Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/xxg0hDS3taOJPFZCEIcbchOjBas.roa
File: xxg0hDS3taOJPFZCEIcbchOjBas.roa (raw, json)
Hash identifier: t1yQrzvACMVSZOXlgzMCWr6AsO5VaNmRJC2GdJLj55s=
Subject key identifier: C7:18:34:84:34:B7:B5:A3:89:3C:56:42:10:87:1B:72:13:A3:05:AB
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4629
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/xxg0hDS3taOJPFZCEIcbchOjBas.roa
Signing time: Mon 22 Apr 2024 03:23:08 +0000
ROA not before: Mon 22 Apr 2024 03:23:08 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17961 (0x4629)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 22 03:23:08 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=C718348434B7B5A3893C564210871B7213A305AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:82:c7:f3:57:93:15:eb:e5:6c:84:cc:f4:5e:
61:0d:51:fb:2e:25:c0:9f:52:ba:80:67:3f:72:de:
be:f8:39:14:fe:c4:0e:85:c2:ad:f0:4b:0d:17:68:
cc:db:85:18:c8:0b:0c:90:91:50:f9:4d:7d:57:b5:
45:89:fc:06:27:77:f4:d7:7a:bb:28:e4:9a:28:ff:
39:43:50:41:bd:5f:e7:96:cf:39:ab:ce:eb:80:f1:
36:7e:70:69:00:ae:54:60:f5:c7:d7:20:38:bc:fe:
bd:e8:f2:bb:9e:41:0f:8a:6c:5c:37:60:8c:4b:fe:
73:28:9b:fc:42:00:a6:22:81:42:2a:6b:44:9b:3d:
65:20:cd:90:d3:b4:12:f5:c7:f6:9c:84:f6:42:b1:
37:fc:94:a1:13:a7:01:80:51:04:da:49:c7:68:cb:
cf:3d:2e:62:75:38:17:b2:28:11:c9:e3:8a:11:72:
c6:db:09:af:48:cc:93:6f:f9:ba:d5:32:b4:b7:40:
75:aa:f6:b9:0f:cc:bf:65:78:81:da:ff:bd:a8:98:
10:61:db:b2:76:42:ea:89:37:90:be:d7:ad:08:28:
44:36:ef:d4:0f:10:b0:bf:9d:9f:ac:9a:89:89:94:
56:ee:a1:9b:96:fe:d0:ab:f5:55:02:e0:02:ae:c7:
88:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:18:34:84:34:B7:B5:A3:89:3C:56:42:10:87:1B:72:13:A3:05:AB
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/xxg0hDS3taOJPFZCEIcbchOjBas.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
80:6f:87:df:fa:e8:66:61:9a:76:d6:8f:8a:24:04:bd:b1:87:
3f:18:1d:08:79:d4:55:2f:61:0d:c9:05:6a:4c:7f:3b:46:89:
11:b6:67:1b:c5:4e:21:74:f5:d0:28:65:ef:02:ee:0d:a4:37:
13:a0:0a:65:e8:49:46:93:44:9d:5a:ce:4f:13:3b:27:89:43:
3a:3f:37:a4:fb:42:70:94:00:a9:87:91:82:e3:a5:09:e1:17:
64:36:d0:e6:19:ef:f6:a1:f6:bc:2d:12:cd:dd:55:04:89:3d:
57:24:f1:3d:1a:38:ed:20:43:24:3c:a9:b0:0e:27:76:cf:b6:
8b:0e:ca:b4:77:d2:b7:71:a5:76:4d:c2:85:93:de:54:94:11:
ed:ed:58:3a:65:c3:49:bc:04:af:c0:75:02:ca:3e:25:45:f7:
74:45:61:e4:ef:41:4b:e6:39:31:6d:74:60:63:03:db:3a:22:
0a:7e:e4:1e:10:eb:53:0e:13:69:c7:d7:b9:27:64:c7:2e:40:
4a:f4:ee:e6:cd:a3:78:e0:b4:1f:60:b0:b7:5a:83:ba:aa:9d:
54:82:49:4e:b7:07:bf:44:7c:2f:f7:5c:1b:07:44:f1:c7:a8:
a9:b1:26:e0:28:79:13:a6:57:18:34:eb:d0:b2:b6:9d:91:2b:
36:84:0f:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 03:15:13 2024 by rpki-client on console.sobornost.net