Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/l-RV2pP5EPipT4M4swBd2_aHZ4w.roa
File: l-RV2pP5EPipT4M4swBd2_aHZ4w.roa (raw, json)
Hash identifier: 9sV56rwzskUvTo4i4xgchBYQg7t5gVbXp5Cgr4o/JGI=
Subject key identifier: 97:E4:55:DA:93:F9:10:F8:A9:4F:83:38:B3:00:5D:DB:F6:87:67:8C
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3749
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/l-RV2pP5EPipT4M4swBd2_aHZ4w.roa
Signing time: Tue 02 Apr 2024 07:22:12 +0000
ROA not before: Tue 02 Apr 2024 07:22:12 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14153 (0x3749)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 2 07:22:12 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=97E455DA93F910F8A94F8338B3005DDBF687678C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4b:b0:3f:8c:ac:29:c1:ff:6c:4e:54:1d:6e:
08:27:26:bb:05:ab:d2:2f:2c:f3:54:0a:3a:5f:24:
30:3a:1a:b6:f1:73:09:22:d6:09:1c:e0:57:2d:8f:
1f:96:89:aa:ae:a4:29:c3:59:13:08:75:54:f2:fe:
02:ce:c8:f1:0c:3b:95:cc:51:71:7d:d7:bc:25:d5:
45:ac:6d:ca:d2:2e:47:b6:44:89:21:23:98:43:43:
a4:0e:27:c9:c9:45:96:3f:a9:d0:58:84:ec:9a:70:
fe:5f:df:60:08:4f:60:ec:98:0f:8a:9e:e7:d0:84:
e1:e3:1f:c7:28:72:d2:38:02:1f:eb:a4:a3:45:ae:
41:60:27:07:0a:e1:3e:e9:95:a6:e3:6d:3d:50:ee:
e5:b6:92:a3:f5:cc:38:26:24:a6:1c:c3:cd:21:bb:
08:51:a2:3c:ed:8f:d0:53:e9:5a:24:47:67:4a:4a:
aa:73:35:76:f9:ce:e9:ff:2a:34:82:21:30:d0:14:
20:1e:ad:90:10:23:90:fc:87:d8:94:af:88:6e:0d:
4e:5e:43:2d:fb:11:a7:14:c0:e2:d3:f3:d4:f3:5e:
c2:30:e5:01:7e:57:fd:c4:ec:77:9c:3d:5c:d8:7a:
c0:e0:cc:81:41:d1:49:27:9d:b4:da:76:39:2e:4d:
67:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E4:55:DA:93:F9:10:F8:A9:4F:83:38:B3:00:5D:DB:F6:87:67:8C
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/l-RV2pP5EPipT4M4swBd2_aHZ4w.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
68:aa:5a:73:43:be:a7:69:73:50:7f:b4:9f:21:5f:b7:e5:2b:
64:ae:56:04:0f:cd:bf:ad:d6:00:5c:8e:14:e2:69:d8:79:bb:
be:3a:7e:64:e0:14:f2:d5:ea:03:ec:1b:01:14:5e:2c:e0:f5:
d8:58:ea:81:b7:9f:a6:e3:70:c8:ec:36:b8:b0:05:0e:a7:a4:
66:90:8e:40:0d:49:d5:55:fe:71:c3:79:f5:29:db:3d:cd:c7:
38:4b:ce:0a:d5:4c:0c:a7:37:9c:ad:67:a9:6b:26:14:af:19:
e6:0d:84:ee:2d:64:7e:94:2b:8c:c8:dc:15:3d:90:93:ab:54:
89:e5:0d:9f:50:14:c6:6b:2d:bd:17:6e:07:4b:3a:c7:b0:a5:
f4:7e:51:3b:ac:a8:1d:a4:67:85:f8:ec:ef:77:72:51:d9:08:
50:46:2b:eb:cf:89:85:a4:dd:10:94:05:56:25:c5:70:47:aa:
90:97:a9:76:84:ea:a2:fd:c1:ca:20:66:de:0c:0d:54:97:6b:
76:14:48:6d:b8:a1:d7:1f:a4:97:ac:e6:92:00:65:2e:0e:78:
70:74:4d:51:30:77:20:45:fc:cc:ea:24:c0:ba:f6:0d:ef:b1:
09:dc:bb:cb:16:a2:3e:40:b5:34:de:8b:65:b0:2b:fd:ab:e2:
5e:29:4c:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 2 14:04:03 2024 by rpki-client on console.sobornost.net