Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/WLgXUImAs06MWxbHYv8IytNpiJ4.roa
File: WLgXUImAs06MWxbHYv8IytNpiJ4.roa (raw, json)
Hash identifier: ntg0kw7XSl7mtQn4YeYAzpYTioydXp2VjEmHXjv/vOs=
Subject key identifier: 58:B8:17:50:89:80:B3:4E:8C:5B:16:C7:62:FF:08:CA:D3:69:88:9E
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3B1B
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/WLgXUImAs06MWxbHYv8IytNpiJ4.roa
Signing time: Sun 07 Apr 2024 09:23:00 +0000
ROA not before: Sun 07 Apr 2024 09:23:00 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15131 (0x3b1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 7 09:23:00 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=58B817508980B34E8C5B16C762FF08CAD369889E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:96:fb:c6:d9:67:5f:bc:33:12:c3:e0:12:82:
e6:ce:1d:46:36:a5:34:f7:87:1c:f7:66:22:18:57:
f6:bc:a1:57:ac:05:10:58:3f:30:82:76:f9:2b:3d:
34:fb:83:38:1f:59:33:12:3c:e6:30:2e:31:4b:33:
7a:98:ac:8f:72:39:a7:01:d3:32:f7:d2:be:e8:24:
9d:89:f0:96:9c:ab:95:38:1f:26:3b:94:81:96:09:
e7:66:c7:39:17:c3:34:cf:27:86:08:61:c8:ca:13:
65:8d:05:ef:d0:37:38:52:3e:86:3e:14:88:29:8a:
85:3b:f5:f9:7e:45:bf:92:13:61:e3:d1:ae:df:e5:
34:ad:e0:b3:ef:29:87:c6:0f:7c:75:2c:0b:12:00:
b5:a1:ba:7e:cf:5b:23:c8:b0:72:f9:3e:1c:dd:ce:
76:27:3e:26:4d:b4:eb:37:7b:50:61:2a:38:15:57:
9b:8c:6d:89:69:1a:66:aa:0b:60:d3:3a:18:ce:39:
7e:5b:4d:f7:88:65:26:36:a1:05:23:da:da:f5:78:
10:80:c9:92:0f:1c:be:f7:78:15:7b:9e:57:f2:dc:
59:bb:ed:25:4f:89:64:76:64:3c:1e:25:e1:1c:49:
f3:b3:72:24:36:e1:de:ce:ef:15:78:bb:4e:b8:43:
e8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B8:17:50:89:80:B3:4E:8C:5B:16:C7:62:FF:08:CA:D3:69:88:9E
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/WLgXUImAs06MWxbHYv8IytNpiJ4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
21:c2:9c:5f:a9:b4:46:03:d3:4a:36:86:df:ab:17:80:71:0a:
98:d1:61:dc:f7:1f:58:7e:08:b1:b2:3f:5b:99:ce:63:6a:87:
5a:60:d9:17:6a:84:a7:2f:dc:59:39:ec:0a:80:ac:a6:37:6d:
81:0c:9b:4b:62:c7:e4:38:3e:4b:a0:97:12:ce:39:4e:0b:28:
46:f9:f8:56:d5:17:6a:b5:6e:8f:24:68:91:a0:99:cb:5e:8b:
b0:9f:90:aa:38:05:98:bf:fb:48:7a:1e:0b:dc:6f:7f:c9:7c:
dd:71:16:4c:df:82:94:55:de:6b:b6:49:a7:8e:2f:1f:57:ac:
f8:ac:f4:be:30:00:d8:f2:ac:a9:c8:89:78:5c:e9:81:88:cf:
23:66:bf:60:42:bb:bf:a4:9e:34:19:cf:f2:19:1b:f8:04:d1:
ba:46:55:bc:48:7d:90:c2:94:17:95:e4:cf:2a:e5:a5:f6:f6:
28:85:17:e4:97:b6:28:ab:87:fa:e9:be:b7:44:c9:97:6c:c1:
95:c2:8b:91:af:63:4b:aa:db:95:19:a8:5e:bd:a4:e1:2b:73:
2b:7d:08:8c:db:9c:44:07:97:66:e1:0b:f1:b0:1e:1c:60:c3:
58:64:f1:8b:d3:bd:1b:09:c5:f8:6f:8b:84:a9:60:cd:69:ed:
88:5d:8d:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:29 2024 by rpki-client on console-fra.rpki-client.org