Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/4LxAL9amt6gRRyBjT6U15tfiT2s.roa
File: 4LxAL9amt6gRRyBjT6U15tfiT2s.roa (raw, json)
Hash identifier: oYYispp2v/Ke4tL2Oixn02OAxRR4YQwV1lU9ShygGqo=
Subject key identifier: E0:BC:40:2F:D6:A6:B7:A8:11:47:20:63:4F:A5:35:E6:D7:E2:4F:6B
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 42F3
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/4LxAL9amt6gRRyBjT6U15tfiT2s.roa
Signing time: Wed 17 Apr 2024 20:22:59 +0000
ROA not before: Wed 17 Apr 2024 20:22:59 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17139 (0x42f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 17 20:22:59 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E0BC402FD6A6B7A8114720634FA535E6D7E24F6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f6:cb:e2:a8:0a:6c:6b:bd:70:f2:ef:ef:d2:
51:ed:34:80:fd:62:25:63:d4:89:39:c9:de:6a:e0:
4e:80:1f:0d:85:a8:3c:24:56:0a:c8:a8:82:e1:c3:
34:ac:17:39:3c:07:b3:8c:70:fd:71:cb:73:5b:54:
7a:bd:9f:4b:9d:45:19:36:45:2f:cb:04:7b:6d:2b:
6a:ec:82:ab:89:48:ed:96:f6:7c:cc:9a:e4:91:75:
bd:50:2e:cd:49:f4:88:36:91:b5:10:ac:a6:94:cd:
d3:a5:9d:72:a6:1e:e0:20:54:75:7b:d0:e4:b3:0a:
96:c3:ce:0b:1c:2f:8f:5c:ed:b1:ce:d7:3e:98:73:
2e:ef:1c:17:be:00:b4:87:f5:f4:bb:3f:27:e0:78:
9e:b4:36:69:bf:1d:b2:86:f8:49:09:a9:01:73:f5:
9b:50:b3:1e:75:7b:e1:a9:7d:83:ec:eb:83:02:1b:
66:02:a8:61:cb:0b:60:6d:14:a9:9b:82:21:1f:69:
1b:93:b9:e1:7c:77:43:54:66:d0:17:22:7e:ae:c8:
f6:ee:d8:4c:4c:8a:bd:e9:55:07:d7:be:18:a4:00:
a5:91:d8:f9:d0:f4:b4:17:c6:db:23:26:77:96:1a:
61:f8:b7:17:e9:45:c1:61:bd:25:5a:bf:9a:77:45:
e9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:BC:40:2F:D6:A6:B7:A8:11:47:20:63:4F:A5:35:E6:D7:E2:4F:6B
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/4LxAL9amt6gRRyBjT6U15tfiT2s.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
96:38:a5:6a:cb:e7:f5:f5:a4:94:ca:8a:d6:9e:d1:9c:a0:ae:
bb:c0:54:f2:f8:81:71:bc:8f:9b:40:1d:0a:75:1f:b3:f1:70:
22:a5:d1:a1:76:df:d8:97:80:84:e7:7f:be:ec:18:47:3d:fb:
2e:82:b5:2b:2f:7f:a3:19:a0:6e:16:89:b6:6d:ce:6a:e3:69:
00:7e:ff:d7:2a:41:72:cd:c7:a0:22:83:79:2b:ca:a1:e8:31:
6e:60:c5:62:b1:d1:2f:62:2e:fd:a4:e1:4f:89:1e:a5:91:aa:
60:29:4b:2a:cd:64:0c:d6:e8:cc:6c:79:7a:0d:76:8a:86:90:
9b:bd:97:55:fb:a1:1a:0b:3a:ed:c3:fc:4b:e2:d8:7e:41:50:
39:6f:e0:e5:10:e9:fa:ff:ea:4c:97:58:3b:e1:bc:8c:83:ff:
4f:90:1e:ca:d6:c2:3a:e3:21:55:a0:85:10:75:06:1a:a4:c3:
7b:34:8d:1d:be:64:c9:04:b6:8e:26:c5:82:1b:54:05:50:3c:
a8:e1:07:ff:53:ef:9a:1c:ab:12:4f:91:78:69:41:29:b6:a3:
58:d6:eb:46:a4:e5:22:ff:1f:fd:eb:62:ef:7f:12:6a:bb:3c:
eb:64:19:07:c8:a2:a3:25:7d:01:5d:03:dc:44:22:56:ef:b8:
9a:47:4d:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:05 2024 by rpki-client on console-fra.rpki-client.org