Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/AdXv_aOc8Ps-SPFyWDQNYOqx6Vs.roa
File: AdXv_aOc8Ps-SPFyWDQNYOqx6Vs.roa (raw, json)
Hash identifier: 8XHxyV8VjDbfMxM4GAFyxvNP+EIZDCk7b6rgTw2F9i4=
Subject key identifier: 01:D5:EF:FD:A3:9C:F0:FB:3E:48:F1:72:58:34:0D:60:EA:B1:E9:5B
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 36FB
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/AdXv_aOc8Ps-SPFyWDQNYOqx6Vs.roa
Signing time: Mon 01 Apr 2024 21:22:14 +0000
ROA not before: Mon 01 Apr 2024 21:22:14 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14075 (0x36fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 1 21:22:14 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=01D5EFFDA39CF0FB3E48F17258340D60EAB1E95B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ac:68:31:fa:b7:ce:17:39:30:21:8e:9f:59:
26:0a:95:36:f0:3d:4c:79:b2:f4:56:1f:09:e4:6a:
99:7e:a6:a3:f2:01:46:a0:1d:9b:45:da:71:46:0a:
f1:42:6d:75:a8:b9:26:56:76:a0:09:b6:0c:df:7a:
dc:82:b1:19:5e:9b:4a:85:07:aa:b7:f3:13:e8:e5:
c3:3d:79:82:e7:d9:92:17:00:64:8c:e4:bf:16:6d:
75:bb:5d:3e:fc:9a:14:e8:5f:ab:fd:51:b1:f9:d9:
53:1c:40:6d:5b:4e:76:03:e0:10:fe:d9:46:f5:52:
64:17:c4:8b:ec:6f:6c:d3:48:12:54:1d:27:25:d2:
8d:85:95:d1:ce:f2:4a:25:c6:93:fb:11:0f:63:12:
92:82:c5:e8:73:f4:fb:37:67:74:82:1a:a5:fd:b1:
50:88:ac:d7:47:93:85:d8:a7:8f:59:5e:9a:16:ea:
d9:4f:08:65:a7:98:fa:ea:d1:e2:29:3d:61:95:07:
78:e9:13:a1:29:7c:ae:bf:c1:39:b4:34:f1:62:38:
5c:82:1c:67:3a:b1:42:73:c0:da:d8:41:15:2b:e6:
fc:91:c1:3c:d8:66:12:40:64:ed:97:2f:4c:09:0a:
0d:48:0b:a9:64:0a:ba:32:dc:97:7a:db:b6:8f:5e:
e7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D5:EF:FD:A3:9C:F0:FB:3E:48:F1:72:58:34:0D:60:EA:B1:E9:5B
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/AdXv_aOc8Ps-SPFyWDQNYOqx6Vs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
38:85:40:1a:39:79:fd:29:54:07:3f:f9:55:04:25:9a:e2:ee:
7e:7c:60:e3:f9:6c:52:67:73:b6:1c:75:a0:73:f3:c2:a2:80:
25:50:09:e3:8d:26:6f:48:8a:19:15:61:04:6a:25:83:07:86:
c5:75:8b:b4:9b:b1:ed:e2:d8:e0:eb:84:d8:f6:b4:4a:a3:c2:
4a:66:ab:26:87:77:7e:28:28:6b:dd:0d:eb:db:04:b1:c4:5e:
40:c8:d4:e1:ba:62:6e:ab:5b:e6:28:71:92:81:f9:fd:e5:1a:
09:bd:a1:6a:c8:b0:03:dd:a3:69:26:ed:38:c8:73:0d:ef:5d:
b1:e0:2c:c5:c1:7d:65:8a:d3:d6:1d:92:03:f9:8b:f9:cc:a2:
07:cd:60:ce:a7:94:d2:ca:6e:ca:d1:92:bf:db:b5:88:e5:81:
16:74:f5:36:5c:da:c8:40:e9:a7:9f:64:03:97:a6:ab:ba:af:
d2:ce:91:0c:39:e3:8e:21:62:17:80:dd:69:7a:c3:cd:55:58:
fd:4b:93:a6:e7:d6:e3:61:81:1f:e5:a0:1e:98:0a:4b:f4:29:
3b:ec:12:0b:32:5e:2d:27:29:5f:41:58:75:c6:8c:c3:64:78:
23:68:1a:8e:7f:8f:7e:78:9a:62:5f:e4:da:c0:67:0a:1d:cc:
c0:85:49:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:11 2024 by rpki-client on console-fra.rpki-client.org