Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/IoEuvuaZqG2u0_GREckVk3p6d6o.roa
File: IoEuvuaZqG2u0_GREckVk3p6d6o.roa (raw, json)
Hash identifier: s5+gLJp6xKaPRR2Oqhri0DUemZ4XGtNzLCnl5JSLTIQ=
Subject key identifier: 22:81:2E:BE:E6:99:A8:6D:AE:D3:F1:91:11:C9:15:93:7A:7A:77:AA
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4CD5
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/IoEuvuaZqG2u0_GREckVk3p6d6o.roa
Signing time: Wed 01 May 2024 00:53:34 +0000
ROA not before: Wed 01 May 2024 00:53:34 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19669 (0x4cd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 1 00:53:34 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=22812EBEE699A86DAED3F19111C915937A7A77AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:28:dd:2d:18:29:b1:b8:54:1a:6c:a0:f4:a2:
dc:a2:ff:7c:d9:36:1a:4e:f1:99:98:fe:23:e0:18:
0f:06:28:40:c7:7a:81:dd:01:1a:96:a1:e2:d7:56:
2e:50:c9:a8:90:06:f2:28:9d:87:bc:f5:d7:1f:2f:
1f:ab:71:ce:89:53:22:3f:7b:e1:25:6c:44:70:ad:
16:cb:f2:44:22:e2:13:18:7b:af:98:72:12:cb:dd:
fb:1b:b4:5f:c8:f2:4d:e5:54:cc:92:24:0e:de:66:
9b:0d:ef:13:3f:40:01:f1:2b:9a:c5:d9:50:aa:36:
42:9c:4b:d7:83:ce:e2:41:98:22:83:2b:ff:84:42:
19:9a:19:fe:80:10:b9:1e:31:9a:41:45:21:2e:c1:
a7:5b:ca:18:cd:26:c7:5c:f8:ca:05:46:0b:f7:f8:
a2:f3:a9:c1:e0:ae:a2:1f:2b:d1:e1:7f:2f:c6:6a:
3e:ab:a6:e7:9e:ab:71:2b:e6:05:c6:73:62:81:73:
5c:d4:2b:ca:56:b0:f2:5f:48:e2:b8:57:b6:8f:82:
7f:43:42:f4:07:54:33:65:d2:72:d7:91:6e:d2:35:
ba:36:10:b7:6b:05:ff:b9:88:68:19:25:00:28:45:
85:fc:52:52:22:20:3b:24:bc:a4:09:c9:50:9e:2e:
12:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:81:2E:BE:E6:99:A8:6D:AE:D3:F1:91:11:C9:15:93:7A:7A:77:AA
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/IoEuvuaZqG2u0_GREckVk3p6d6o.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8a:0b:8c:56:6d:4a:c2:dc:50:22:a6:56:12:36:28:11:d4:7d:
a8:4b:f7:35:a4:cc:e0:39:02:b2:25:cb:1f:d0:85:cb:66:d2:
8f:55:71:e5:73:68:f8:47:b2:78:44:4c:94:d6:15:4c:5e:84:
c3:9e:02:cb:11:35:b7:4a:a7:a8:4e:d3:0a:7d:92:c7:49:93:
d8:2b:eb:01:0a:3b:8e:64:8c:39:43:92:b2:8b:95:7a:99:04:
64:f8:68:43:2c:41:64:e8:89:1f:67:d6:a6:75:fd:35:aa:e0:
e2:a7:01:24:62:5d:8f:d4:9d:46:d3:4b:70:d1:ec:71:1a:fd:
3d:1b:95:1b:3d:ce:02:1d:cb:b4:89:e5:a7:6d:f9:b4:bc:99:
ab:ac:5d:2e:52:98:47:fb:fe:86:2a:fc:a7:66:16:64:76:62:
6a:91:72:46:cc:33:54:b8:e1:f8:c9:61:58:29:4e:c3:28:77:
b7:1d:fe:a3:56:1b:db:dd:bf:bf:85:14:59:55:15:aa:24:d4:
db:48:3d:8d:59:af:02:13:c6:48:c7:c1:3e:21:9c:23:25:60:
44:87:8a:33:c3:29:64:d0:24:a9:c1:a6:f6:fe:75:85:b5:a7:
77:35:5d:24:61:df:81:b2:4b:9b:b2:ce:e1:b8:ad:82:2b:2d:
89:6d:2a:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 20:44:24 2025 by rpki-client