Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/wRpb8MBQgFvGNMVBJANJbjYv4pU.roa
File: wRpb8MBQgFvGNMVBJANJbjYv4pU.roa (raw, json)
Hash identifier: eKl7E4LWvZSxrl59CS+7cyqRFqVTZp9jsEOuivAMxuo=
Subject key identifier: C1:1A:5B:F0:C0:50:80:5B:C6:34:C5:41:24:03:49:6E:36:2F:E2:95
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5429
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/wRpb8MBQgFvGNMVBJANJbjYv4pU.roa
Signing time: Fri 10 May 2024 19:24:04 +0000
ROA not before: Fri 10 May 2024 19:24:04 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21545 (0x5429)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 10 19:24:04 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=C11A5BF0C050805BC634C5412403496E362FE295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f6:d9:70:15:32:6b:24:2d:95:b7:10:0e:fe:
a1:a7:e0:3a:36:57:40:cd:cc:6a:fc:95:58:4c:05:
b9:89:26:71:2f:6a:a2:a2:3a:42:be:f9:4b:23:7a:
0f:1a:05:26:f4:c7:98:3b:aa:b6:01:a7:d3:28:67:
34:00:b6:62:6b:24:5f:2b:5a:71:4f:ae:34:3c:29:
2e:d7:f5:09:1f:ca:18:25:83:0c:5f:64:8f:09:ab:
3d:af:bb:fa:8a:9f:62:41:4f:05:c9:a6:07:3d:58:
3a:9d:b3:bf:58:18:9a:eb:80:46:97:45:10:34:60:
ca:4c:ce:c1:6b:cb:bc:50:2f:f6:5b:23:93:9e:d7:
6a:46:e8:a4:1b:1f:6b:22:2e:42:c6:b4:e1:74:f6:
89:6b:fc:2c:e5:ed:e9:3e:d3:57:2c:33:3d:73:42:
f0:e3:ff:05:85:92:b7:3b:d3:3c:d3:fe:44:08:17:
ea:b6:53:bc:74:4f:eb:a8:c0:5c:7e:31:6b:ec:d9:
1f:87:cb:fa:9c:52:ea:55:8a:18:d3:5d:1d:19:6e:
11:4e:38:93:79:5d:6c:9a:99:b0:21:c6:52:1d:39:
6b:ad:aa:ed:1e:68:0d:00:ac:79:bf:1b:83:ac:c5:
4c:7e:82:c5:9c:6d:bf:e0:53:65:36:c0:cd:a2:78:
83:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:1A:5B:F0:C0:50:80:5B:C6:34:C5:41:24:03:49:6E:36:2F:E2:95
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/wRpb8MBQgFvGNMVBJANJbjYv4pU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
b1:e6:e2:96:68:6e:9d:cf:61:8c:26:f0:b0:38:66:6b:b9:bd:
09:87:34:42:1b:9f:40:fa:41:02:5f:89:9a:e4:95:29:e7:d5:
37:5c:7a:2c:28:13:20:97:56:14:73:e9:1a:d1:ab:22:9b:9a:
58:9e:6b:4f:bd:e1:3e:43:c6:11:72:cc:7d:5c:b2:0e:55:d8:
dc:a1:16:9d:6b:3a:d8:7a:64:98:f3:43:00:3e:16:01:95:63:
3f:e9:e2:43:02:da:7b:bc:00:3d:74:43:f1:b1:b4:3f:d8:85:
98:2b:ec:db:a0:33:13:e4:2c:c3:c7:d9:48:c5:55:59:d1:e8:
22:dd:56:6f:4b:87:3c:4b:65:83:94:cb:b5:dc:22:e7:30:ff:
05:d9:da:b2:d6:88:89:e6:c2:3b:fa:41:28:17:0e:8f:43:b8:
35:1f:b1:8c:34:8d:72:b4:5f:99:8a:da:01:8d:19:95:f3:15:
6c:a9:b7:2d:b8:b9:36:26:6d:d0:48:4d:db:0e:5a:87:53:19:
dc:d1:ce:ef:2e:82:7c:0a:c6:14:96:b0:9e:d0:cd:60:d6:4e:
fb:58:0e:8a:44:50:6a:b2:8e:4d:bf:c6:e1:4d:0a:fd:ab:47:
d9:e0:fb:05:9d:1e:24:65:33:72:2e:ef:ff:00:42:75:ac:77:
2d:3d:0d:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:54 2024 by rpki-client on console-fra.rpki-client.org