Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/0w0YaujKCTEG2VNJTtt-KmPrMS8.roa
File: 0w0YaujKCTEG2VNJTtt-KmPrMS8.roa (raw, json)
Hash identifier: kWdom8Pa6fm1edNTx1msGhklKeqU2qjYoveC/L8MVj0=
Subject key identifier: D3:0D:18:6A:E8:CA:09:31:06:D9:53:49:4E:DB:7E:2A:63:EB:31:2F
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3619
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/0w0YaujKCTEG2VNJTtt-KmPrMS8.roa
Signing time: Sun 31 Mar 2024 17:22:10 +0000
ROA not before: Sun 31 Mar 2024 17:22:10 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13849 (0x3619)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Mar 31 17:22:10 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=D30D186AE8CA093106D953494EDB7E2A63EB312F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:50:d2:e7:48:b7:38:8f:97:ba:93:1e:52:dd:
87:8d:69:72:c1:34:5f:2d:7e:26:57:1f:03:3f:d5:
9b:20:7c:f0:b3:fe:e8:c1:cc:1e:35:80:a2:09:b7:
4f:ae:95:e6:d9:51:92:b8:b3:b1:4c:73:cb:0c:f2:
cd:08:2e:ff:56:75:ac:e3:67:5d:12:2f:75:54:c2:
b6:bb:ab:8f:e4:ae:82:b7:a7:46:f1:45:18:5f:f8:
26:b2:9e:bc:b6:e5:ff:1d:24:a7:d4:9f:45:54:67:
54:c3:98:b6:a5:17:3e:cd:8d:9a:d4:9a:3f:c5:96:
2b:23:5b:4b:57:96:e2:03:3f:17:96:59:df:83:a8:
cc:d4:96:29:5c:55:d9:bb:c4:45:af:7f:4b:f7:a4:
19:ee:8f:68:91:88:d5:3a:b5:68:8d:f5:93:8e:a2:
04:79:86:cc:5e:6b:8f:31:86:65:9a:65:ef:0a:88:
58:4d:d4:b8:f8:8b:7c:a2:c6:df:87:db:7f:c3:a5:
17:ff:45:05:ea:2c:1c:61:5f:ef:ed:03:5b:2d:08:
fe:84:cd:1a:f1:ea:75:a8:15:1f:43:a4:0b:e4:4d:
88:1c:93:c3:45:a9:08:c4:76:4d:b1:bf:40:78:1a:
3e:c9:ef:cf:9d:78:f6:fb:66:ef:f6:b8:3d:ee:13:
f3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:0D:18:6A:E8:CA:09:31:06:D9:53:49:4E:DB:7E:2A:63:EB:31:2F
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/0w0YaujKCTEG2VNJTtt-KmPrMS8.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
71:8d:3a:9f:db:55:e9:97:1a:c7:88:39:8a:d7:7e:88:61:91:
87:8d:3b:5b:ce:78:22:10:f8:28:d7:fe:34:3e:ea:ad:96:22:
7c:13:a4:ce:c0:93:78:00:2c:27:fc:94:e7:23:4a:43:d1:20:
c7:25:44:1d:7b:56:00:9b:10:ac:eb:51:8f:a2:24:4a:08:99:
f6:d6:b6:4d:97:e3:74:32:a8:6c:9e:df:70:ef:db:31:37:91:
97:c0:72:19:3b:49:21:77:a9:5e:b1:64:06:62:95:2f:f1:96:
c1:37:1e:7e:98:8a:04:81:4e:8b:fd:6f:42:5b:c5:61:87:30:
01:94:0c:b7:40:24:7f:91:7d:96:47:75:a4:58:e3:9f:fa:4f:
2a:ff:e9:b5:8a:89:6c:85:28:40:01:02:e8:8a:94:f3:b8:56:
86:c8:1e:0d:07:1a:60:a5:ec:40:8b:fd:a6:c4:c7:58:3f:02:
70:53:3f:14:bc:6b:eb:ca:c2:26:f1:05:61:b6:30:5c:cb:37:
74:ec:7b:97:0d:4f:5f:cd:1b:4c:3c:fe:35:2b:eb:2e:e8:12:
29:a3:6e:da:a6:9f:b8:4c:6f:df:4c:fd:98:21:5d:45:1d:01:
51:18:d9:1c:2f:81:29:2e:23:7c:2d:e8:ea:9d:4c:2a:5f:39:
ad:c5:d9:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 1 00:22:50 2024 by rpki-client on console.sobornost.net