Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/8whJxu_sN0bJfi2VMpLiF7yRP3I.roa
File: 8whJxu_sN0bJfi2VMpLiF7yRP3I.roa (raw, json)
Hash identifier: k10oBsrbnZRPwJZfyHLPM9eMFq6SKrw6HRoT8lizzpA=
Subject key identifier: F3:08:49:C6:EF:EC:37:46:C9:7E:2D:95:32:92:E2:17:BC:91:3F:72
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5163
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/8whJxu_sN0bJfi2VMpLiF7yRP3I.roa
Signing time: Tue 07 May 2024 02:23:55 +0000
ROA not before: Tue 07 May 2024 02:23:55 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20835 (0x5163)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 7 02:23:55 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F30849C6EFEC3746C97E2D953292E217BC913F72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3b:3f:95:3c:6d:98:1e:8e:25:ec:ac:50:cf:
15:b7:40:96:50:b1:cb:9a:d3:7a:98:dc:80:d0:1b:
e5:00:00:5d:85:0e:e6:24:e3:4e:cd:23:3f:50:86:
a0:21:6f:37:b3:3b:d8:66:09:77:6a:68:ec:32:28:
dd:d6:3f:1e:80:02:05:08:d6:4e:68:f3:eb:5b:da:
48:76:f4:68:cb:67:cc:0a:d0:ce:bc:71:67:c7:4f:
34:92:bd:38:3a:6a:43:45:ea:4d:c6:cc:5a:4b:35:
61:1d:09:8c:62:bc:3a:96:95:6d:56:c2:74:54:01:
2a:d3:6e:af:aa:92:d7:f0:54:4c:93:80:28:32:e7:
3b:67:36:de:87:77:f8:96:50:da:ac:b3:3e:d9:0b:
26:9a:3d:5f:a7:3c:c9:22:c8:b6:f9:3f:81:10:f7:
52:92:0f:4c:f2:68:1d:30:56:e6:3b:e5:12:49:82:
a9:c1:2d:de:73:99:bb:f7:a4:2e:8f:6a:6e:0e:c8:
3c:27:51:3c:d0:6e:31:7e:a5:9b:64:f4:65:71:67:
8b:f4:f7:ce:26:d5:84:04:70:fe:3f:8a:01:4f:cd:
01:d7:ee:5c:9d:cf:35:e6:ad:67:ef:ae:08:31:63:
6b:9c:94:79:35:a7:d2:53:03:7f:4c:ec:c8:6c:59:
a9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:08:49:C6:EF:EC:37:46:C9:7E:2D:95:32:92:E2:17:BC:91:3F:72
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/8whJxu_sN0bJfi2VMpLiF7yRP3I.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
2a:94:1a:18:ed:c0:30:ae:ba:73:3f:66:5e:5f:e4:12:c5:59:
65:12:f3:7f:1d:9a:f2:eb:cc:a9:f5:f0:36:d6:57:71:39:a4:
7d:93:41:97:ec:d3:5c:b0:c1:82:ec:6f:0d:1b:1f:68:c4:36:
0e:11:f4:a9:58:e8:0b:56:98:f9:e5:e1:5d:5e:f7:e0:68:8b:
d3:d4:1e:66:59:45:d0:83:86:70:cb:1b:53:90:87:cb:df:b2:
32:6f:c2:84:f9:6e:07:95:09:e6:20:67:9c:85:40:1c:b2:c7:
f2:65:ce:b2:a0:6d:04:c9:76:57:33:7d:4e:e2:a4:dc:6b:36:
2b:f2:cb:fa:d4:2e:29:a4:66:f9:2d:47:df:1a:45:ae:ce:08:
2b:c8:0e:d3:2f:8a:34:59:69:32:70:05:87:bc:db:d1:fd:50:
3b:75:38:82:4c:33:19:ec:6f:29:b4:c0:0b:d2:e9:2d:a8:27:
2a:5b:d7:63:e7:74:aa:20:82:80:5f:45:1a:2c:0c:22:af:4a:
5b:2a:21:25:d9:15:d4:d6:14:27:90:6c:28:9a:c8:e0:a5:38:
9f:f4:59:70:8d:cc:41:69:55:2a:1a:34:a2:8d:91:02:89:bc:
8e:a2:39:2e:11:08:ab:39:05:b6:72:3d:9b:35:6e:62:08:97:
64:03:b1:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:09 2024 by rpki-client on console-fra.rpki-client.org