Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/HsGbm2JwB1QHX2Px2Lrtu4s46Oo.roa
File: HsGbm2JwB1QHX2Px2Lrtu4s46Oo.roa (raw, json)
Hash identifier: d8SWO7BkX/ZLqNjktSbxKo51NrEs5mVvrbsapSrRnrI=
Subject key identifier: 1E:C1:9B:9B:62:70:07:54:07:5F:63:F1:D8:BA:ED:BB:8B:38:E8:EA
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3C31
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/HsGbm2JwB1QHX2Px2Lrtu4s46Oo.roa
Signing time: Mon 08 Apr 2024 20:22:34 +0000
ROA not before: Mon 08 Apr 2024 20:22:34 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15409 (0x3c31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 8 20:22:34 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=1EC19B9B62700754075F63F1D8BAEDBB8B38E8EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:af:61:69:99:73:13:98:da:ef:0d:0b:e6:49:
71:fe:af:53:67:a7:aa:39:4c:ca:02:21:86:05:f5:
a9:ab:8b:0e:49:a5:cb:61:c2:ab:5b:a1:a5:b3:6a:
fd:7b:fb:37:48:85:66:fe:0f:9f:33:5b:78:45:f2:
63:04:65:5d:f8:d3:95:f4:86:2e:8d:e5:ed:32:39:
32:23:05:40:2a:4e:1e:70:63:12:98:52:24:a9:f4:
2a:06:86:3e:82:9a:e4:79:2e:ba:83:59:63:b0:9b:
b7:fd:1c:92:48:97:2f:0a:bd:89:f8:df:d8:eb:59:
b2:ba:eb:75:b3:73:93:b0:2d:85:1c:b4:0d:1c:9d:
26:6f:d2:27:32:c3:d9:2e:49:83:77:79:ed:bd:0e:
b8:76:85:e1:52:be:df:bd:27:70:f2:3d:59:42:73:
98:40:dc:84:df:fd:63:88:cd:0e:2d:17:f6:e5:fb:
7a:08:c4:04:48:36:0d:b7:e1:41:cb:5f:af:5f:34:
88:92:f8:4f:9d:0c:eb:27:e0:71:b1:8e:fb:c8:d5:
e9:fa:93:cb:9e:93:f6:47:d6:5b:9d:39:1a:b1:6d:
33:73:b7:f7:40:32:6d:31:8b:c0:0c:d1:e5:af:14:
31:4e:69:2b:d3:35:45:05:d6:cf:2c:99:70:3c:8d:
fd:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:C1:9B:9B:62:70:07:54:07:5F:63:F1:D8:BA:ED:BB:8B:38:E8:EA
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/HsGbm2JwB1QHX2Px2Lrtu4s46Oo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a5:a9:10:0c:4c:72:27:99:2c:5c:e2:71:81:30:f9:f7:20:ba:
8f:19:d9:a3:74:6c:31:ab:16:33:72:06:d3:84:d4:e5:be:35:
be:bb:c1:9d:c9:86:63:5c:75:91:fc:00:8f:84:d8:b4:6c:0e:
2a:99:ee:28:69:cf:bb:01:3f:f3:89:c0:69:56:7a:26:0f:2e:
59:d5:50:ae:8c:f1:77:6e:7d:8e:e8:2f:13:40:e7:6b:fe:93:
4e:24:96:8a:f5:20:39:35:e4:c4:c0:8d:30:b7:14:0b:c0:7d:
b9:4f:16:d7:0c:69:2c:bc:d4:f8:61:c2:ac:3d:8a:c5:f1:cf:
2d:2f:b5:e3:42:eb:31:39:e2:65:17:01:93:a1:34:b8:c6:33:
7d:12:c0:c3:41:62:4a:59:9a:07:e2:71:b1:d9:67:78:7f:3d:
fd:c4:a9:90:31:ea:c3:34:0c:73:a3:d7:b2:3b:f7:03:3d:4c:
0f:d5:74:db:7e:0a:84:20:86:c9:fc:52:c8:c9:b1:9e:de:94:
4b:43:dc:5d:be:70:ce:97:d1:f9:12:a9:b5:b9:9f:46:7b:fc:
bb:8c:b5:28:ed:eb:84:35:b5:47:3c:81:ee:1e:0f:54:62:86:
d6:e8:fb:1d:3a:54:2c:2f:65:ae:68:f0:a2:30:b7:32:f5:32:
ca:94:70:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 9 06:31:46 2024 by rpki-client on console.sobornost.net