Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/wGI4OLysUzHAm9EP3UKt3gHOdUQ.roa
File: wGI4OLysUzHAm9EP3UKt3gHOdUQ.roa (raw, json)
Hash identifier: 6k6fBY91uG7AXFIqq2j7rPJGBLtXjKY5RTSiO09L7nI=
Subject key identifier: C0:62:38:38:BC:AC:53:31:C0:9B:D1:0F:DD:42:AD:DE:01:CE:75:44
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4DAD
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/wGI4OLysUzHAm9EP3UKt3gHOdUQ.roa
Signing time: Thu 02 May 2024 03:53:42 +0000
ROA not before: Thu 02 May 2024 03:53:42 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19885 (0x4dad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 2 03:53:42 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=C0623838BCAC5331C09BD10FDD42ADDE01CE7544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b9:26:32:f4:91:f9:77:54:27:e5:c7:0c:ea:
a4:14:78:36:66:f6:76:4d:bd:8b:17:00:30:a1:1e:
7e:1b:61:c2:84:d2:a4:35:e7:48:11:90:6f:6d:15:
ff:45:64:3d:8c:4e:dd:1a:87:1a:d2:da:a3:46:ed:
b2:a7:5d:75:da:d9:f2:38:69:2b:fd:a1:fc:8f:bc:
04:57:e3:7d:2d:5c:ee:92:b1:9a:9e:4c:d6:71:a3:
09:37:cf:ca:88:0f:b9:03:2f:3a:49:b0:50:0e:b2:
62:84:95:5f:0b:af:a0:0a:2e:4d:f2:53:4a:bc:ec:
61:37:36:3a:d5:11:19:c5:5f:2c:a8:37:89:e1:99:
2c:aa:a7:9c:47:1a:3e:06:77:08:7d:5f:c0:58:03:
f9:be:3f:60:22:cd:8d:96:09:3e:d4:97:3f:b2:da:
28:9f:b2:a5:0b:a0:61:7e:6e:c2:d3:65:b2:cb:c3:
10:1c:c4:ae:3c:5d:65:f7:44:32:04:a4:3f:ab:ac:
48:97:a5:29:e6:13:3c:24:06:d4:91:f0:39:63:dc:
84:de:2f:a8:6e:fd:d3:fd:5a:dd:86:0d:ed:00:81:
9d:33:75:66:67:ba:0f:50:0d:c9:fc:c5:df:05:ac:
9f:c6:f4:8f:a5:62:3a:98:1f:e3:47:92:ba:6c:a2:
a7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:62:38:38:BC:AC:53:31:C0:9B:D1:0F:DD:42:AD:DE:01:CE:75:44
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/wGI4OLysUzHAm9EP3UKt3gHOdUQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
25:ff:e4:16:87:ef:25:fc:54:63:b6:f0:42:6f:82:b2:0c:e5:
d0:85:81:ed:d9:ab:00:46:16:85:aa:66:10:aa:16:40:c8:13:
c7:d6:c9:90:ff:36:17:66:e5:54:83:ce:34:5c:6d:7a:fe:88:
10:4b:20:87:1a:93:fa:ca:eb:0f:93:37:76:b4:5a:79:21:1c:
2e:a2:1c:08:61:29:85:05:34:04:a5:da:5c:7e:38:d0:6b:15:
50:26:5f:c1:4f:d6:db:56:7b:e4:1f:7f:7b:aa:71:4d:1b:57:
1e:4e:80:5d:e8:41:8f:e0:fb:76:b9:46:ce:43:41:f9:be:2e:
a7:6c:f9:45:96:c4:53:84:f9:4b:a9:26:61:63:88:85:e6:25:
01:19:78:43:95:aa:34:1a:c3:29:99:0d:a2:16:59:8b:61:51:
82:f1:3b:af:18:00:b9:ba:d8:ca:68:e8:70:97:df:fe:0c:c2:
a0:25:13:aa:7b:86:51:0a:83:7a:d0:ef:01:ed:52:f4:e2:c6:
3c:cc:0a:e5:f3:5c:97:50:cd:3d:13:bc:98:c9:2d:09:49:31:
02:a9:1c:61:37:c1:20:34:fe:5a:b3:7a:15:5e:7a:61:3e:6a:
97:a5:85:cc:da:e6:f5:ff:9f:2d:26:00:5c:3a:a1:4f:f9:b3:
5e:f9:51:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:38:35 2025 by rpki-client