4
1xM0WHZ0I8nGoDr9a4yTLPRGsC4Ui8oE7IYxAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQUuVAdUQ0TC+ImuMWbqJaj2FzsaJswHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L3VWQWRVUTBUQy1JbXVN
V2JxSmFqMkZ6c2FKcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAHHLbaGonvM+c6YV
2FMIbzPJIw5D53s1vdjw4KSNQpKM6pWr5Yr6axQ7DV7I/DD6ty8U1efGFpuw+bqz
PWM5ayfxTyOwu/DTK/XbSSpu8S4CKfS29VGqcVJxKf0U9gwgKeNepbXXkJjaDHdN
GZ1ZGlsyFbLEZlMU7M0EgBeHGMSWm9QaiuOeszH8ap6MVcH/wv8iyU4oyJtR2O/I
JMfUxOM4MJZIXqrnGuTDO9ao2aFzUGp0XB9/qrhUrlrBnyZNa5xTt4q4V+cBwkvc
kyE3HATUQPyMutJnIwLnTr9nWCP+tzrDhBdVisFXe2SE6gTsln/+MfwYlzXTvbZg
cAVCKJM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:52 2024 by rpki-client on console-fra.rpki-client.org