Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/6EW28gw2-dOV_jrkyNHgf1TX62A.roa
File: 6EW28gw2-dOV_jrkyNHgf1TX62A.roa (raw, json)
Hash identifier: 9qcSLomk0nIsmzfzVzXK4YYspPF4TOwF4boIXbNL1co=
Subject key identifier: E8:45:B6:F2:0C:36:F9:D3:95:FE:3A:E4:C8:D1:E0:7F:54:D7:EB:60
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 400A
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/6EW28gw2-dOV_jrkyNHgf1TX62A.roa
Signing time: Sat 13 Apr 2024 23:22:53 +0000
ROA not before: Sat 13 Apr 2024 23:22:53 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.236.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16394 (0x400a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 13 23:22:53 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E845B6F20C36F9D395FE3AE4C8D1E07F54D7EB60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:db:7d:1e:ba:a6:61:5d:73:cc:cc:46:17:26:
d9:bd:3f:e7:2b:dd:3d:cf:5d:e0:fe:f0:49:f8:71:
38:be:4c:a1:9f:98:a8:7d:7e:dc:e5:c6:80:52:73:
69:43:98:3c:a4:cf:39:ed:61:7b:90:bc:53:c3:22:
3c:89:65:61:2e:b9:d6:43:9c:60:2f:57:0e:ce:a9:
82:45:85:51:b3:bf:22:ea:8a:e3:88:07:ea:1f:0c:
e3:7b:1a:96:c2:39:83:05:c1:be:1a:83:a7:fb:a4:
96:f1:a5:0c:50:fd:8f:10:3a:71:78:7c:98:d2:d5:
56:d4:17:2f:c8:11:73:8e:10:16:ee:d4:db:b7:02:
13:14:b4:0b:ea:f3:23:a0:04:55:3c:10:44:d8:32:
7d:65:cf:64:10:c3:3b:eb:ec:bd:fa:b6:3d:d5:e3:
c0:e4:41:11:d5:40:b5:ec:7a:90:a9:b9:05:f6:31:
d8:9a:18:af:5c:d2:e0:1e:2c:b9:79:08:45:07:61:
d3:80:fc:3e:4f:94:5a:c1:bc:3d:3a:88:83:d7:4c:
fe:0f:79:42:b1:0a:7b:27:55:31:95:e2:ef:d6:f8:
e6:c1:e0:55:e5:b8:a3:8a:13:65:9d:6c:a3:17:64:
9d:1d:2f:7a:8d:3f:eb:58:67:4c:50:73:b8:23:ca:
58:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:45:B6:F2:0C:36:F9:D3:95:FE:3A:E4:C8:D1:E0:7F:54:D7:EB:60
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/6EW28gw2-dOV_jrkyNHgf1TX62A.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.236.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2d:69:d0:6e:17:17:76:14:6a:47:5d:dd:b4:54:0d:f7:77:f4:
42:94:1b:da:af:63:bc:19:97:6a:b2:14:53:82:09:19:42:95:
74:16:f2:36:6c:1c:83:b4:b6:39:f0:e4:11:4d:9a:b7:21:fa:
02:ac:14:2b:b8:f5:9f:8d:b1:91:ac:29:f8:cc:2e:00:4a:4d:
64:9f:c8:e0:9b:74:50:af:6e:d5:8e:2e:33:ca:d1:a0:74:fb:
5a:23:d0:b5:c1:ba:96:16:6e:88:ab:9f:4f:8f:ce:4c:b6:09:
e2:e1:6f:a3:4b:e4:66:48:c1:1d:31:4b:b4:1b:21:5f:ee:7d:
01:8e:f1:e9:99:65:8e:c7:71:ae:05:e0:ad:3d:47:89:d0:6d:
47:98:37:32:fd:92:c1:f2:01:f0:7a:7c:f2:8a:fc:86:db:ef:
b0:e7:d5:a6:2d:3a:1f:8d:32:d5:bd:73:2b:19:5c:9a:85:e3:
07:6d:fd:03:6f:4c:81:d9:a1:05:74:b9:05:c2:71:f9:ae:40:
9b:c7:50:f0:da:02:29:a6:74:e6:68:cd:d1:8d:34:cc:d0:e4:
3a:f2:f5:f3:c3:38:45:ab:90:6d:9f:87:14:ab:06:49:a0:ff:
3a:8c:ab:ba:3a:1b:74:ed:2e:1b:c3:b8:73:d9:52:14:7c:bc:
95:66:8e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:07 2024 by rpki-client on console-fra.rpki-client.org