Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/4QGWJVOeBqOoLT87QxoajHjNrd4.roa
File: 4QGWJVOeBqOoLT87QxoajHjNrd4.roa (raw, json)
Hash identifier: EURVskQEJAahnmny6E3vVDpX4Xxfc59rGmODUh2fU7A=
Subject key identifier: E1:01:96:25:53:9E:06:A3:A8:2D:3F:3B:43:1A:1A:8C:78:CD:AD:DE
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4B59
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/4QGWJVOeBqOoLT87QxoajHjNrd4.roa
Signing time: Mon 29 Apr 2024 01:23:29 +0000
ROA not before: Mon 29 Apr 2024 01:23:29 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19289 (0x4b59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 29 01:23:29 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E1019625539E06A3A82D3F3B431A1A8C78CDADDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5d:4e:26:ce:e1:18:27:bf:dc:c1:f6:1f:12:
e4:1e:0c:4d:43:fc:0e:e1:36:cc:fb:30:8a:85:ba:
db:8a:d6:d7:72:d6:6c:9c:c8:15:93:96:1b:07:d8:
1d:94:d4:3a:e2:4a:49:88:45:87:00:b2:72:c9:14:
4e:0d:42:7c:eb:f4:e1:34:82:64:8b:67:b7:a2:e2:
04:ff:95:c8:a5:f0:9a:5f:28:1e:93:8f:ba:b1:fd:
ab:f1:f8:6b:f0:06:5f:61:bc:c4:40:69:27:07:c7:
77:be:3b:9e:fb:01:34:82:21:4c:d3:62:bf:a6:e9:
80:02:78:73:c9:52:a2:da:42:aa:f0:33:f6:11:d0:
5d:0e:05:86:07:7c:f2:4c:ae:b3:26:5a:4d:6d:4d:
bb:e0:47:65:3f:44:02:44:99:14:42:33:5d:5d:b8:
3d:93:dd:27:56:15:3a:3f:62:9c:f8:9c:35:b8:a1:
5f:82:7d:e4:b8:02:8c:04:a1:26:91:7e:13:89:f1:
45:1e:61:ef:a2:11:9f:9a:3b:f8:be:dc:f5:61:50:
f2:1f:55:9c:6e:ea:20:ba:d1:6e:c3:a9:27:35:ef:
db:f7:09:5b:9d:be:d3:fe:86:1d:9d:47:a7:8c:1d:
d6:80:25:2a:a6:f2:c1:f5:e1:69:53:ce:52:97:3e:
46:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:01:96:25:53:9E:06:A3:A8:2D:3F:3B:43:1A:1A:8C:78:CD:AD:DE
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/4QGWJVOeBqOoLT87QxoajHjNrd4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a4:48:ac:f4:1e:1e:34:84:a6:2b:67:c7:20:36:52:9a:f9:e7:
20:e6:bb:7a:ba:7f:bb:a8:8c:0f:57:30:f8:66:f9:59:1f:e8:
53:e3:d6:8d:db:da:29:9e:b8:c5:69:77:81:74:be:a9:04:e7:
b2:b9:f5:14:69:1b:f6:32:6a:ad:7c:d0:2b:a2:56:34:08:c9:
15:26:cb:ee:65:42:d0:86:b3:44:36:75:72:30:12:4e:14:c7:
b9:0f:9e:78:eb:8f:74:22:c1:a9:44:6c:55:95:0e:bc:b6:b5:
11:08:d4:78:85:1e:1b:a0:04:25:2a:20:17:66:fd:04:7f:d7:
10:85:44:9d:c8:7c:a0:fc:f8:dd:91:2b:f1:e4:02:57:a4:fa:
fc:4e:8c:15:49:6b:61:59:e5:7e:3a:69:16:57:03:01:7f:48:
c5:f3:4e:1b:36:71:10:51:66:ad:b5:8c:99:b1:9b:9c:6f:0f:
55:b3:2b:69:9b:38:52:f5:25:d0:72:8e:23:cc:81:4c:b6:c6:
ab:35:ee:37:37:ad:d8:b8:43:ba:ce:cb:c7:d9:4d:4f:1f:07:
93:a7:f9:ce:43:72:7e:4c:92:7c:e6:68:5a:a1:94:bd:30:a6:
9a:a4:3d:2d:98:bf:73:ce:c7:e9:1a:13:15:46:cf:65:90:4a:
0d:87:6e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 06:28:42 2024 by rpki-client on console.sobornost.net