Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/vBBAavQyFcatIAQJlWn6ky1Dbm0.roa
File: vBBAavQyFcatIAQJlWn6ky1Dbm0.roa (raw, json)
Hash identifier: WroRx39maYlveXsEm/3laoYrkzGNCw3v+dIFXinAxcs=
Subject key identifier: BC:10:40:6A:F4:32:15:C6:AD:20:04:09:95:69:FA:93:2D:43:6E:6D
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3729
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vBBAavQyFcatIAQJlWn6ky1Dbm0.roa
Signing time: Tue 02 Apr 2024 03:22:36 +0000
ROA not before: Tue 02 Apr 2024 03:22:36 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14121 (0x3729)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 2 03:22:36 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=BC10406AF43215C6AD2004099569FA932D436E6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d8:69:ef:d6:c1:52:a7:78:51:d0:d1:8b:62:
04:43:f5:2a:54:0d:c9:f9:e0:50:e7:ea:91:e6:fc:
96:c7:a3:29:8a:b0:1a:f0:76:b8:39:b3:b7:af:fa:
81:40:df:cb:ec:e0:f7:81:78:d2:e7:19:f9:df:44:
1e:bf:89:3b:d5:5c:7e:36:22:ad:f6:b3:c4:57:23:
0b:14:c5:d9:cd:12:9f:a2:4d:9c:e4:a7:16:10:56:
c4:89:be:7d:1e:0b:2e:21:4d:1b:ef:56:ea:cb:6e:
3d:ff:ba:44:39:1c:69:07:aa:74:05:68:bb:02:bd:
eb:f2:a6:e7:af:6c:58:89:a7:ad:d9:26:49:47:c7:
0b:97:65:3b:13:26:1c:f0:0d:5a:cb:03:5b:88:71:
af:58:8c:84:bf:99:31:28:7b:1d:cc:50:8e:c0:cd:
de:ab:e5:2f:b5:38:a4:9e:ae:88:57:23:ec:1c:ff:
67:2b:b8:ee:ee:c5:68:8e:49:85:98:d3:20:4a:ab:
d1:24:6f:46:09:29:5c:f2:d8:5a:b5:6a:6e:d3:fe:
3c:72:80:e2:30:93:c4:f7:b1:29:25:55:78:38:ba:
e9:ba:65:42:fc:5b:6a:f0:43:0b:2c:a5:00:5f:3e:
09:64:3a:3a:1f:86:48:02:99:8e:65:4d:30:b8:ad:
37:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:10:40:6A:F4:32:15:C6:AD:20:04:09:95:69:FA:93:2D:43:6E:6D
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vBBAavQyFcatIAQJlWn6ky1Dbm0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
aa:0f:26:a2:e3:03:2a:6b:ce:65:c4:e2:68:13:23:ba:89:d9:
a8:29:8e:a5:c2:78:16:7b:87:c9:cd:e5:16:f4:6a:a3:86:6e:
dc:75:09:0f:93:f9:e2:c5:8b:25:fc:8f:e1:5e:2d:12:71:fb:
84:4e:31:b9:ef:2b:a2:bd:6d:5a:11:32:47:59:8e:44:86:f2:
d9:6b:30:07:60:c1:14:f9:23:ab:ac:17:b1:05:ad:e2:0c:0d:
00:b9:d6:75:46:69:5d:83:30:fd:73:d8:68:e8:f0:84:d4:21:
94:90:33:c1:4a:18:fb:e6:f2:43:f9:e7:93:64:a6:3f:18:0a:
22:05:bf:b3:c8:72:11:ed:4f:d3:a6:5f:d1:eb:3c:76:ea:c2:
80:59:10:8a:4a:77:ff:fa:a5:92:c4:0a:1a:d4:fa:11:b3:29:
63:39:b0:4a:4e:7f:26:dd:fe:11:95:66:29:48:8c:58:39:41:
28:e2:d5:c7:32:16:87:62:1f:82:28:10:09:ba:46:3f:a2:c5:
a0:d3:d0:fd:f1:27:bf:5d:e7:79:ab:31:25:06:36:0c:0a:18:
2c:b9:2e:fc:78:e6:03:6a:62:50:0e:f1:a8:70:cd:aa:14:c6:
0a:e6:06:3e:ef:65:2a:a2:6b:99:5c:95:02:f1:25:4c:2e:05:
6b:1c:4b:9d
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICNykwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MDIw
MzIyMzZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEJDMTA0MDZBRjQzMjE1
QzZBRDIwMDQwOTk1NjlGQTkzMkQ0MzZFNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC42Gnv1sFSp3hR0NGLYgRD9SpUDcn54FDn6pHm/JbHoymKsBrw
drg5s7ev+oFA38vs4PeBeNLnGfnfRB6/iTvVXH42Iq32s8RXIwsUxdnNEp+iTZzk
pxYQVsSJvn0eCy4hTRvvVurLbj3/ukQ5HGkHqnQFaLsCvevypuevbFiJp63ZJklH
xwuXZTsTJhzwDVrLA1uIca9YjIS/mTEoex3MUI7Azd6r5S+1OKSerohXI+wc/2cr
uO7uxWiOSYWY0yBKq9Ekb0YJKVzy2Fq1am7T/jxygOIwk8T3sSklVXg4uum6ZUL8
W2rwQwsspQBfPglkOjofhkgCmY5lTTC4rTfhAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQUvBBAavQyFcatIAQJlWn6ky1Dbm0wHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L3ZCQkFhdlF5RmNhdElB
UUpsV242a3kxRGJtMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAKoPJqLjAyprzmXE
4mgTI7qJ2agpjqXCeBZ7h8nN5Rb0aqOGbtx1CQ+T+eLFiyX8j+FeLRJx+4ROMbnv
K6K9bVoRMkdZjkSG8tlrMAdgwRT5I6usF7EFreIMDQC51nVGaV2DMP1z2Gjo8ITU
IZSQM8FKGPvm8kP555Nkpj8YCiIFv7PIchHtT9OmX9HrPHbqwoBZEIpKd//6pZLE
ChrU+hGzKWM5sEpOfybd/hGVZilIjFg5QSji1ccyFodiH4IoEAm6Rj+ixaDT0P3x
J79d53mrMSUGNgwKGCy5Lvx45gNqYlAO8ahwzaoUxgrmBj7vZSqia5lclQLxJUwu
BWscS50=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:17 2024 by rpki-client on console-ams.rpki-client.org