Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/2n4MCUd6jmCVWhej6VB_KBBa1kk.roa
File: 2n4MCUd6jmCVWhej6VB_KBBa1kk.roa (raw, json)
Hash identifier: B0gn24122We8gHMWF9UHQQqkV9KvpkDW3+8vRT0Zd90=
Subject key identifier: DA:7E:0C:09:47:7A:8E:60:95:5A:17:A3:E9:50:7F:28:10:5A:D6:49
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4ED9
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/2n4MCUd6jmCVWhej6VB_KBBa1kk.roa
Signing time: Fri 03 May 2024 17:23:57 +0000
ROA not before: Fri 03 May 2024 17:23:57 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20185 (0x4ed9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 3 17:23:57 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=DA7E0C09477A8E60955A17A3E9507F28105AD649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:10:cb:f8:aa:97:a1:15:22:11:1a:5b:e5:f3:
a4:a3:f7:64:4e:f8:6a:d3:16:9a:02:56:aa:b7:e6:
4a:54:d2:fc:52:65:17:6f:72:23:71:cb:86:f1:74:
2a:5e:71:c4:da:80:84:84:b9:53:ca:3d:98:b6:a5:
04:b4:79:ae:07:f3:62:a8:ec:65:36:73:eb:a4:dd:
08:cf:09:dd:2c:f1:6a:e6:5a:ff:42:4f:ba:65:e5:
f3:ac:ec:af:86:69:69:dd:50:72:8d:ec:27:0e:9d:
49:f7:e2:0e:27:79:ad:74:3a:a2:e9:60:d8:b9:75:
59:44:80:66:31:4d:da:03:ca:1e:c6:52:bd:50:e1:
59:e3:a7:09:b5:bc:d2:60:b8:8b:cf:d0:de:c1:43:
af:2e:82:dc:b5:4c:59:04:f4:22:0d:4b:31:99:f8:
a1:fb:92:10:5c:86:5c:c8:df:fe:e7:ff:b6:db:b8:
65:98:d9:73:49:6a:c4:6c:bf:55:2a:c3:94:80:f2:
9f:15:28:52:4e:2e:67:f4:77:9d:51:8f:e5:94:d8:
16:c1:e9:70:61:c1:84:8b:47:fa:c6:63:bf:c1:cf:
2f:47:f5:5d:e5:1c:bf:ec:7e:c8:3e:6f:e8:c4:40:
34:89:ac:0a:22:48:39:d8:25:4a:a8:b1:63:fd:34:
7e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:7E:0C:09:47:7A:8E:60:95:5A:17:A3:E9:50:7F:28:10:5A:D6:49
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/2n4MCUd6jmCVWhej6VB_KBBa1kk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
aa:52:24:b2:c7:f7:83:bc:2b:ae:49:1e:f2:1f:ef:80:ba:e6:
df:d7:6c:4f:e7:48:ca:5f:04:33:49:35:42:97:91:b3:ea:8d:
db:9c:71:54:70:7d:fb:69:cd:5b:08:83:6e:34:75:af:b4:57:
70:d7:ee:67:6d:b0:44:66:fa:60:dc:fb:64:eb:56:6a:d9:5e:
a8:94:db:04:ed:a6:02:b5:fb:99:a8:61:4e:59:24:c5:a7:54:
8c:db:68:c7:79:72:ef:c2:f4:3a:f4:6c:36:65:6b:19:8c:6f:
cd:b5:5e:75:dc:6e:6e:76:ed:de:1b:e0:fd:9c:2f:f2:13:9c:
0c:10:18:aa:1f:47:80:08:6e:ef:e9:8c:7a:89:ec:a3:37:cc:
7c:52:00:a9:8f:a8:e4:f3:7b:39:73:bc:4d:af:99:09:42:3a:
26:cb:83:c4:ef:61:a8:0b:57:64:59:37:be:ee:47:74:0a:a8:
84:2c:08:ba:a8:a7:17:d9:7b:9b:57:c7:50:67:5b:28:46:79:
4a:1e:00:5c:fe:99:49:b0:76:b2:a2:b4:26:1d:e9:96:4c:02:
1e:34:6b:87:a7:fc:e8:81:16:b2:3c:50:5b:16:80:d6:c5:a6:
46:f9:ab:ee:a3:2d:22:80:fb:73:9e:c8:5d:39:a8:80:bc:23:
52:32:5e:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 10:10:26 2025 by rpki-client