Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/HJ4tnsL0m_R-8kBMKm2GzksWouc.roa
File: HJ4tnsL0m_R-8kBMKm2GzksWouc.roa (raw, json)
Hash identifier: yGNidbKTN8JNRZP8ZKA0nZxaX0Vnig8bXZyeh4Lhbaw=
Subject key identifier: 1C:9E:2D:9E:C2:F4:9B:F4:7E:F2:40:4C:2A:6D:86:CE:4B:16:A2:E7
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3B7F
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/HJ4tnsL0m_R-8kBMKm2GzksWouc.roa
Signing time: Sun 07 Apr 2024 21:52:32 +0000
ROA not before: Sun 07 Apr 2024 21:52:32 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15231 (0x3b7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 7 21:52:32 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=1C9E2D9EC2F49BF47EF2404C2A6D86CE4B16A2E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f2:6f:68:18:f2:f7:70:27:8a:dc:f9:93:e7:
00:99:3b:c9:92:97:45:50:1b:e2:40:b5:ce:28:d8:
ad:4f:a2:62:0d:d7:9b:c6:f8:0e:ea:9c:34:21:2e:
0e:0d:f9:50:a7:3a:2b:7a:ca:68:46:55:a6:a9:da:
4d:d5:e2:5e:20:a0:d2:f8:a9:60:4a:12:54:e4:39:
6b:79:77:11:b1:80:fd:89:35:b7:12:69:68:3f:80:
91:a7:65:c7:db:c3:ad:20:cc:a4:39:9f:26:33:1b:
bf:12:e7:08:a8:ae:63:81:8e:8a:b7:84:3e:bc:13:
46:95:ba:02:32:b3:1d:bc:58:50:94:d2:95:e1:2b:
7a:f3:29:08:dd:38:a1:d4:21:61:74:ec:b7:1f:5d:
be:8c:98:77:85:84:81:98:e9:e8:d4:a5:fe:98:d3:
f3:af:6c:bc:bf:8b:fc:5b:71:cc:95:e1:8b:22:6a:
28:c7:14:ac:af:ba:c6:a5:f2:bf:81:33:ab:da:15:
b4:72:46:fc:0a:98:35:7d:01:ce:97:5a:27:36:4d:
5e:5d:31:da:b1:97:22:fc:44:e4:f6:60:8f:66:3b:
ac:8b:58:4d:f5:af:30:3f:a6:e8:80:21:f6:6f:79:
ab:91:d6:f1:9a:06:e5:bb:f9:21:fc:7e:03:12:99:
27:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:9E:2D:9E:C2:F4:9B:F4:7E:F2:40:4C:2A:6D:86:CE:4B:16:A2:E7
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/HJ4tnsL0m_R-8kBMKm2GzksWouc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
66:e9:e2:ff:6c:04:cb:f1:b5:97:17:eb:7a:e7:01:d0:fc:85:
3f:93:31:05:d6:87:3e:4c:e0:13:20:de:a4:ff:a6:52:d0:f2:
92:41:8e:3b:e2:94:88:06:c1:8f:48:3c:c1:1f:10:c2:c3:f6:
cc:f5:3b:68:d5:64:54:0b:6d:f3:e4:f2:31:29:d2:ee:20:6b:
bb:59:81:c1:51:26:a4:55:02:a3:16:af:e0:0a:9e:16:2e:77:
15:d2:c2:cf:55:fe:a0:92:59:75:f3:06:81:95:65:92:6a:02:
4f:c8:61:86:63:0f:c1:27:db:84:f4:aa:35:97:04:b4:b8:8f:
ef:ef:13:f9:0e:27:f4:b7:40:e6:e4:16:fc:a1:b8:31:0e:56:
58:da:20:be:7c:7d:0b:36:3c:c0:5c:b4:39:0f:ed:e6:f7:34:
c7:2a:5f:24:3e:81:73:4d:57:d5:5c:15:0a:03:af:10:6e:ee:
9e:c8:0c:70:51:aa:26:ff:9b:03:f2:71:74:79:f2:15:61:6c:
65:32:54:71:a1:dd:83:76:82:4a:8c:dc:8d:31:12:a2:49:a0:
eb:a7:2b:86:87:88:4c:cb:c1:e3:0e:41:62:e8:52:b7:7c:87:
f5:05:fa:13:23:1c:11:06:b6:3d:ff:63:8e:63:61:c3:b2:97:
68:6f:bf:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:17 2024 by rpki-client on console-fra.rpki-client.org