Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/6HVHAoab041drLlf5vOrzWrp2eE.roa
File: 6HVHAoab041drLlf5vOrzWrp2eE.roa (raw, json)
Hash identifier: lea2GPzjJSTUgxR54JfJnLtJF5Z0YLUVUJXJSeH8Acw=
Subject key identifier: E8:75:47:02:86:9B:D3:8D:5D:AC:B9:5F:E6:F3:AB:CD:6A:E9:D9:E1
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3DBB
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/6HVHAoab041drLlf5vOrzWrp2eE.roa
Signing time: Wed 10 Apr 2024 21:22:45 +0000
ROA not before: Wed 10 Apr 2024 21:22:45 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15803 (0x3dbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 10 21:22:45 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E8754702869BD38D5DACB95FE6F3ABCD6AE9D9E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6d:d8:cc:34:6c:64:5e:ba:4b:57:ae:3e:c4:
ee:f9:7c:bb:11:d2:ff:d7:c0:1f:23:c8:b6:5f:10:
17:d0:48:27:3c:dd:03:cb:89:66:99:2f:a3:93:d7:
a1:af:79:62:f3:e0:43:45:45:a8:70:41:e4:ab:05:
82:06:ec:c2:a4:59:05:3d:f0:22:fe:be:7b:72:c8:
20:40:31:b4:00:0a:6e:7d:3b:bd:07:b0:20:39:bf:
6d:93:81:64:30:dd:3f:31:29:ad:7a:4e:8d:51:fc:
32:b3:35:2b:48:51:23:40:eb:82:bc:1d:b4:00:5f:
f4:13:09:54:2a:24:72:11:c2:46:c0:73:ac:f7:e3:
4a:17:43:1d:9e:29:43:43:4d:88:9c:0d:62:b9:1b:
8b:63:bc:c1:75:eb:34:c5:0f:e1:b4:a2:5a:8a:51:
41:b3:a9:64:e5:bb:07:03:13:60:d5:c4:53:b6:fb:
98:93:da:40:ac:af:45:8a:99:7a:8c:c0:43:77:31:
e5:e1:d9:b0:ce:04:5a:00:77:4c:8b:b6:3e:b2:54:
d1:9a:37:42:87:cc:ef:fe:22:6e:7c:13:0b:82:bf:
cb:e4:53:90:30:d6:e0:03:43:aa:3f:38:50:13:bf:
d5:70:7c:b1:2b:b2:2e:a7:06:79:1b:aa:36:ca:14:
14:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:75:47:02:86:9B:D3:8D:5D:AC:B9:5F:E6:F3:AB:CD:6A:E9:D9:E1
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/6HVHAoab041drLlf5vOrzWrp2eE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
40:44:54:6b:16:fc:49:51:a2:47:3c:57:b3:f6:0d:c3:24:e9:
34:57:9c:53:ad:18:8c:32:22:08:fe:22:93:66:c7:70:fa:ed:
4a:f5:39:68:0b:3b:93:43:46:f8:e5:89:db:dd:a8:e8:87:32:
17:f6:5a:1a:59:71:34:a7:a2:1a:f6:b1:9b:14:d1:5d:af:4e:
39:43:c2:26:93:d1:de:e3:4f:60:ae:0e:8d:c5:25:7e:bc:4b:
5d:cf:6c:95:7c:05:4a:a8:77:bf:cd:c9:3f:d0:91:27:dd:b4:
d6:f2:2e:db:ef:26:d7:bf:2a:06:fc:fd:8f:e3:f4:33:ec:83:
a8:7e:65:fa:64:e2:68:fc:c0:f4:20:1d:06:8e:13:4b:ed:84:
b1:da:1f:ee:11:ba:25:38:84:c2:7d:55:2d:83:f7:49:75:24:
8f:fc:61:70:2d:27:5c:24:5f:b5:91:76:04:94:3f:fc:8a:c3:
9f:55:53:14:ba:dc:05:db:9b:39:66:76:10:9c:93:f4:98:9b:
a3:7c:88:18:73:a3:4e:8a:1b:02:7f:0d:6c:a5:bb:94:36:3e:
7c:bb:f0:a1:63:50:7f:7e:47:79:0d:b3:18:13:5b:2b:dc:bf:
67:45:70:c8:6d:f5:08:9d:bd:05:7a:0e:0e:16:b7:fb:98:32:
3b:13:26:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:07 2024 by rpki-client on console-fra.rpki-client.org