Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/BOs9NB01U6GNuWn6o3Z6_g1MhkQ.roa
File: BOs9NB01U6GNuWn6o3Z6_g1MhkQ.roa (raw, json)
Hash identifier: Nq6xK+Ja5MfYvZrXNMe8Zc3qZUeNM24Y8ZHIt8IVWSM=
Subject key identifier: 04:EB:3D:34:1D:35:53:A1:8D:B9:69:FA:A3:76:7A:FE:0D:4C:86:44
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3FED
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/BOs9NB01U6GNuWn6o3Z6_g1MhkQ.roa
Signing time: Sat 13 Apr 2024 19:52:52 +0000
ROA not before: Sat 13 Apr 2024 19:52:52 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16365 (0x3fed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 13 19:52:52 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=04EB3D341D3553A18DB969FAA3767AFE0D4C8644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:17:08:d4:cf:15:34:54:cb:22:bf:bf:37:f9:
e6:83:4a:28:a1:43:5f:15:2d:e1:7d:d0:20:95:62:
00:af:8d:b2:75:f8:06:e9:19:74:fd:6f:93:2b:38:
4e:6e:01:64:e2:f3:ec:dd:64:91:56:56:80:4a:80:
e3:89:80:3c:29:13:ea:c0:fc:d3:7a:5a:fb:ca:be:
e7:9b:5d:a1:e9:bb:e6:0f:cd:80:2a:fb:4f:ff:9f:
66:38:dc:1d:ad:d3:c2:1a:d5:62:81:74:49:28:fb:
8d:ed:49:ff:1a:57:7c:78:ff:e2:70:52:6b:63:ac:
cf:76:a4:b9:14:3c:96:8a:13:48:47:4c:bd:38:8d:
6b:94:c5:81:50:ac:1e:90:98:c7:b4:0f:2d:db:11:
67:9e:35:12:b2:be:66:26:8c:8f:c8:f4:26:78:a0:
b1:af:67:15:dc:1c:5b:62:2d:53:d2:a5:ec:f4:d5:
e2:b4:f1:7a:99:44:3a:e2:f8:90:ae:76:0e:e2:3b:
57:5e:85:4a:c4:e6:b9:1f:ea:5f:ca:c1:8e:e7:af:
d1:9b:81:cd:6b:0e:c1:e2:fc:8c:c8:4d:d6:cb:2d:
2e:40:7b:d5:7f:03:62:7b:f6:88:64:09:c8:b5:e7:
38:8a:a8:ab:f6:29:6b:99:09:22:39:82:af:8c:0a:
b1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:EB:3D:34:1D:35:53:A1:8D:B9:69:FA:A3:76:7A:FE:0D:4C:86:44
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/BOs9NB01U6GNuWn6o3Z6_g1MhkQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
b3:de:4e:39:08:b5:a0:36:5e:af:8c:1a:ca:bc:b9:f5:f5:d9:
30:ab:e1:d8:cf:ad:70:fd:fc:0d:01:b2:85:ba:7a:41:31:18:
ef:0b:a6:27:02:5d:d7:70:3c:7c:d4:c8:6a:34:4f:ac:95:72:
0d:2b:2b:e3:48:2c:eb:28:d6:52:2c:58:02:48:39:e7:92:09:
62:e5:5b:bf:2e:07:13:80:46:68:8f:b2:87:c0:5a:12:dc:f4:
fb:0c:df:e6:3a:04:ae:98:6e:41:fa:31:64:9d:4b:d8:46:d8:
00:b3:18:05:1c:98:01:c8:29:21:7a:1e:21:ea:e4:f7:0d:06:
b2:2a:e0:1f:84:ec:3d:67:c8:29:e6:3e:d6:0e:61:d7:61:3c:
e8:9a:d7:1d:37:0c:46:e1:9f:ca:3b:c1:30:fc:ea:14:aa:bb:
7b:cb:b1:fa:27:29:da:e9:d1:3a:2e:b8:79:f5:76:3a:84:d8:
7e:5f:be:16:f8:1d:3f:b3:08:96:02:e7:92:13:51:25:9e:6f:
b6:01:c5:49:44:78:f9:4e:db:28:5f:04:bb:c5:d3:8f:e3:af:
43:7b:98:11:46:ea:2a:dc:28:fa:e8:7b:cc:a4:f9:1a:0b:3d:
46:1f:41:5d:03:50:e0:50:d2:55:7f:82:c5:c1:3a:4c:a5:1f:
36:7d:94:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 14 01:27:52 2024 by rpki-client on console.sobornost.net