Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/yuGUzjWn_Oiv3-3DYB20k343gj0.roa
File: yuGUzjWn_Oiv3-3DYB20k343gj0.roa (raw, json)
Hash identifier: yXQRkcbM3W+3ms7KrpgD5uNhXRspdm1PqyNELk1oOjo=
Subject key identifier: CA:E1:94:CE:35:A7:FC:E8:AF:DF:ED:C3:60:1D:B4:93:7E:37:82:3D
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5215
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/yuGUzjWn_Oiv3-3DYB20k343gj0.roa
Signing time: Wed 08 May 2024 00:53:55 +0000
ROA not before: Wed 08 May 2024 00:53:55 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21013 (0x5215)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 8 00:53:55 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=CAE194CE35A7FCE8AFDFEDC3601DB4937E37823D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:87:c2:96:fb:24:b7:4c:e7:74:62:f0:f8:22:
25:24:a2:c6:c8:52:fe:bc:76:5c:f6:65:f5:a0:36:
86:76:25:ed:29:43:9e:46:f4:4b:d5:04:75:ce:30:
2a:10:e6:28:2d:ac:97:c5:2c:68:79:bd:cc:0b:6d:
6f:80:08:a3:b6:be:f4:5c:9f:6b:b1:25:1a:ce:e0:
10:b2:c0:95:1a:ee:77:7f:f2:67:6b:69:97:a9:b8:
0b:7f:70:aa:90:8f:bb:af:ba:a4:25:fb:a1:8f:51:
d7:c9:22:1e:df:77:43:07:a0:65:c7:4d:a5:8a:39:
7d:c3:c3:1d:12:56:a8:fe:0f:4f:1c:30:f3:10:bf:
0f:96:1c:d3:68:55:c8:a8:ae:53:aa:22:91:fd:e3:
db:c3:4d:b3:a8:5b:17:47:bb:13:be:ad:c1:19:34:
a3:70:89:ae:1b:05:1f:b7:f1:4d:a0:73:b7:fe:1d:
ec:14:86:b6:c0:26:08:b3:c3:ed:00:fd:2f:67:6a:
bd:24:4b:bc:de:8d:54:e5:24:8e:ba:d1:15:f5:18:
d4:58:b6:d3:d4:33:30:92:41:e5:bc:8b:1a:c0:fd:
17:f6:84:11:e1:07:32:47:bb:1f:f3:ed:70:d2:3e:
14:9c:20:77:89:b0:0a:89:c9:3b:ec:b4:5d:17:a6:
0a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E1:94:CE:35:A7:FC:E8:AF:DF:ED:C3:60:1D:B4:93:7E:37:82:3D
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/yuGUzjWn_Oiv3-3DYB20k343gj0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
92:5e:75:31:80:8b:e9:6b:97:08:9f:a0:45:f2:7a:4f:82:a2:
02:17:aa:0c:52:ba:1e:ff:12:a8:00:93:ce:a7:c3:e1:fa:36:
c6:c6:ea:a6:35:12:68:48:fc:aa:e1:04:41:34:7b:6f:55:c9:
cc:47:90:ba:7f:57:c1:0e:3e:54:a1:b8:4b:27:71:37:12:97:
a0:7d:04:e4:d8:d9:d6:2d:5c:03:df:f2:a2:07:b3:52:b6:e2:
dd:70:ca:06:08:e2:f4:e5:20:dc:53:9d:cf:6f:b8:84:d4:be:
b5:8a:64:2a:ae:de:60:c5:de:cc:f1:4d:a2:7c:21:b8:82:43:
19:e7:76:17:0d:57:e3:72:72:1f:cd:62:e9:c8:0a:82:82:2d:
56:db:6b:30:68:52:2a:98:90:ff:91:6b:27:8d:e6:9b:e9:2a:
83:8d:97:00:f0:8c:7f:f6:28:71:cc:0b:49:35:e1:e2:63:49:
af:59:7b:de:46:57:95:9a:2c:ea:c0:f7:96:1c:3f:07:41:87:
7e:d6:09:4a:46:d6:0f:d6:d6:e0:2d:cb:f4:5c:17:8c:19:62:
e1:6c:56:f3:47:b7:22:42:ef:10:9b:dd:b7:7d:31:cd:41:ce:
30:d7:05:03:a8:bc:d7:c9:d0:f4:ee:d5:93:f6:d0:b7:04:07:
cf:2e:1b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:56 2024 by rpki-client on console-fra.rpki-client.org