Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/O73TZnji8o9-RvgV5K8ANk6svOg.roa
File: O73TZnji8o9-RvgV5K8ANk6svOg.roa (raw, json)
Hash identifier: vcBR2y7WyacyqeOePv7yQa5OuEcUb5wZvlnGQs/ZmpQ=
Subject key identifier: 3B:BD:D3:66:78:E2:F2:8F:7E:46:F8:15:E4:AF:00:36:4E:AC:BC:E8
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 56E3
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/O73TZnji8o9-RvgV5K8ANk6svOg.roa
Signing time: Tue 14 May 2024 10:24:08 +0000
ROA not before: Tue 14 May 2024 10:24:08 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22243 (0x56e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 14 10:24:08 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=3BBDD36678E2F28F7E46F815E4AF00364EACBCE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:97:63:85:e5:71:98:a7:f1:10:22:37:9e:8d:
90:09:d6:00:5e:d2:ec:4f:ab:42:38:74:44:3f:2c:
36:60:40:8d:2c:c4:43:7d:62:74:b6:1c:06:8b:a2:
16:b3:e6:35:ee:19:6b:b4:3f:f3:af:d3:55:64:9a:
23:fd:71:9f:9f:03:1d:2c:fd:8b:fe:00:66:62:32:
73:f8:23:c9:4e:a8:83:b2:97:2b:a2:05:88:25:46:
c3:a0:bd:71:63:57:dd:5b:64:d0:16:9b:da:3f:5e:
b1:f8:b8:c8:6f:4b:48:2b:a2:87:ab:04:db:f3:43:
f0:f8:10:20:0a:76:31:7f:06:01:6c:07:d6:e3:7c:
4c:67:83:9c:47:37:d8:25:16:d5:c8:42:11:f8:df:
95:53:97:00:40:92:94:52:4f:da:5e:4d:cd:bb:1e:
97:12:be:09:0a:6b:f7:53:d6:c7:de:dc:66:32:33:
35:70:3e:00:67:b8:e3:a4:9f:1e:66:22:2f:e3:6a:
98:cd:e7:68:78:03:57:e3:25:15:06:36:99:56:77:
c0:87:3f:72:22:f8:60:1f:0e:77:76:21:26:b1:fc:
1d:45:b4:ec:78:60:11:d6:33:3e:0d:fb:6f:ff:71:
da:89:88:3d:fc:c2:43:6b:c9:4f:c8:50:4e:08:c6:
28:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:BD:D3:66:78:E2:F2:8F:7E:46:F8:15:E4:AF:00:36:4E:AC:BC:E8
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/O73TZnji8o9-RvgV5K8ANk6svOg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
9a:d3:b3:de:c4:83:0b:75:92:68:fc:fc:91:b5:6c:4f:6f:29:
78:6e:e8:c1:98:9d:d6:3c:45:6b:e4:c4:5a:90:b2:1c:0b:49:
71:ba:93:4c:af:3a:e9:b7:f0:e0:19:8d:2a:8a:37:21:b3:b2:
3f:df:5a:42:61:1f:e0:68:16:3a:79:6b:b1:da:76:d0:57:59:
3c:8e:9e:2b:da:3e:7c:7c:82:2c:5e:c9:42:f1:82:d0:5d:49:
36:99:54:6d:67:fd:43:2d:bd:ca:92:5e:a5:70:25:a6:73:97:
02:86:33:69:43:6a:76:f9:84:de:a8:cf:31:4f:77:6b:a1:5b:
43:ca:d6:83:98:af:bc:d9:08:11:53:10:82:af:a4:2e:7e:6a:
4b:6d:e6:2a:8a:bf:1e:85:1b:04:f6:d5:eb:32:61:75:1d:3f:
c9:09:eb:8c:a7:45:f0:d8:2a:20:cb:be:85:9a:d4:56:f9:be:
78:99:00:2f:f5:d3:92:5a:9c:bc:d7:3d:fd:b9:c3:9e:a8:e2:
0b:94:8f:5a:1c:bc:48:c0:85:ea:14:d5:1f:83:fb:9d:d4:a6:
cd:5f:4e:36:69:23:e2:74:b5:ae:d9:20:dd:4a:57:5a:49:cd:
59:95:2f:fb:33:0d:70:b7:b7:ac:69:55:2c:79:cf:26:e2:12:
67:f9:ef:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:43:16 2025 by rpki-client