Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/HLUO-dGHdO4JGsDdmf5lddpMkgI.roa
File: HLUO-dGHdO4JGsDdmf5lddpMkgI.roa (raw, json)
Hash identifier: YGAzZw/ASzI01Z8LNYd5N+Co0G4FF9uWAYiWkS9SZFU=
Subject key identifier: 1C:B5:0E:F9:D1:87:74:EE:09:1A:C0:DD:99:FE:65:75:DA:4C:92:02
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 48A7
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/HLUO-dGHdO4JGsDdmf5lddpMkgI.roa
Signing time: Thu 25 Apr 2024 10:53:19 +0000
ROA not before: Thu 25 Apr 2024 10:53:19 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18599 (0x48a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 25 10:53:19 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=1CB50EF9D18774EE091AC0DD99FE6575DA4C9202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0e:ae:98:88:b4:5d:e0:12:98:66:15:6d:1f:
7a:78:3e:23:d9:c3:64:aa:82:25:c0:dd:b3:72:63:
a5:82:c2:b7:dc:4e:72:ea:4b:db:a1:07:02:d0:34:
c5:48:13:a8:18:eb:8f:b4:84:cf:bb:4c:54:7e:dc:
4c:36:b6:92:f0:89:67:42:63:3a:6c:c1:17:5b:ae:
98:c7:aa:f3:67:20:00:ae:9e:13:41:1c:5c:3e:73:
8a:29:70:e2:ee:cf:8f:e5:bf:75:35:24:40:64:d0:
12:34:bb:26:f4:11:97:ed:50:5a:e1:b9:e7:9f:cf:
8f:00:60:b5:96:3a:19:19:cb:37:a0:22:c9:83:fa:
02:79:e8:48:a7:dc:bb:2c:5b:fe:b8:2e:bb:cc:12:
85:15:56:8e:ab:56:b6:4f:4d:02:c8:77:5b:ba:d6:
2d:14:73:8d:d3:dc:dc:fe:04:2a:da:af:af:58:24:
15:aa:e3:47:21:56:aa:7d:fd:f2:86:04:90:07:a3:
51:42:ef:5e:9a:1f:ea:6d:14:f0:1a:fa:b5:5b:a4:
ef:e0:d3:bf:b7:07:0c:6a:6a:6d:f5:2f:09:5e:80:
4c:39:09:59:7b:90:5e:d6:6c:41:c3:01:d7:5e:70:
4c:0c:06:7b:ef:1a:11:65:7b:6f:c1:d5:3e:ce:4f:
c3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:B5:0E:F9:D1:87:74:EE:09:1A:C0:DD:99:FE:65:75:DA:4C:92:02
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/HLUO-dGHdO4JGsDdmf5lddpMkgI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
80:fa:4b:f5:94:23:e6:4f:37:2a:0e:b6:12:c1:dc:81:ee:59:
34:d1:f1:86:d2:41:23:c9:8d:07:84:d7:f9:de:d8:41:b1:a9:
ef:c2:c7:d4:c8:0e:16:c0:78:5e:b1:3c:d1:0d:d0:50:9c:0c:
10:c7:6c:70:57:85:68:74:6b:15:62:09:9e:29:f3:4c:2a:46:
fb:af:92:a3:49:b9:2f:97:ee:07:54:f1:d3:07:eb:36:06:a3:
25:16:de:51:7a:af:42:f8:42:60:0b:ef:00:15:b5:8a:75:99:
17:72:b0:a5:5a:9a:4b:af:b6:19:50:b6:9c:e3:c0:7c:45:85:
a4:c9:f3:7b:9b:a1:e0:2b:60:7c:bd:a1:7d:de:dc:33:41:c2:
21:d0:64:b8:91:2f:57:a1:e8:81:54:9f:56:9f:dd:58:79:e1:
ab:cd:3e:93:51:aa:95:a6:b8:2c:1e:ff:ee:d8:c3:86:4a:d8:
f4:2e:3e:3a:9a:c5:31:1b:27:e0:b4:f1:9e:2a:89:ff:30:a6:
df:d4:e3:50:17:ba:45:cc:71:98:62:1e:dc:6d:2f:7c:05:84:
40:a1:d2:7f:57:5f:13:fc:8e:fe:9f:99:1a:04:f8:be:36:35:
85:12:73:70:43:79:75:c2:c0:cb:e5:f8:ea:72:fd:15:72:4e:
6f:fe:4f:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:39:38 2025 by rpki-client