Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/vlpYIN4n6tX0UtBAttlgf5vFp3g.roa
File: vlpYIN4n6tX0UtBAttlgf5vFp3g.roa (raw, json)
Hash identifier: 5M2xFzgh8NbRpvKDhLAQ7cN1McRTlunbKsEv0+uSdt8=
Subject key identifier: BE:5A:58:20:DE:27:EA:D5:F4:52:D0:40:B6:D9:60:7F:9B:C5:A7:78
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4805
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vlpYIN4n6tX0UtBAttlgf5vFp3g.roa
Signing time: Wed 24 Apr 2024 14:53:16 +0000
ROA not before: Wed 24 Apr 2024 14:53:16 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18437 (0x4805)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 24 14:53:16 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=BE5A5820DE27EAD5F452D040B6D9607F9BC5A778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f6:47:f4:b8:8a:66:62:b4:00:f4:3d:83:94:
78:d9:c2:a9:75:83:cc:6a:27:17:e2:fb:9d:f6:ff:
80:49:e2:26:f9:75:38:7d:31:a8:46:9b:3c:29:7f:
80:f1:dd:3d:91:84:a4:76:16:94:a0:ca:fd:3d:43:
6e:1c:b2:13:7e:26:e4:b5:08:f6:38:45:17:d3:3a:
5d:a9:f1:8d:cd:21:67:70:4b:7b:2a:8d:fa:ff:a4:
af:b6:6c:62:78:cd:af:d2:68:a7:90:f0:7a:01:5d:
58:56:10:2d:b7:ce:3f:b5:21:ce:ee:5e:9c:fc:d4:
13:79:ff:bc:8c:b8:3e:d4:bf:cb:54:ab:8c:4a:1b:
74:0a:20:8a:cd:32:58:c9:84:cb:78:53:2a:3e:3d:
57:3a:54:6b:3e:e3:0a:35:f0:cb:27:43:36:2a:47:
c1:47:32:36:0a:14:a1:44:a8:fc:48:d5:a1:86:4d:
c1:14:6d:df:f9:72:f9:f9:b6:34:0a:a0:83:db:a0:
78:a2:1b:85:3c:02:1c:fe:9b:51:bf:fe:0a:e7:79:
a3:a4:d2:84:de:2f:e7:24:b1:b4:3e:94:cb:aa:d6:
78:2f:fd:68:b7:c4:40:c4:e4:a6:14:91:c0:88:f0:
c3:2a:79:5c:ec:d9:96:b2:74:b0:b5:25:a0:0b:d6:
2e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5A:58:20:DE:27:EA:D5:F4:52:D0:40:B6:D9:60:7F:9B:C5:A7:78
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vlpYIN4n6tX0UtBAttlgf5vFp3g.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
76:77:48:1f:0f:4a:ed:60:87:bd:d3:26:35:0d:f5:f9:5f:03:
9d:b4:0b:a5:f4:40:eb:35:d0:ce:95:ac:3b:ef:14:13:2e:45:
bd:90:41:5c:a8:3d:e5:bf:39:53:0a:05:17:ad:c7:da:15:1c:
52:ed:83:79:c9:eb:7c:fb:e7:0c:64:d8:d0:0c:56:0f:72:13:
42:e6:65:00:75:c1:a7:8a:7b:7c:ee:af:46:31:f9:d8:70:d3:
fc:6c:d3:8b:e3:d1:0a:71:37:62:9b:a7:fb:32:14:91:6f:2b:
08:16:4e:9e:36:d3:1c:62:12:5e:4f:82:b0:3c:09:3e:30:f2:
33:de:fb:da:d8:85:a7:cf:33:98:05:02:fe:47:80:0b:8a:35:
8a:16:36:24:a8:15:83:2b:00:cf:24:76:43:bc:d6:07:21:b3:
f6:5e:d9:e0:78:ec:ae:05:23:9d:57:1c:d8:20:9c:05:cc:28:
c7:c9:6a:5c:b2:04:eb:ff:63:ee:e9:15:3f:7f:52:d8:29:4e:
f7:86:80:0e:3c:0d:bf:af:c5:e5:29:27:f6:1a:49:ad:9f:c8:
20:55:56:ca:84:e6:fc:e9:4b:4e:ee:6d:ef:5b:5e:99:62:e7:
9f:a7:ee:13:97:95:f4:3e:68:f5:dd:6b:e1:c0:e8:39:ef:33:
18:6c:00:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:42:00 2025 by rpki-client