Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/wVTFV24CUxSleuE33qejOUGXhKY.roa
File: wVTFV24CUxSleuE33qejOUGXhKY.roa (raw, json)
Hash identifier: LCpbQGhBMsoygYIlS/HZnEE4ww8C+S2npS5mWLJiYEA=
Subject key identifier: C1:54:C5:57:6E:02:53:14:A5:7A:E1:37:DE:A7:A3:39:41:97:84:A6
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 54A9
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/wVTFV24CUxSleuE33qejOUGXhKY.roa
Signing time: Sat 11 May 2024 11:24:10 +0000
ROA not before: Sat 11 May 2024 11:24:10 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21673 (0x54a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 11 11:24:10 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=C154C5576E025314A57AE137DEA7A339419784A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8c:4c:18:b2:09:86:5a:2e:4d:01:f7:ac:be:
39:61:76:6d:ea:5c:ef:2c:70:b4:51:05:f3:e6:ff:
14:a4:a0:2d:fc:04:bd:95:2b:01:c5:5c:7b:4d:21:
19:a2:27:4b:0e:e6:47:07:38:db:a6:e7:e4:f2:c6:
2c:a6:7b:27:34:42:59:bf:a5:fe:d9:7b:9c:62:a6:
15:5e:1d:ff:f4:59:f5:08:11:b0:4d:67:26:d9:e7:
f0:5d:2b:9f:dc:b1:62:2c:04:27:f3:00:0e:43:1a:
bc:f2:00:9b:53:75:f3:d7:5e:64:7e:97:07:9c:28:
ba:40:b0:ee:28:47:9d:08:03:33:85:62:f1:f9:9d:
52:2a:c2:e4:28:af:91:59:15:54:bb:e1:2f:34:59:
83:b9:ad:15:70:60:b6:7c:fa:80:e6:7c:9c:49:9a:
af:bf:0a:eb:23:10:a2:e0:97:d4:62:21:81:36:0a:
46:de:1e:8d:2b:7f:4d:5f:46:e6:fd:da:0c:8b:e4:
21:06:1d:5c:e5:01:b3:b4:b8:62:f0:b8:9a:0c:ec:
b6:a5:a9:5d:b4:af:21:46:f4:5f:55:76:ad:2f:ef:
c3:aa:10:c5:85:91:5f:e9:47:b6:02:98:35:93:9c:
13:ef:97:0c:18:84:fd:78:bc:90:67:d3:c7:12:3a:
13:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:54:C5:57:6E:02:53:14:A5:7A:E1:37:DE:A7:A3:39:41:97:84:A6
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/wVTFV24CUxSleuE33qejOUGXhKY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
1f:51:e8:c5:e0:7d:89:f4:bf:66:4a:da:c7:6d:51:73:e9:9a:
6d:e4:ec:9d:1a:3c:d3:86:a0:f6:d5:29:e7:f4:4a:5f:7b:9b:
52:7e:eb:7e:3f:0d:e3:c5:c0:3e:83:de:bd:c6:70:a0:32:e1:
dd:ba:20:c8:de:f0:17:37:b0:6b:fc:3b:ab:e1:24:7d:c8:56:
2a:61:6c:b9:49:3e:b2:0b:6b:fa:ae:bb:4d:47:d5:a8:a5:35:
95:aa:ff:52:52:a0:e0:cd:29:aa:f3:46:97:49:dc:c7:f6:2d:
fa:43:b3:e0:e2:5a:61:b0:de:b2:0e:49:75:39:2e:85:66:ed:
c1:2e:2b:90:4c:eb:c7:91:32:78:7b:2f:a5:7f:37:46:a0:45:
fd:90:7b:4a:44:16:ff:5b:3a:84:13:40:69:fe:6a:70:6c:18:
82:12:d2:7b:8f:f9:a1:ec:8b:e7:fa:22:3e:20:a6:7b:8a:57:
16:84:70:49:63:9b:dd:31:7b:ab:11:b3:79:61:25:03:35:74:
4e:e7:2c:1c:51:ae:72:8e:35:f2:cb:74:4f:6d:ab:a5:93:ed:
29:77:6b:2e:6f:21:f4:f5:d6:44:f4:e6:06:3e:a4:5d:56:92:
64:88:a6:a2:0a:98:ce:d8:65:b2:51:0d:31:85:08:e4:ff:e8:
5f:a9:cc:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:54 2024 by rpki-client on console-fra.rpki-client.org