Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/n3bI8p2e2elbQldQHQgXwpZggFg.roa
File: n3bI8p2e2elbQldQHQgXwpZggFg.roa (raw, json)
Hash identifier: EvXlrCycD3RIjF4oB6l7MEEAW8tyxy5HMhQa3lQjPPU=
Subject key identifier: 9F:76:C8:F2:9D:9E:D9:E9:5B:42:57:50:1D:08:17:C2:96:60:80:58
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4215
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/n3bI8p2e2elbQldQHQgXwpZggFg.roa
Signing time: Tue 16 Apr 2024 16:53:25 +0000
ROA not before: Tue 16 Apr 2024 16:53:25 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16917 (0x4215)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 16 16:53:25 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=9F76C8F29D9ED9E95B4257501D0817C296608058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6f:19:73:d6:00:9a:7c:bd:35:5a:c7:da:35:
aa:29:13:b6:aa:f9:04:3c:cc:b6:0a:06:91:61:5d:
a2:5c:6b:a0:88:ea:c3:04:ca:a9:9a:97:b3:8c:f1:
0b:68:9d:03:af:04:2a:2c:59:ce:f4:f7:2e:ed:91:
eb:b5:f8:83:8e:09:55:9d:83:50:19:d7:4b:36:7f:
46:c4:2f:4c:31:dd:10:e2:0e:05:72:ba:c8:76:4b:
3d:5f:b8:54:bc:8a:bc:b8:ac:7b:d2:4b:42:7a:d7:
d0:ff:9b:43:a2:cc:92:bc:04:83:d4:49:74:71:86:
24:d5:d8:2a:89:fe:49:9b:33:94:d1:4f:2b:aa:10:
37:30:11:35:d8:46:a9:04:7e:79:3e:b6:73:99:83:
ee:25:8e:6a:f6:2c:0a:c5:3e:01:11:d4:15:10:48:
a1:6c:ca:12:55:c1:e4:a7:3b:ec:9e:d2:b0:f9:ec:
3c:e3:23:04:a4:6d:0d:bb:c5:a0:ed:f3:e3:66:c7:
04:f1:bd:e6:c3:af:9c:08:fc:c0:e9:f4:0b:50:79:
17:8f:91:a7:d2:3c:b7:ed:5a:52:2d:83:19:54:ed:
04:96:a0:16:81:4c:18:a1:2d:64:92:31:29:80:ad:
2a:0e:2d:63:1d:5e:69:fb:4a:ba:53:6d:07:57:44:
78:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:76:C8:F2:9D:9E:D9:E9:5B:42:57:50:1D:08:17:C2:96:60:80:58
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/n3bI8p2e2elbQldQHQgXwpZggFg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
ab:00:1e:87:e9:af:b8:90:2b:d5:24:36:86:9a:8d:1c:c0:55:
4f:c4:7e:db:1b:f9:14:ae:b4:79:21:01:84:fa:ba:5b:be:a3:
98:35:ff:4a:96:a4:85:4b:0a:15:3d:06:a9:30:8b:d1:e1:62:
72:0c:85:58:d6:33:22:ca:bc:df:94:26:32:b4:e4:cb:4f:f9:
09:40:e1:db:4a:6b:c8:ca:4b:b8:0d:ff:fc:79:a9:c4:2e:7a:
90:68:c0:58:da:a3:0c:a1:66:07:7d:ce:b1:94:41:dd:3d:d8:
5c:05:58:82:96:94:74:76:93:f5:19:06:76:26:9f:ce:b0:ec:
35:95:9a:5d:9b:65:39:cc:59:bb:9b:ed:64:44:3d:f9:fb:ae:
6b:4b:2d:bf:47:57:2d:09:dd:0e:4b:4d:ab:0a:e0:2f:4e:51:
f1:02:9f:e8:e4:6e:bb:0c:01:ab:9f:10:2b:54:38:09:6d:4d:
8a:1c:24:47:8d:f9:ba:6f:6d:2b:c7:e4:d6:56:80:db:50:15:
9b:3d:b4:3f:f3:a9:40:d7:e8:6e:b6:5b:83:d1:0d:ec:ad:05:
77:e0:9e:c9:e3:75:00:06:64:31:7b:99:d8:e1:10:af:13:70:
b6:ef:c4:5a:41:3f:bb:b3:b9:0a:c5:62:8b:b0:b5:b8:50:89:
42:36:55:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 17 00:34:03 2024 by rpki-client on console.sobornost.net