Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/FUxClib3vsnq8lBmnCyj1oPhi-s.roa
File: FUxClib3vsnq8lBmnCyj1oPhi-s.roa (raw, json)
Hash identifier: J61K6xUfpMslFAUAXx9pq8JWE9PQG3U66ni6cUtAOIY=
Subject key identifier: 15:4C:42:96:26:F7:BE:C9:EA:F2:50:66:9C:2C:A3:D6:83:E1:8B:EB
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3523
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/FUxClib3vsnq8lBmnCyj1oPhi-s.roa
Signing time: Sat 30 Mar 2024 10:22:14 +0000
ROA not before: Sat 30 Mar 2024 10:22:14 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13603 (0x3523)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Mar 30 10:22:14 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=154C429626F7BEC9EAF250669C2CA3D683E18BEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:af:d6:82:88:31:39:f9:5b:6c:0a:c6:16:0b:
09:cb:43:17:52:ca:46:db:bb:7d:71:9e:f6:ed:01:
34:bf:4b:c1:29:93:94:4d:fb:8d:3d:13:92:78:56:
37:44:e5:59:cf:5c:1c:33:71:15:b5:9a:94:f7:5f:
22:2a:37:c6:fa:b7:9b:e7:c4:b7:06:a6:43:c5:a3:
2e:ae:d1:73:e3:f2:f6:1e:54:d3:4b:19:71:51:2b:
33:c1:ce:2f:66:ad:a3:6d:43:cf:f4:42:22:c0:c0:
84:86:b8:30:d9:d6:4d:1b:f6:c9:6f:2c:20:33:6a:
24:9d:00:f1:75:4c:89:af:f0:d7:56:3d:64:30:23:
5f:a7:b6:43:e4:94:80:65:a7:8d:1a:c7:88:b0:99:
f7:22:86:3b:8b:40:ce:b4:64:8b:52:9e:39:7f:8a:
23:d4:f2:1c:34:35:a8:b2:f5:30:34:77:06:6b:5e:
ec:e8:d7:f7:3c:ae:0c:11:7f:18:c5:b0:18:09:e9:
97:e5:52:dd:ab:d0:02:1b:63:26:75:c0:0c:91:3b:
d3:f9:c4:c8:38:d8:b7:60:e8:37:07:6b:d2:6b:4e:
fd:17:1c:6f:54:a4:f9:b3:bf:1f:8e:06:a9:8c:08:
dd:a8:af:e5:29:67:f2:6f:8c:33:c1:3d:e3:96:cf:
e9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:4C:42:96:26:F7:BE:C9:EA:F2:50:66:9C:2C:A3:D6:83:E1:8B:EB
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/FUxClib3vsnq8lBmnCyj1oPhi-s.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
ba:23:fa:ce:f4:0c:de:ed:d4:38:d7:2c:28:27:18:b9:7b:55:
02:c5:56:56:7d:69:22:bb:75:b3:ad:5f:e8:ea:15:90:26:a5:
b1:06:e3:58:58:19:ae:f0:ca:33:8e:5b:cb:8e:db:4b:43:2e:
9d:a9:09:d0:08:ad:68:a1:d8:64:b2:38:41:98:9f:c2:56:ca:
7a:10:1d:d6:90:01:cd:6c:d0:07:a9:14:d9:83:30:ac:2f:06:
d4:80:a4:94:f0:ab:9c:8e:26:f1:29:24:d5:9f:60:a2:d0:31:
71:cd:42:42:56:74:6a:c6:fb:e2:4e:be:5d:24:80:71:e1:72:
8e:aa:23:3c:af:ce:aa:f7:03:2d:86:08:35:c8:03:1f:52:b2:
88:6d:e8:86:da:0c:f3:a0:dc:bd:7c:75:35:b0:a9:f4:eb:c3:
23:1f:e6:a7:b0:77:d3:16:bd:34:b1:cd:1c:b5:37:7a:2e:d8:
35:c9:79:9a:82:73:83:17:36:c2:c0:00:6a:8e:da:5c:29:e3:
b0:77:75:25:c6:18:b9:a0:0c:21:87:93:d3:a4:82:3e:07:7c:
d9:6f:2d:2d:6e:23:86:89:8f:17:c4:a2:0d:83:69:07:44:69:
47:b9:cf:7b:f4:6a:74:67:9f:b7:b2:c9:8b:d7:f0:80:f9:ec:
0d:00:30:cf
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICNSMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDAzMzAx
MDIyMTRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDE1NEM0Mjk2MjZGN0JF
QzlFQUYyNTA2NjlDMkNBM0Q2ODNFMThCRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNr9aCiDE5+VtsCsYWCwnLQxdSykbbu31xnvbtATS/S8Epk5RN
+409E5J4VjdE5VnPXBwzcRW1mpT3XyIqN8b6t5vnxLcGpkPFoy6u0XPj8vYeVNNL
GXFRKzPBzi9mraNtQ8/0QiLAwISGuDDZ1k0b9slvLCAzaiSdAPF1TImv8NdWPWQw
I1+ntkPklIBlp40ax4iwmfcihjuLQM60ZItSnjl/iiPU8hw0Naiy9TA0dwZrXuzo
1/c8rgwRfxjFsBgJ6ZflUt2r0AIbYyZ1wAyRO9P5xMg42Ldg6DcHa9JrTv0XHG9U
pPmzvx+OBqmMCN2or+UpZ/JvjDPBPeOWz+nPAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUFUxClib3vsnq8lBmnCyj1oPhi+swHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L0ZVeENsaWIzdnNucThs
Qm1uQ3lqMW9QaGktcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAYkAEAwDQYJKoZIhvcNAQELBQADggEBALoj+s70DN7t1DjXLCgnGLl7VQLFVlZ9
aSK7dbOtX+jqFZAmpbEG41hYGa7wyjOOW8uO20tDLp2pCdAIrWih2GSyOEGYn8JW
ynoQHdaQAc1s0AepFNmDMKwvBtSApJTwq5yOJvEpJNWfYKLQMXHNQkJWdGrG++JO
vl0kgHHhco6qIzyvzqr3Ay2GCDXIAx9Ssoht6IbaDPOg3L18dTWwqfTrwyMf5qew
d9MWvTSxzRy1N3ou2DXJeZqCc4MXNsLAAGqO2lwp47B3dSXGGLmgDCGHk9Okgj4H
fNlvLS1uI4aJjxfEog2DaQdEaUe5z3v0anRnn7eyyYvX8ID57A0AMM8=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:33:47 2025 by rpki-client