Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/23ysbaVg_wHDqS48iL88bwGR30s.roa
File: 23ysbaVg_wHDqS48iL88bwGR30s.roa (raw, json)
Hash identifier: NANJhmfxJQRU3b+bW/rZSUf1R+z7vJqB06DLO2hkWYA=
Subject key identifier: DB:7C:AC:6D:A5:60:FF:01:C3:A9:2E:3C:88:BF:3C:6F:01:91:DF:4B
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 35A9
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/23ysbaVg_wHDqS48iL88bwGR30s.roa
Signing time: Sun 31 Mar 2024 03:22:11 +0000
ROA not before: Sun 31 Mar 2024 03:22:11 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13737 (0x35a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Mar 31 03:22:11 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=DB7CAC6DA560FF01C3A92E3C88BF3C6F0191DF4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e6:b0:4f:89:bc:2a:d3:1a:04:2c:b8:11:db:
78:fb:db:cd:fd:2f:31:6b:95:bb:d8:e2:8e:1a:b4:
cd:52:10:e4:20:8a:9d:77:57:d6:1b:ec:99:4d:5c:
4d:2d:d6:db:d6:3e:e1:52:94:0a:c7:46:c2:da:e1:
4b:fd:f1:1b:ab:04:e1:38:80:67:27:fd:93:d2:34:
dd:c9:73:17:c7:c9:c8:5e:c6:11:9c:27:5a:ed:c3:
32:ca:18:39:09:66:5f:e4:0a:c4:9d:78:e9:28:41:
5d:71:30:17:04:b2:9b:b3:7a:b6:a1:f9:8d:38:e5:
75:24:6f:da:c4:09:9d:40:2a:ef:8e:84:32:a6:bc:
8d:47:5b:b0:5b:4e:9e:71:96:c9:50:12:b1:f9:62:
9b:01:1b:c1:9a:d3:8c:10:d5:7a:ee:ea:84:53:cf:
25:32:b8:16:bf:3b:3c:31:26:fd:b4:3b:cf:d1:85:
2e:8f:f2:3d:97:cd:da:91:95:41:75:d3:95:02:a9:
3f:d4:9b:a1:30:10:11:b4:72:31:24:a5:8e:bb:ae:
0a:c9:4c:26:ef:bf:90:f6:56:a4:69:d9:ca:da:7f:
dc:c0:dd:a1:6a:47:48:e9:7d:e6:fc:f5:ca:3e:7b:
4f:50:fa:12:ad:06:1d:d5:a6:89:9b:11:41:3d:eb:
e6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:7C:AC:6D:A5:60:FF:01:C3:A9:2E:3C:88:BF:3C:6F:01:91:DF:4B
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/23ysbaVg_wHDqS48iL88bwGR30s.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
07:4b:a9:c9:7a:89:19:84:04:35:6f:1d:3e:c7:1d:9a:98:5f:
2d:1d:aa:24:7c:c9:cf:1e:ef:d3:25:a5:03:9d:15:67:a6:28:
c1:f7:75:f8:80:00:0e:61:c8:f6:80:a8:dd:f6:20:4f:01:de:
65:16:c0:1f:f3:c1:8c:8c:85:b4:d0:57:69:3d:71:01:20:5a:
aa:6e:26:56:9c:3e:ca:f4:b0:41:90:5a:dd:ac:d6:74:07:89:
c1:1e:25:f0:46:e8:ab:26:4b:92:53:6a:10:b4:5d:dc:81:7e:
22:62:36:77:84:eb:e6:b0:ea:82:68:ae:47:28:3f:ec:e0:0f:
ef:2d:64:f0:e4:bd:d7:a7:38:6b:90:8c:c8:a1:4f:60:22:4e:
b0:15:15:4a:3f:1e:e1:69:86:8f:a7:f5:0a:ff:57:31:07:19:
f1:f6:b8:07:59:34:78:ca:ca:cc:a1:dc:1f:25:84:13:13:be:
9b:59:d7:d7:1d:48:13:41:75:0c:56:c0:6d:0e:55:7e:ae:f7:
8e:e2:17:33:41:70:92:75:94:9a:23:5e:09:5f:8d:ae:40:00:
2e:18:c7:2f:ef:91:e7:95:ab:0f:ae:3f:c2:ad:57:3b:ae:17:
f7:95:59:cf:2c:c6:3d:97:ff:3f:8f:a1:bf:43:a3:9a:be:ed:
2b:00:0d:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 31 09:52:10 2024 by rpki-client on console.sobornost.net