Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/2wo40-uQDulL4RfaceAGvi5Ce-0.roa
File: 2wo40-uQDulL4RfaceAGvi5Ce-0.roa (raw, json)
Hash identifier: JVgwISIKeogRtWE1P2AINH59ODWQi8gVbwo962AM81A=
Subject key identifier: DB:0A:38:D3:EB:90:0E:E9:4B:E1:17:DA:71:E0:06:BE:2E:42:7B:ED
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4DA3
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/2wo40-uQDulL4RfaceAGvi5Ce-0.roa
Signing time: Thu 02 May 2024 02:23:40 +0000
ROA not before: Thu 02 May 2024 02:23:40 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19875 (0x4da3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 2 02:23:40 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=DB0A38D3EB900EE94BE117DA71E006BE2E427BED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3e:9c:96:71:ae:aa:3c:aa:3f:b6:3c:93:05:
98:14:ab:b1:23:65:bc:1f:ea:b7:1b:5e:78:b0:aa:
b8:61:32:56:1d:92:10:f0:b9:4d:f3:bf:3e:97:f1:
f8:2b:23:a9:7a:6b:75:3c:bc:2a:11:95:49:f5:6c:
d5:95:8d:13:c6:06:c3:68:dc:c2:95:ed:32:0c:23:
63:f3:38:16:41:1e:78:9e:7b:6a:4d:16:30:1e:62:
1a:51:a1:31:63:c6:36:2a:ef:86:88:0f:01:c4:c8:
e6:51:d9:29:76:68:8a:e5:22:39:fa:35:14:ae:6f:
c6:00:bd:72:35:fd:7b:41:21:24:c0:90:de:9f:1b:
3f:63:cf:7c:e6:d7:93:fd:1d:92:a2:e6:cd:f5:63:
de:63:ad:14:af:65:44:61:8c:f3:21:45:64:5c:bb:
a4:9c:3f:a6:8e:3b:aa:ec:ec:0e:80:0a:a7:b5:37:
88:47:8d:d6:b4:48:e2:f1:07:81:af:4b:01:85:2f:
9e:0b:6c:bc:69:9b:59:3f:56:40:a9:65:5b:72:49:
ca:36:e9:79:1c:d2:d8:f0:b2:27:d8:0f:54:e6:e5:
5f:81:12:d0:e7:23:3a:01:86:80:68:00:8e:3f:91:
80:3e:e6:e1:f1:37:50:00:6c:64:d6:d1:05:5b:ee:
bf:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:0A:38:D3:EB:90:0E:E9:4B:E1:17:DA:71:E0:06:BE:2E:42:7B:ED
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/2wo40-uQDulL4RfaceAGvi5Ce-0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
92:2f:0a:22:3a:60:5e:e6:53:c9:cb:2e:2d:da:a8:b6:0b:ad:
f2:32:87:d3:b2:89:77:cb:2f:8d:04:5c:36:ad:3f:92:c2:d0:
39:3d:51:9b:b0:8f:7d:1b:b5:55:f0:48:c8:b4:c8:45:7a:fc:
c3:e9:3a:8b:be:fb:1c:d6:15:c9:1a:ec:6f:59:f8:34:77:b8:
7c:15:7f:6c:50:15:40:81:e6:bf:f9:09:94:5e:4a:bc:90:0f:
3e:66:78:d2:0b:41:7b:38:02:a5:7c:d1:40:f5:f2:28:e8:87:
81:36:3b:11:01:3b:b9:3e:fb:4c:a3:36:30:53:02:35:a8:98:
7f:2d:23:57:37:b5:2d:72:6e:dd:c2:7a:da:47:69:83:24:70:
60:d0:c7:3c:62:be:6b:f4:0b:eb:eb:e4:06:6a:60:f1:8a:5d:
19:b2:c5:44:3e:87:d3:8b:2f:b3:7d:19:c3:08:ab:a3:82:8d:
2a:fd:81:d5:bb:85:ff:b0:a5:f5:1f:90:79:29:57:cf:dc:f8:
be:da:41:73:16:86:c2:4b:81:6e:ef:7d:0b:c3:80:67:6d:4e:
fe:7a:b7:2f:ab:b7:ba:dc:ae:f3:ca:9f:9d:26:53:c7:c5:aa:
af:14:9e:65:cb:23:e0:d7:e1:38:1c:bb:8c:ac:e4:9d:f4:0c:
66:4b:1b:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:34:35 2025 by rpki-client