Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/sDCPyhP30OaMx7Jv7PccieQxbbk.roa
File: sDCPyhP30OaMx7Jv7PccieQxbbk.roa (raw, json)
Hash identifier: 21FYG2cMCfqET4PkWAnFaKuD2I3297t+sIOy39n+Ckw=
Subject key identifier: B0:30:8F:CA:13:F7:D0:E6:8C:C7:B2:6F:EC:F7:1C:89:E4:31:6D:B9
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 37CD
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/sDCPyhP30OaMx7Jv7PccieQxbbk.roa
Signing time: Tue 02 Apr 2024 23:52:17 +0000
ROA not before: Tue 02 Apr 2024 23:52:17 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14285 (0x37cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 2 23:52:17 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=B0308FCA13F7D0E68CC7B26FECF71C89E4316DB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:42:20:aa:5f:30:bc:e9:42:d0:84:1c:54:a5:
87:f6:0c:c9:0b:35:90:c0:6d:58:48:63:61:48:25:
4c:07:f5:fd:dd:86:e5:38:35:f6:20:52:aa:bb:84:
7f:61:81:12:ea:36:50:5b:a6:e1:eb:26:47:54:f2:
47:9c:2a:d9:4d:16:f0:82:62:84:df:b1:12:a2:7c:
a1:30:c9:fb:32:4a:79:fa:27:3a:fd:20:2f:ea:6e:
09:42:41:65:d4:69:f1:6e:af:eb:f4:bc:1a:e6:7a:
04:34:de:33:0d:01:06:fa:14:f8:6a:97:01:e0:83:
10:6b:13:87:93:20:be:84:bf:82:b0:6d:13:2b:61:
bd:d8:35:ca:1b:29:b1:d3:11:12:d5:3d:27:36:2a:
42:ed:98:ee:a0:50:58:41:e0:e3:a8:e8:03:d8:8f:
83:0d:60:21:7f:73:36:57:7f:eb:c1:39:c2:29:c4:
09:c2:af:ec:96:c3:6c:2f:ec:3d:8d:a8:83:28:dd:
8d:20:2f:38:c7:49:07:fd:23:db:36:2f:72:ef:06:
3b:e0:cd:b7:1b:f5:fc:bb:5b:ba:3e:82:9f:6d:ae:
9b:31:49:ed:c9:cc:44:16:99:bc:6a:17:d5:11:6f:
b3:b8:36:da:61:62:4a:69:a8:38:c5:1c:81:87:60:
77:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:30:8F:CA:13:F7:D0:E6:8C:C7:B2:6F:EC:F7:1C:89:E4:31:6D:B9
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/sDCPyhP30OaMx7Jv7PccieQxbbk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
0c:d9:7a:05:a4:44:7c:eb:16:f8:1c:87:d8:3c:93:e1:f3:fe:
67:37:7d:92:c0:07:34:b4:84:38:f8:e0:04:74:73:ec:8f:81:
6b:16:fb:93:79:a9:8d:b3:d2:08:a9:2a:b4:81:e6:93:fd:34:
e1:4b:6f:4c:b9:26:54:1e:46:22:81:50:41:64:c5:32:2d:74:
d7:1c:49:e9:5f:60:f9:8c:fe:21:75:91:07:74:35:e8:f2:b0:
18:1b:6b:56:e6:94:39:79:2a:3c:74:45:11:25:7c:ee:53:47:
7b:81:18:65:e5:1b:94:df:e0:9d:3d:78:5a:f0:25:8c:3c:24:
ff:a4:2e:e1:c1:e4:a6:71:e3:61:0e:da:9e:14:1e:73:4c:ea:
82:63:7d:02:3d:69:d2:14:f3:41:1e:53:d0:32:07:b0:f0:1c:
d8:0a:28:a7:b7:34:64:fd:34:da:16:88:04:05:92:fd:b8:68:
c8:ca:65:af:d2:69:86:58:83:ab:2b:1a:94:47:9b:75:cc:6e:
ae:9e:79:29:5c:d8:53:d9:16:74:cb:85:ed:6e:27:f3:42:3a:
a4:a1:21:58:41:e6:49:a1:86:68:76:67:2e:4b:fe:9c:ed:2f:
1c:85:64:7f:0a:da:90:00:ab:77:c4:b3:9e:6e:10:d7:1e:b0:
78:d4:b1:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 10:14:44 2025 by rpki-client