Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/G2eZcfPQbg-NykE0Klfznz74znQ.roa
File: G2eZcfPQbg-NykE0Klfznz74znQ.roa (raw, json)
Hash identifier: 1YHuWJXTGNgPlfIFdgX5aKrAK75cZ/CGd0wxjeANwnw=
Subject key identifier: 1B:67:99:71:F3:D0:6E:0F:8D:CA:41:34:2A:57:F3:9F:3E:F8:CE:74
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4609
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/G2eZcfPQbg-NykE0Klfznz74znQ.roa
Signing time: Sun 21 Apr 2024 23:23:16 +0000
ROA not before: Sun 21 Apr 2024 23:23:16 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17929 (0x4609)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 21 23:23:16 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=1B679971F3D06E0F8DCA41342A57F39F3EF8CE74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2e:79:55:39:f5:87:43:6e:aa:5f:80:89:09:
a2:cb:bf:75:61:cf:d9:f7:84:68:a3:10:b7:27:8a:
8e:39:43:0c:e6:2c:6c:33:1d:df:92:d6:68:74:9f:
fb:89:2a:80:2b:ec:8d:4e:13:c3:ce:93:bc:74:dd:
dc:8e:f3:b5:37:28:05:93:e2:ed:ce:6b:74:18:c0:
88:b2:9b:48:fc:3f:84:80:b8:97:b8:1e:78:af:b5:
21:3c:fc:b0:11:84:f7:c2:c4:b6:af:59:e8:76:07:
5f:1b:04:21:45:f7:64:37:7a:36:2b:64:15:cd:e8:
f3:27:22:b2:b1:d8:28:e0:c5:7f:59:a3:4b:66:33:
b0:11:c0:43:46:a5:1d:da:18:e2:db:81:21:3b:e5:
51:b7:f4:f1:ac:89:13:82:c0:6a:06:86:f6:af:c4:
2e:88:d8:e6:e3:ae:db:19:8b:c9:95:bd:06:61:68:
20:70:31:db:a8:66:f7:d1:8e:aa:50:3d:07:78:b2:
1e:da:d8:5a:95:e0:a5:83:b6:51:e5:5e:f1:3f:0a:
94:d4:93:cf:90:67:21:db:f4:a5:3e:ae:d4:ec:9e:
89:f2:09:01:5f:67:bd:65:70:8a:22:e0:79:94:e8:
1b:ba:6f:3a:a3:b8:6f:b9:c4:e8:2c:5f:6d:9d:17:
9b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:67:99:71:F3:D0:6E:0F:8D:CA:41:34:2A:57:F3:9F:3E:F8:CE:74
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/G2eZcfPQbg-NykE0Klfznz74znQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
19:b7:31:17:05:15:d5:82:f4:83:a2:34:de:b1:bc:54:a6:17:
3f:c5:2d:4b:38:29:ae:66:5a:6d:81:14:0d:68:de:ff:63:da:
8d:21:cc:7c:a8:0f:61:da:e4:f2:3b:c7:28:c9:00:ac:4a:9a:
6c:ba:26:2d:c9:18:74:af:ac:60:fe:5e:ef:33:a9:bb:a4:e1:
ad:b3:40:ff:55:09:0c:61:da:c5:2b:55:a6:26:2f:59:4c:af:
fd:63:eb:99:fa:a2:e1:d1:ff:72:74:67:03:58:bf:9c:43:68:
a6:62:36:72:1f:80:0d:e2:87:21:a8:1f:34:1a:02:aa:fd:8f:
28:ce:f4:0e:3b:c8:20:50:43:ee:57:d6:83:f6:9c:76:4d:2e:
4d:41:a0:6d:e7:43:de:2b:58:7d:a3:98:b2:cd:54:46:dd:2d:
67:71:80:e9:4a:c2:68:64:d5:2e:56:73:af:23:98:09:ea:e2:
68:be:f0:33:1a:51:88:74:66:6d:ef:b1:f6:e3:77:fc:76:9c:
c1:4f:5a:04:ef:6c:3d:99:ee:a5:55:0c:5a:a3:92:b3:59:7f:
d1:9d:ef:80:f1:3d:79:69:17:05:0b:c5:94:24:20:ed:3f:bd:
45:7b:ca:e7:ce:3f:59:64:18:57:25:89:9e:43:cd:6b:9a:8e:
06:16:bc:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 03:15:13 2024 by rpki-client on console.sobornost.net