Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/ATDzZSCpQ1iUEamPRWtScw6OYyU.roa
File: ATDzZSCpQ1iUEamPRWtScw6OYyU.roa (raw, json)
Hash identifier: U9hn+AWtF2nPZ+ozjwvemVsKmf9XE0bou7ynZjxfDN8=
Subject key identifier: 01:30:F3:65:20:A9:43:58:94:11:A9:8F:45:6B:52:73:0E:8E:63:25
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 39ED
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/ATDzZSCpQ1iUEamPRWtScw6OYyU.roa
Signing time: Fri 05 Apr 2024 19:52:24 +0000
ROA not before: Fri 05 Apr 2024 19:52:24 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14829 (0x39ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 5 19:52:24 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=0130F36520A943589411A98F456B52730E8E6325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:62:95:6d:9b:44:1e:1d:e1:5c:dd:b7:2b:6f:
de:ab:50:10:57:a8:51:27:81:91:3e:18:ce:a3:cd:
73:4e:ce:a6:e9:6e:47:8e:3f:43:d6:ad:0c:19:4d:
93:d2:e1:ba:eb:1a:af:43:89:4e:2b:9a:9e:d7:a5:
96:1c:4d:5a:ff:35:14:b1:1c:4c:13:01:8f:ba:4d:
4f:89:90:c5:db:33:da:70:5d:e7:91:7c:fd:e9:7c:
1e:07:37:4a:15:1d:c4:a4:38:f1:8d:62:00:eb:fb:
89:d5:08:13:ef:62:33:f1:80:54:97:59:b5:95:ac:
17:2c:00:93:02:74:61:e8:83:fe:0f:60:78:12:a0:
0d:d9:ee:53:16:b7:02:00:28:07:36:9e:83:c8:63:
93:df:c5:a5:3f:f6:68:47:6b:c1:29:c5:81:6f:3c:
53:67:92:f2:8c:fc:a2:0b:e4:34:02:3d:42:0f:3e:
8e:85:1b:84:c1:28:27:76:06:bc:df:30:89:cb:f8:
9d:a8:2c:da:c0:17:2f:2a:64:63:21:ce:10:af:4f:
b8:ff:07:eb:d0:97:61:7b:b5:2a:2c:e7:b1:70:ee:
a7:20:17:79:73:1b:de:ac:5e:05:13:1a:10:6b:7f:
29:6d:46:84:b3:f9:2c:ac:59:1c:27:84:44:f9:4e:
c8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:30:F3:65:20:A9:43:58:94:11:A9:8F:45:6B:52:73:0E:8E:63:25
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/ATDzZSCpQ1iUEamPRWtScw6OYyU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
62:8b:28:41:c8:4a:6e:f1:9d:14:82:2d:fa:74:d8:61:a9:4f:
10:8e:d8:97:0e:02:dd:1d:01:9d:f7:84:59:ff:9c:8f:ba:a2:
fe:32:ef:8e:92:f1:db:63:ba:2d:8a:3d:3f:47:48:b5:65:24:
c9:b0:64:58:f6:d6:b6:2c:f3:f2:c0:aa:b2:51:7c:92:ca:af:
74:2a:97:33:3d:3c:ef:74:53:a7:7f:0a:c2:25:0a:2e:53:e2:
d9:92:19:26:dc:c1:fd:0e:89:ae:2b:0e:43:ec:52:c0:0a:02:
5b:1f:14:91:51:38:aa:05:21:5c:bb:da:39:0b:4b:27:c4:90:
9f:a6:12:99:74:6d:56:5b:40:14:1f:a1:75:46:0d:c4:e1:60:
87:50:fc:a0:b2:b7:f3:6b:e8:a7:55:68:9f:b9:80:61:aa:69:
f8:a7:6f:0d:5a:37:fb:d3:07:dc:59:fb:40:a7:ce:ba:0f:a7:
81:24:74:b9:29:cc:74:86:be:75:16:19:86:e6:2f:a1:43:21:
d8:63:4c:3d:df:64:38:75:d2:e2:07:8b:d9:e7:a6:a8:2f:05:
37:54:99:56:ac:f2:7c:4f:48:19:1d:9b:5e:72:63:ad:c5:89:
46:fb:20:61:cd:01:f7:fd:be:b0:45:69:8b:ad:7a:e7:41:6c:
20:f5:c6:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 06:04:28 2024 by rpki-client on console.sobornost.net