Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/31_TTku6ZadfpO9ayXn1Og8HtwM.roa
File: 31_TTku6ZadfpO9ayXn1Og8HtwM.roa (raw, json)
Hash identifier: wpvWAk5VuJwp7812qT7cL7e9iAgvMnNS7YCFTpXtX60=
Subject key identifier: DF:5F:D3:4E:4B:BA:65:A7:5F:A4:EF:5A:C9:79:F5:3A:0F:07:B7:03
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4E13
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/31_TTku6ZadfpO9ayXn1Og8HtwM.roa
Signing time: Thu 02 May 2024 16:23:43 +0000
ROA not before: Thu 02 May 2024 16:23:43 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19987 (0x4e13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 2 16:23:43 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=DF5FD34E4BBA65A75FA4EF5AC979F53A0F07B703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4c:0e:e4:0d:5e:49:78:76:be:12:da:6b:95:
3b:d1:c2:c4:63:ba:5f:e2:b1:cd:43:60:4e:cc:13:
89:05:4b:2c:81:46:d9:f4:b4:0b:3d:25:87:50:a4:
b6:4b:8d:37:b9:14:f1:87:f4:ec:21:be:0a:fc:c7:
ea:f4:fe:6f:d0:6e:b1:55:82:11:66:0f:b6:1b:53:
ba:4a:c2:5d:3f:83:52:a9:a9:58:ff:49:a5:94:d8:
25:7f:f0:3f:21:8c:c1:40:9b:b1:6a:6d:69:01:11:
75:63:dd:09:cf:e9:48:95:2f:9b:42:00:ca:ea:58:
56:1d:45:c7:b0:b3:22:7c:cc:00:40:85:fe:14:ee:
a6:4f:76:1a:01:01:44:60:e8:5f:9d:a2:f1:9c:1a:
97:0e:ad:eb:12:55:35:0b:f5:52:e1:4a:ca:f1:95:
42:96:68:8e:03:54:5e:2c:b2:14:37:08:2c:3f:03:
20:93:86:83:e4:70:bd:f2:c5:4e:5c:22:10:62:89:
b0:5e:27:d3:71:71:40:61:ed:67:42:0a:b0:d9:55:
b8:f3:90:31:23:20:16:04:40:62:96:e4:1a:be:79:
57:f9:da:d4:13:8b:13:d6:10:8e:9b:a1:89:ae:85:
15:30:68:2f:a3:f2:c5:a8:7c:71:99:9e:62:93:16:
62:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:5F:D3:4E:4B:BA:65:A7:5F:A4:EF:5A:C9:79:F5:3A:0F:07:B7:03
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/31_TTku6ZadfpO9ayXn1Og8HtwM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
59:f8:47:bc:69:71:97:d9:24:37:b9:1a:68:53:96:5b:84:bb:
23:2c:1a:3e:8a:fa:5f:87:77:48:c3:d0:b2:a9:26:75:9e:75:
21:d1:fd:cf:79:8d:ab:13:cf:be:75:62:98:0d:ab:78:5d:e7:
21:32:cc:fe:5b:79:29:29:40:06:ed:d1:2e:81:7f:29:58:98:
ef:34:d4:44:62:44:aa:37:28:94:1d:47:cc:d6:2f:7d:c7:a3:
de:3b:54:04:ed:55:4f:f4:2f:cb:27:3f:c6:16:ec:d2:60:0e:
36:3b:bb:af:07:b6:1b:0e:e7:84:a9:4f:8e:2b:dd:4c:43:a5:
29:fc:bc:04:3f:37:94:1a:e9:0d:bd:a2:39:75:41:56:d5:98:
42:57:65:29:7e:7b:da:ff:30:2a:8b:f2:4f:1c:b3:c3:5b:b9:
fe:a0:f5:42:f5:fe:fd:26:f5:8f:a0:12:10:39:fb:fe:5d:4b:
44:3b:6c:f2:2e:bf:da:cd:59:7e:04:14:3b:a9:5b:75:ee:9e:
14:7a:e2:6c:ac:3c:66:9d:5e:1b:62:4d:da:08:17:ef:73:7f:
da:db:2d:5a:bf:1d:ee:a5:57:0c:ac:f1:ed:ef:a1:47:d4:74:
13:58:13:d4:a0:d2:c0:ae:a1:45:f9:19:03:7c:65:05:d9:3b:
37:eb:41:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:45:03 2025 by rpki-client