Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/UoAsF7AvK38Bgi8HkqwsXzNtKhI.roa
File: UoAsF7AvK38Bgi8HkqwsXzNtKhI.roa (raw, json)
Hash identifier: eFGmwK9DC3IwWfZPJgU9WNzzi1qyWGBmZjWppREIg08=
Subject key identifier: 52:80:2C:17:B0:2F:2B:7F:01:82:2F:07:92:AC:2C:5F:33:6D:2A:12
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3CA1
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/UoAsF7AvK38Bgi8HkqwsXzNtKhI.roa
Signing time: Tue 09 Apr 2024 10:22:36 +0000
ROA not before: Tue 09 Apr 2024 10:22:36 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15521 (0x3ca1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 9 10:22:36 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=52802C17B02F2B7F01822F0792AC2C5F336D2A12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d3:62:97:59:b7:57:95:9e:b8:22:82:28:6d:
f6:54:8f:83:bc:06:b0:ec:92:20:36:30:60:32:b2:
b7:36:44:92:b1:67:77:f7:e2:2a:d0:b3:64:b8:e8:
87:eb:8c:38:01:d1:f8:04:00:50:e2:c9:20:c7:08:
ed:b9:7e:42:6a:72:49:c2:a4:c0:db:c8:ba:c8:2e:
96:dc:7a:c4:90:03:83:43:1a:a9:1b:cb:e1:77:ba:
e3:6b:5f:96:1f:22:de:91:a3:09:21:aa:4a:30:42:
79:3c:f1:c7:37:0d:f3:33:f8:6a:a0:c6:e9:33:db:
f7:e4:6b:13:76:96:49:b7:98:0c:f7:b0:71:39:b2:
66:5e:ce:d7:eb:b8:e1:92:98:72:5b:ab:c0:30:46:
d9:34:09:d0:35:f1:11:f8:64:47:8c:41:fa:52:21:
7c:ff:6e:5a:70:22:3f:38:0a:bf:37:24:d3:90:02:
2a:d7:b3:1f:0f:8a:fc:0a:7a:f5:db:41:e7:f7:17:
70:64:2d:76:98:8b:41:6c:95:53:ec:3d:76:39:a9:
d9:5e:3e:9a:bf:d2:52:cf:66:8f:6f:22:48:0c:19:
65:24:e2:17:44:22:b3:a2:4e:c9:d7:29:d3:47:84:
c1:93:cd:e8:00:3a:ae:2f:8f:46:70:24:7c:da:62:
2c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:80:2C:17:B0:2F:2B:7F:01:82:2F:07:92:AC:2C:5F:33:6D:2A:12
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/UoAsF7AvK38Bgi8HkqwsXzNtKhI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
0b:5f:a3:8f:a1:cc:d3:b8:93:6e:82:18:4b:41:b6:49:38:1b:
c0:f2:6e:dc:54:5a:24:d0:63:cc:86:85:08:55:10:1b:79:6d:
e8:33:d7:6e:05:00:0d:6a:17:9b:b3:1c:a1:c9:8d:20:0f:e4:
e4:38:4e:8d:1d:06:4a:87:94:cc:72:99:d3:04:c6:b0:13:fc:
5d:54:41:97:81:1d:06:9e:c6:64:b5:78:ea:36:8e:11:35:94:
bf:f6:4f:c4:d9:ca:05:c4:75:22:60:89:cc:92:62:c0:82:fe:
fd:4a:c6:ca:4a:78:a6:4b:c4:4b:06:f6:8c:93:6f:f5:a8:a5:
5f:fa:a0:db:dd:a3:b7:5f:34:29:ed:0d:ba:d4:cd:3d:42:f7:
90:06:d6:e7:87:29:f8:1b:fd:cc:d9:9d:8d:6d:8a:d1:66:01:
b9:50:57:16:29:40:b0:57:37:4c:7a:73:a0:34:ee:8e:31:63:
5c:0d:16:86:a0:46:12:c5:64:cf:85:55:3d:3a:1d:ae:03:91:
c5:d6:4b:23:c3:ef:16:39:90:e8:03:06:ff:ff:19:05:38:dd:
d6:37:ba:fc:e3:af:8a:49:0e:77:06:6c:fb:20:20:65:30:2d:
33:04:bc:7b:b8:2e:d8:0b:67:c7:7b:58:7b:bf:81:1f:a4:d5:
a2:74:0b:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 9 16:59:43 2024 by rpki-client on console.sobornost.net