Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/zWyzhg2U1c2CbdnpoHJ2PcexU0g.roa
File: zWyzhg2U1c2CbdnpoHJ2PcexU0g.roa (raw, json)
Hash identifier: t1XGAMlt824EJmh/CXYJISdiwqdK4m52TLPJsXq1qZU=
Subject key identifier: CD:6C:B3:86:0D:94:D5:CD:82:6D:D9:E9:A0:72:76:3D:C7:B1:53:48
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 555D
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/zWyzhg2U1c2CbdnpoHJ2PcexU0g.roa
Signing time: Sun 12 May 2024 09:54:10 +0000
ROA not before: Sun 12 May 2024 09:54:10 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21853 (0x555d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 12 09:54:10 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=CD6CB3860D94D5CD826DD9E9A072763DC7B15348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:01:21:dc:21:16:03:07:d4:2d:15:52:cf:2e:
a3:4c:c0:f8:73:ae:a7:c8:fc:50:b8:25:14:d8:16:
e8:43:0f:2d:b4:cc:89:c9:cc:c3:93:e8:d6:9d:b3:
a9:15:a5:8a:57:ef:77:bf:75:51:83:00:a9:d6:40:
1b:7f:e6:ea:8a:c0:c6:90:a6:91:44:9c:96:64:27:
24:82:2c:6a:b4:65:a9:a9:c8:c0:bb:8d:c3:9e:a6:
0b:1a:8a:2f:67:00:04:3c:a2:c2:a5:33:76:6e:7e:
87:49:2f:35:d9:80:df:49:a8:8c:95:43:68:32:4e:
af:c9:f6:8a:73:21:e8:2a:f2:17:a1:12:c5:84:28:
d7:2f:8a:67:bc:4d:c0:61:ad:8b:05:0e:16:31:50:
a7:04:29:3c:6d:af:c2:3c:86:4a:be:26:30:6f:f7:
c8:e7:ee:9f:fe:02:5e:e8:55:7d:37:e4:9e:f2:29:
de:fa:d1:7a:45:39:57:69:90:e7:a3:2c:f1:fa:61:
80:bf:91:40:08:32:4c:4a:d6:38:84:fb:2d:c5:4c:
df:66:a4:2a:54:d4:74:bd:4d:84:55:f1:98:eb:fe:
72:66:c7:cc:1f:d0:f7:c6:41:c3:ac:6c:5d:09:80:
1d:59:6c:76:79:5b:fd:f3:66:84:84:4c:1c:26:49:
2c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:6C:B3:86:0D:94:D5:CD:82:6D:D9:E9:A0:72:76:3D:C7:B1:53:48
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/zWyzhg2U1c2CbdnpoHJ2PcexU0g.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
22:99:8e:ff:26:a2:f8:00:75:af:20:f3:0d:11:56:8f:bc:e7:
59:12:a7:5b:78:e5:41:88:24:20:65:3c:7d:04:db:bb:df:13:
bf:12:3e:a7:d9:d1:6b:c9:3f:16:67:02:0e:f1:a8:b3:ae:9a:
5a:a7:06:95:17:fc:06:ba:ae:4d:e1:3c:97:28:0c:d7:a0:02:
ba:97:c0:05:d6:74:74:35:99:84:5e:86:27:52:98:50:7d:85:
76:9f:a2:e1:6d:f6:dc:0c:01:1b:f2:f3:7b:4f:51:5f:8d:98:
d7:b3:94:e7:6d:4e:ab:d0:1e:d8:a4:34:15:c3:90:b0:b8:7e:
73:c0:6f:c9:d8:f4:a1:32:5f:25:ed:b5:aa:8e:b5:bb:76:d8:
0c:38:d1:2a:fe:5b:07:d4:e9:47:ba:a5:5a:b6:2c:f4:97:3f:
f9:30:ff:b7:35:16:63:76:b7:9b:c8:a3:99:c5:84:90:72:d4:
8e:76:73:1b:4e:10:bc:5f:53:0e:95:d8:c5:4e:0d:ba:eb:b4:
d0:a6:56:f0:e9:2b:52:ca:3d:57:53:ce:17:62:e3:18:9b:72:
bc:c5:f5:8e:ab:50:34:4f:84:ed:a5:85:41:24:db:c8:9d:a0:
62:99:6b:f0:93:14:99:34:68:ae:6e:d8:1a:91:3f:cd:0d:53:
92:5e:ad:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:57 2024 by rpki-client on console-fra.rpki-client.org