Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/cv0V187EcRIactr0GkWKSoNJlZY.roa
File: cv0V187EcRIactr0GkWKSoNJlZY.roa (raw, json)
Hash identifier: lDyv/oBveXw1IEgwq8xIAkhifsFhKWvbUDtN86+CTE4=
Subject key identifier: 72:FD:15:D7:CE:C4:71:12:1A:72:DA:F4:1A:45:8A:4A:83:49:95:96
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 41E5
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/cv0V187EcRIactr0GkWKSoNJlZY.roa
Signing time: Tue 16 Apr 2024 10:52:56 +0000
ROA not before: Tue 16 Apr 2024 10:52:56 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16869 (0x41e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 16 10:52:56 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=72FD15D7CEC471121A72DAF41A458A4A83499596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:75:98:fb:cb:e5:78:91:69:56:8a:66:81:e0:
bd:86:77:1e:98:ca:ae:ec:54:88:89:52:af:b6:a2:
8a:fe:50:da:26:b2:a1:26:f2:ec:7c:0b:91:d2:5d:
66:82:58:7a:01:37:d0:89:27:21:d7:e8:a8:56:74:
76:e6:78:45:37:50:bd:9e:1a:11:63:f9:1b:10:e2:
6b:ec:27:b4:25:52:25:cc:cd:54:09:b5:49:3d:34:
da:7d:23:1f:a1:28:64:e8:a0:82:18:35:b8:7b:72:
40:30:ec:fc:8d:3e:49:70:27:37:b6:ea:a1:b3:fb:
5c:40:4e:b7:49:40:dd:f0:36:94:c0:0d:20:51:88:
c3:86:b4:a0:52:3e:a5:b9:1c:a1:c3:33:78:d2:f1:
a6:b9:70:46:84:fc:16:a1:77:01:b3:92:de:96:5f:
ae:3e:74:4f:34:f3:db:ab:b9:71:56:1b:11:88:d1:
29:21:39:8c:99:cf:91:2f:11:04:b7:f8:a7:b9:ae:
50:9a:24:97:a1:b0:8e:e0:31:1a:70:b7:26:69:94:
cd:4b:cc:35:eb:a4:b5:2b:f8:4a:3e:e5:f9:89:e4:
8e:42:d7:ac:13:2d:d8:86:e7:d5:b0:97:81:0c:18:
f8:5f:bc:aa:21:5d:92:71:4e:2e:ee:b5:e9:4c:1c:
7e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:FD:15:D7:CE:C4:71:12:1A:72:DA:F4:1A:45:8A:4A:83:49:95:96
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/cv0V187EcRIactr0GkWKSoNJlZY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
00:75:2e:0a:bf:4d:55:17:29:59:a5:54:f1:0c:ad:9a:a9:5e:
0e:fa:98:26:51:23:f5:69:18:b9:2c:96:d1:df:49:ed:fc:77:
8c:7a:16:25:02:ab:76:25:4b:ae:48:fb:59:98:50:a6:07:39:
66:5a:84:d0:f0:b2:17:d7:82:f6:13:b4:0d:eb:e6:9b:cf:bc:
d1:8c:bb:a3:e1:06:fe:55:c5:73:bf:4a:51:95:c7:d1:7f:e2:
1d:b0:c4:aa:06:4e:ac:36:88:14:d3:24:03:79:62:ee:71:bc:
85:49:da:5c:37:71:7a:35:01:67:37:9c:2a:9a:4a:cf:7f:c9:
b7:c9:46:c3:0a:48:10:e0:35:04:63:df:8c:e6:44:86:0e:09:
72:82:6d:e4:80:55:78:3b:28:2c:e4:b6:25:a7:75:ad:07:32:
4c:fd:88:70:6d:89:4f:0c:64:87:fd:65:f0:d5:4e:86:b4:d4:
07:99:3b:12:30:8e:c6:32:a6:8d:7c:4d:8d:08:0b:55:c0:0b:
b8:eb:75:d6:d1:b5:b8:46:27:65:7d:f5:8d:34:62:a6:33:7e:
07:f8:33:50:40:c5:33:0b:e1:2b:32:26:e0:df:93:3d:7f:c8:
38:62:50:36:a7:bb:11:48:2b:a3:5e:c6:b0:d2:52:ed:ce:23:
5c:1f:9e:8c
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgICQeUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MTYx
MDUyNTZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDcyRkQxNUQ3Q0VDNDcx
MTIxQTcyREFGNDFBNDU4QTRBODM0OTk1OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNdZj7y+V4kWlWimaB4L2Gdx6Yyq7sVIiJUq+2oor+UNomsqEm
8ux8C5HSXWaCWHoBN9CJJyHX6KhWdHbmeEU3UL2eGhFj+RsQ4mvsJ7QlUiXMzVQJ
tUk9NNp9Ix+hKGTooIIYNbh7ckAw7PyNPklwJze26qGz+1xATrdJQN3wNpTADSBR
iMOGtKBSPqW5HKHDM3jS8aa5cEaE/BahdwGzkt6WX64+dE8089uruXFWGxGI0Skh
OYyZz5EvEQS3+Ke5rlCaJJehsI7gMRpwtyZplM1LzDXrpLUr+Eo+5fmJ5I5C16wT
LdiG59Wwl4EMGPhfvKohXZJxTi7utelMHH4dAgMBAAGjggH9MIIB+TAdBgNVHQ4E
FgQUcv0V187EcRIactr0GkWKSoNJlZYwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L2N2MFYxODdFY1JJYWN0
cjBHa1dLU29OSmxaWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID
BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAAB1Lgq/TVUXKVml
VPEMrZqpXg76mCZRI/VpGLksltHfSe38d4x6FiUCq3YlS65I+1mYUKYHOWZahNDw
shfXgvYTtA3r5pvPvNGMu6PhBv5VxXO/SlGVx9F/4h2wxKoGTqw2iBTTJAN5Yu5x
vIVJ2lw3cXo1AWc3nCqaSs9/ybfJRsMKSBDgNQRj34zmRIYOCXKCbeSAVXg7KCzk
tiWnda0HMkz9iHBtiU8MZIf9ZfDVToa01AeZOxIwjsYypo18TY0IC1XAC7jrddbR
tbhGJ2V99Y00YqYzfgf4M1BAxTML4SsyJuDfkz1/yDhiUDanuxFIK6NexrDSUu3O
I1wfnow=
-----END CERTIFICATE-----
Generated at Tue Apr 16 15:59:07 2024 by rpki-client on console.sobornost.net