Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/S7IEEG35kxgrh0cb57EkAnUbhCI.roa
File: S7IEEG35kxgrh0cb57EkAnUbhCI.roa (raw, json)
Hash identifier: w2zk4rN1Bxp4nGlhL0Ruf7H24iEtqK6xftmcF4YnwsA=
Subject key identifier: 4B:B2:04:10:6D:F9:93:18:2B:87:47:1B:E7:B1:24:02:75:1B:84:22
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5653
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/S7IEEG35kxgrh0cb57EkAnUbhCI.roa
Signing time: Mon 13 May 2024 16:24:08 +0000
ROA not before: Mon 13 May 2024 16:24:08 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22099 (0x5653)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 13 16:24:08 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=4BB204106DF993182B87471BE7B12402751B8422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6d:89:66:37:26:3f:45:26:94:09:96:0d:81:
03:96:78:2a:f9:e9:b3:a4:ad:5d:2b:ad:72:05:9e:
36:f1:cd:41:bc:71:1b:09:cd:f2:00:f5:eb:a0:d1:
f4:b8:ab:39:ee:87:61:ad:4f:16:e9:47:7b:6f:6e:
9f:64:39:07:3b:d9:4e:d4:31:a1:c9:f4:91:26:c4:
d6:fe:17:6c:ec:7c:f3:de:78:17:f5:b5:15:d7:49:
7f:6c:ca:2c:12:32:dd:23:c4:e9:f3:2e:33:ff:69:
81:4a:31:40:5e:e6:ff:bb:b8:71:f6:1f:2b:96:5f:
5b:fe:71:c5:e7:13:78:95:2c:ea:9d:40:6a:98:08:
13:d0:06:2e:00:a3:c4:8d:b0:71:7f:81:fa:7f:86:
8f:5b:14:8d:c5:58:f6:de:ab:82:52:45:43:1d:d1:
1c:4a:73:73:7f:89:2c:7b:fc:89:f8:1d:83:a5:19:
d2:61:8f:b1:c0:47:c3:d1:9d:0a:73:bd:7c:f1:77:
ee:89:00:96:f9:14:e3:03:dd:72:b7:80:93:d0:5d:
ae:df:71:0d:de:a2:e1:3b:15:aa:bd:46:8c:21:13:
84:d2:67:17:9d:65:52:02:6b:7d:b7:5c:6e:95:93:
e8:82:ad:e0:e6:21:79:16:6e:d6:a2:ec:8d:4a:8d:
82:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B2:04:10:6D:F9:93:18:2B:87:47:1B:E7:B1:24:02:75:1B:84:22
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/S7IEEG35kxgrh0cb57EkAnUbhCI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
0f:4b:e7:13:ca:9d:86:ff:3c:7b:bb:ff:a7:90:ff:2d:3e:a5:
c7:86:5d:6e:f5:24:e7:94:35:16:f9:80:99:21:0c:06:a1:9b:
5b:65:27:f4:ff:1d:76:5a:bb:e2:7e:17:43:5a:f1:bc:77:59:
cf:d0:66:9a:f9:64:d9:ac:58:bd:18:cd:1d:cb:d9:8f:06:14:
3e:22:12:d6:a4:9a:59:1d:a4:e0:d3:5b:87:09:66:89:b9:ca:
50:81:f7:5a:f6:5d:0b:8d:1f:72:c7:7e:db:95:68:34:2e:48:
23:02:15:3d:c4:26:20:91:21:d8:89:a2:3c:12:fc:31:e3:2a:
cc:bc:af:b7:a2:12:6d:0f:85:62:5d:64:fd:f2:74:ad:cc:c4:
c9:b1:b1:26:01:78:af:90:a3:93:d7:17:a9:32:67:7c:3e:28:
de:97:09:f7:77:0b:e7:97:9f:f7:77:e0:2b:3c:8a:69:cc:33:
7e:01:d2:92:9f:66:60:e4:0e:18:8a:58:66:f6:97:fe:f8:95:
44:34:ef:07:be:ee:2e:25:9f:1a:cb:54:95:61:0b:f2:a8:9d:
8a:67:dd:95:e2:2b:29:a9:3e:16:65:67:2d:ce:72:d4:f8:70:
d9:97:a0:e4:58:b8:e7:5d:0a:f1:41:be:97:c2:21:8b:8a:56:
04:7e:e5:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:19:31 2025 by rpki-client