Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/7GBQ6REZDVAIfzO_NFY3QxHKs98.roa
File: 7GBQ6REZDVAIfzO_NFY3QxHKs98.roa (raw, json)
Hash identifier: t8HK6g+z57n2wf86wJ9AA4Ene4f3kj8cYShpSACMv9E=
Subject key identifier: EC:60:50:E9:11:19:0D:50:08:7F:33:BF:34:56:37:43:11:CA:B3:DF
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 53B7
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/7GBQ6REZDVAIfzO_NFY3QxHKs98.roa
Signing time: Fri 10 May 2024 04:54:07 +0000
ROA not before: Fri 10 May 2024 04:54:07 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21431 (0x53b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 10 04:54:07 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=EC6050E911190D50087F33BF3456374311CAB3DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:dc:81:70:97:f0:d8:a3:a2:9c:ce:86:06:55:
e0:8a:90:df:2e:ca:a6:cc:26:b8:aa:ae:21:7f:4f:
3d:41:f4:fa:db:27:87:b9:10:6f:61:68:1e:a4:0f:
d5:05:a9:04:2a:04:9f:2a:e0:d4:0e:0a:fb:fe:50:
2f:58:66:44:dc:36:57:45:b1:bb:87:61:52:b4:df:
29:b9:c5:ae:c5:88:41:c1:aa:c8:b2:1f:06:ca:61:
79:02:9d:e1:c9:75:d1:93:fa:9e:18:6b:45:18:c3:
c7:0a:d6:18:ef:eb:99:95:bf:0b:09:56:98:48:80:
0e:18:6f:39:03:70:0f:19:7c:3a:23:4e:0f:36:3c:
fb:fc:73:17:da:71:62:c4:31:57:54:8f:93:27:dd:
f3:3b:47:c3:cd:e0:6a:27:9f:61:47:7f:da:fe:66:
2e:00:d7:c2:f1:90:1c:3c:41:15:1e:e6:1c:39:33:
85:5e:31:1e:c4:cd:ba:6b:6c:5e:db:07:aa:1a:59:
c4:c8:06:c0:3a:c1:c7:f1:66:64:4e:66:6d:11:ea:
3c:eb:6c:b8:9f:23:1f:83:a9:fd:5b:2d:27:e4:05:
4f:b1:b3:1f:95:81:45:88:60:01:83:bf:0e:a5:60:
fb:6f:e6:19:8d:1b:13:15:bb:28:51:0a:61:0c:c1:
9e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:60:50:E9:11:19:0D:50:08:7F:33:BF:34:56:37:43:11:CA:B3:DF
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/7GBQ6REZDVAIfzO_NFY3QxHKs98.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
67:67:d9:5f:e3:6e:77:40:2e:07:80:ed:8c:99:21:08:01:3a:
00:76:b0:74:cd:6c:7b:a3:2d:05:fe:12:03:fc:77:2a:55:9b:
5e:47:d7:bc:e2:6e:78:a5:07:ec:a0:a6:1e:a5:ee:9a:59:c9:
8f:06:6d:a5:44:40:72:26:9b:82:25:06:73:fc:83:27:52:d5:
04:6f:34:6b:bd:6d:4f:b1:52:3a:26:f6:31:6d:12:f5:bc:9a:
2a:a3:b1:15:c3:29:f0:c3:52:fe:e7:c8:8d:a9:43:ec:12:c3:
c1:22:82:38:d0:e2:06:4f:10:a4:a0:31:2d:4b:33:a4:35:80:
13:40:82:ef:f0:b5:6d:b4:7f:3b:61:39:02:38:7e:82:ed:ae:
01:22:2c:e0:a8:70:74:e7:b1:82:42:c5:56:2e:a5:18:22:91:
45:10:b8:6b:04:90:b3:f1:c8:dd:25:0c:5b:26:b6:14:16:b4:
ef:81:69:3c:41:a5:e2:77:52:49:a6:12:8c:cc:de:01:db:93:
4f:74:11:33:85:c7:db:c4:a2:b1:f4:c4:7e:22:4c:07:14:29:
3b:e6:1b:df:a2:b6:69:62:ba:d1:a3:a8:07:b5:5f:68:59:58:
2c:87:1f:44:4c:a7:e4:68:ef:05:9a:d4:07:d3:d1:15:80:47:
c1:46:4b:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:47:26 2025 by rpki-client