Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/vSbDopY4I7hPJ2yu6zulVZ4QhTU.roa
File: vSbDopY4I7hPJ2yu6zulVZ4QhTU.roa (raw, json)
Hash identifier: pJtjsjL1Ku7uYAbeaKwst4LxQ9RUM2nKbcM74ZYDYgg=
Subject key identifier: BD:26:C3:A2:96:38:23:B8:4F:27:6C:AE:EB:3B:A5:55:9E:10:85:35
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5169
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vSbDopY4I7hPJ2yu6zulVZ4QhTU.roa
Signing time: Tue 07 May 2024 03:24:00 +0000
ROA not before: Tue 07 May 2024 03:24:00 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20841 (0x5169)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 7 03:24:00 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=BD26C3A2963823B84F276CAEEB3BA5559E108535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0d:9a:c1:c6:0f:39:af:4f:97:e1:c0:a3:d8:
4b:d3:f3:3e:66:5a:d8:ca:ae:f0:c8:b7:35:6e:91:
bc:c7:ac:2f:ae:ed:a5:6a:98:25:cc:03:38:87:e7:
5b:3f:41:82:d7:5a:55:1d:52:59:55:e2:4f:f9:88:
5a:a7:1c:d0:27:36:45:9f:3c:f5:0b:2a:ca:64:77:
c4:ca:7d:21:d7:d4:8a:75:e7:6a:85:5e:f6:83:c8:
66:55:59:04:15:a5:be:9e:5f:08:15:9d:ea:cd:54:
74:f0:f6:97:64:a4:16:b7:bc:cd:ab:6c:b9:b5:d5:
6f:38:ad:6b:fc:94:39:fc:97:f4:bb:27:08:b7:46:
ae:34:34:da:a3:5e:fe:35:2f:26:25:f2:0f:7c:94:
53:b9:43:b0:ba:fd:d3:2f:8f:07:5f:ca:cf:29:c3:
38:57:c4:17:58:ca:5c:ea:08:2c:3d:07:02:02:f4:
51:35:06:25:24:76:04:8b:87:7f:6e:26:f6:18:a6:
4d:62:bc:31:49:52:b1:3d:16:05:68:d9:75:fc:27:
5d:67:63:ac:76:35:9a:55:41:00:da:06:9a:c4:ef:
45:d0:26:7d:33:3d:99:e8:98:28:ad:09:fb:06:9f:
a9:4c:f5:45:fd:e9:84:2c:38:3d:21:2c:c6:0e:9d:
ed:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:26:C3:A2:96:38:23:B8:4F:27:6C:AE:EB:3B:A5:55:9E:10:85:35
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vSbDopY4I7hPJ2yu6zulVZ4QhTU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
20:63:6a:f0:ca:d4:d9:0e:42:28:ec:44:bb:31:d0:48:ba:b6:
d5:e5:1d:9e:1f:ae:62:14:76:f7:c0:b4:fe:76:4c:dc:d3:2d:
07:82:0e:52:0e:84:51:17:ea:d4:96:2b:31:5f:0e:6e:e3:ba:
65:e3:2d:e2:05:2c:41:c8:90:1f:00:d8:bd:22:fb:52:64:ed:
bd:02:58:a6:39:2d:ea:db:8f:2e:30:6d:55:fe:93:05:b3:40:
fb:aa:c0:32:4a:ec:72:1c:39:58:4e:36:74:6a:96:c0:96:81:
eb:f8:68:88:50:e9:b3:77:cb:8a:56:99:8d:27:b5:db:a7:20:
0b:8b:1f:09:44:bb:38:9a:56:73:29:ed:34:fe:77:41:c4:77:
ba:8e:64:6a:1d:ef:eb:b0:05:2e:e7:f3:f1:73:5a:9b:3d:03:
2f:33:d9:73:35:6c:02:6a:f3:fd:a1:a5:64:47:db:cb:5b:fc:
93:5f:11:c5:43:f2:3e:1a:0d:ab:22:87:41:4f:2b:22:a4:f7:
fc:ce:9f:98:97:ef:20:e6:1f:de:4c:67:18:1e:ab:ed:91:4a:
3f:a0:62:8e:00:2f:7e:87:cb:47:33:a1:1e:bc:d8:f8:4f:99:
19:ed:fa:42:e9:73:3e:04:37:aa:bb:99:83:da:61:a8:a9:c4:
c3:21:c5:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:53 2024 by rpki-client on console-fra.rpki-client.org