Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/aw1Cyj1TqJZRRYJJH3cncPdcp6M.roa
File: aw1Cyj1TqJZRRYJJH3cncPdcp6M.roa (raw, json)
Hash identifier: 22siOVyWvKou13KTCBUdyRYBcX38Du1vq9po5/g7nfU=
Subject key identifier: 6B:0D:42:CA:3D:53:A8:96:51:45:82:49:1F:77:27:70:F7:5C:A7:A3
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 559D
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/aw1Cyj1TqJZRRYJJH3cncPdcp6M.roa
Signing time: Sun 12 May 2024 17:54:08 +0000
ROA not before: Sun 12 May 2024 17:54:08 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21917 (0x559d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 12 17:54:08 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=6B0D42CA3D53A896514582491F772770F75CA7A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:32:d7:93:62:ae:46:53:94:7d:31:56:cd:1f:
f8:aa:77:44:a6:6e:01:79:e4:f8:f8:3b:a9:18:ab:
f8:c4:49:aa:19:09:45:bc:63:a5:ee:92:4e:bb:cb:
e8:c2:5a:89:b7:8a:5d:0d:7d:59:a8:83:ee:99:b0:
d9:19:9f:ad:b8:fe:95:e1:da:57:c7:74:61:b4:3e:
c3:a7:55:e3:c5:4d:bf:3f:b3:71:ab:3b:03:ea:43:
9c:12:df:0d:f0:0a:8a:a9:91:2b:88:56:85:30:10:
1d:c6:7c:56:e7:fc:91:15:07:67:64:6e:f4:d4:81:
d1:16:0e:34:90:b1:66:94:af:35:99:c7:d4:59:44:
35:ea:98:c4:3e:63:9f:24:b6:06:93:c0:37:e9:cb:
ec:1f:b9:c4:06:27:03:85:ca:8c:ce:48:6d:60:22:
17:7b:7c:9d:7e:08:9f:f1:33:6e:9c:a8:93:ed:ee:
aa:30:a0:d4:a9:e2:19:90:bb:8f:c0:07:2c:75:2d:
2f:88:b9:84:b5:e3:42:fe:1e:21:51:4a:48:a5:71:
f3:e0:a7:82:48:cb:3d:10:2b:ce:ee:e8:53:7e:4f:
c8:91:78:1d:2e:fb:8f:f8:96:f1:2a:63:97:4f:82:
68:72:61:3c:aa:80:97:7b:19:2e:f2:1c:6e:3c:b8:
37:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:0D:42:CA:3D:53:A8:96:51:45:82:49:1F:77:27:70:F7:5C:A7:A3
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/aw1Cyj1TqJZRRYJJH3cncPdcp6M.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
22:d2:69:6f:71:15:5c:dc:fe:95:43:35:c2:af:b0:c0:82:2b:
07:5f:61:e6:64:ad:09:2f:51:fa:39:37:f4:e0:4a:8e:35:27:
93:00:38:4e:66:8e:37:3d:c7:22:c7:08:6e:40:e7:18:57:71:
8e:95:01:5b:d9:bf:48:a7:58:56:14:ad:c5:21:cb:36:8c:58:
08:53:8d:7c:a7:43:2d:b9:ff:86:8d:7f:71:5a:1c:ed:36:50:
21:77:0f:f9:cb:de:4f:52:ea:f7:1a:99:d4:d6:e5:81:9f:4a:
e4:fd:cb:d7:b7:86:1d:29:04:51:3b:90:3b:53:f1:ad:1a:0b:
43:73:76:a2:94:5b:5b:3e:15:4d:01:7c:87:af:60:0b:cb:6d:
49:43:23:2a:6b:9f:68:53:82:ad:e9:44:b1:fa:b8:b3:7d:b4:
f8:bb:d4:fb:2a:36:d7:db:1e:d4:16:14:33:bf:3a:96:59:89:
96:0b:c4:ad:5f:c2:66:5d:dc:19:83:fb:0f:c8:ec:ef:9d:ad:
d0:80:bd:d0:7c:22:ae:01:8d:00:4e:0d:ef:6d:ca:fb:a4:83:
8e:16:d6:79:cd:01:5f:67:d9:f2:9b:11:bb:8b:58:1f:fd:a6:
ad:92:20:f2:dd:87:d3:ce:a2:ac:12:ee:de:65:68:d2:9a:66:
ba:ea:4c:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 10:25:39 2025 by rpki-client