Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/Mvf_3G5TvIeJrFjpU_poYo6PxEc.roa
File: Mvf_3G5TvIeJrFjpU_poYo6PxEc.roa (raw, json)
Hash identifier: aYWrWz3824LL8VeB+fR99AdrSQCi9Ax59zGrxojTmYw=
Subject key identifier: 32:F7:FF:DC:6E:53:BC:87:89:AC:58:E9:53:FA:68:62:8E:8F:C4:47
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 47B7
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Mvf_3G5TvIeJrFjpU_poYo6PxEc.roa
Signing time: Wed 24 Apr 2024 04:53:15 +0000
ROA not before: Wed 24 Apr 2024 04:53:15 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18359 (0x47b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 24 04:53:15 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=32F7FFDC6E53BC8789AC58E953FA68628E8FC447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a9:af:e8:69:11:66:a7:c3:7d:66:1c:6d:8e:
d2:d0:45:20:6f:e0:55:d8:cf:22:05:32:d1:cd:54:
5f:8e:de:fd:05:f0:ca:0c:f5:61:a9:02:c7:cd:a1:
bc:7e:8a:05:5c:6d:04:18:7a:a0:9b:70:29:69:7c:
91:37:1f:5e:05:17:7b:3b:0e:16:3c:6d:da:87:1a:
c5:6a:e7:92:2c:6b:68:66:7f:8a:b5:ca:65:dd:cd:
46:28:1d:fa:a3:aa:bb:6b:5d:9b:54:1b:8c:5e:01:
41:0e:50:e9:6e:64:8e:f1:d2:ca:79:e4:6c:2e:9c:
dc:57:5c:bc:a8:f9:b8:56:15:80:cd:8e:4e:31:b9:
99:b5:a2:05:67:c6:c7:9e:83:9a:47:10:30:ae:5b:
8f:c3:42:a9:4f:ab:7c:78:61:ef:26:0e:d4:7c:ab:
aa:3c:6e:a0:51:38:8d:9d:03:5b:30:79:af:20:c2:
9b:3a:28:6a:db:fb:35:15:83:a6:4b:a6:1e:3e:24:
0b:c1:90:3d:51:d7:31:71:77:81:51:d1:67:0f:07:
fc:b4:8f:d1:51:21:8c:db:ef:a2:46:35:e9:cf:de:
3a:7f:23:44:00:e2:6f:89:0b:ff:e3:37:f5:4d:5c:
6a:61:4b:1c:f6:97:ee:e4:4b:8a:0a:78:db:a0:67:
17:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F7:FF:DC:6E:53:BC:87:89:AC:58:E9:53:FA:68:62:8E:8F:C4:47
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Mvf_3G5TvIeJrFjpU_poYo6PxEc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
bc:d9:be:95:f6:dc:b6:70:41:e0:54:16:84:de:fe:85:39:bb:
c0:9b:6b:cd:d0:4c:74:0d:7b:6b:ba:8e:2f:d7:94:f5:6f:77:
e6:b6:ec:32:1c:ae:c7:c2:c6:74:72:a9:26:1a:99:b9:be:2b:
44:19:f9:a2:00:90:d3:e7:a0:12:ab:4a:8c:a1:3e:bf:36:51:
f6:fb:0f:f8:66:21:a0:08:95:1c:09:a8:e5:75:d8:1e:05:06:
dd:35:0b:86:c8:68:f8:fb:b2:da:a9:2a:d6:e0:c2:f7:4d:70:
a0:49:6d:0f:9c:55:4e:6c:58:73:6b:77:8a:36:f7:e3:6f:44:
78:d5:f8:12:66:f3:e3:13:da:2b:af:9f:63:88:5e:5d:fc:4a:
cb:7a:b7:0a:ac:16:ef:2c:50:96:21:b7:26:9d:82:66:a0:f2:
9e:8e:ef:95:4f:4b:28:21:fc:bd:36:ae:ff:87:59:4a:31:ff:
9c:24:78:58:bb:56:f9:ad:75:6f:ff:4a:ba:38:a4:ad:65:ed:
4c:76:d5:56:de:16:51:b3:a9:b4:09:1f:c2:e8:c9:3b:c1:3f:
09:d0:c6:df:d5:9f:f7:65:de:22:0e:08:79:4d:c6:91:e6:2d:
42:7e:79:f8:fc:f3:34:9a:4e:f6:6e:39:0a:ec:a7:f9:41:e8:
f0:f7:5e:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:21 2024 by rpki-client on console-fra.rpki-client.org