Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/Y4Y8yops8aiXK5N84vNIgbewrAc.roa
File: Y4Y8yops8aiXK5N84vNIgbewrAc.roa (raw, json)
Hash identifier: 2E98jHviXQo/zKX4E0ArIhvfVFqwo5h6egfZvsKhR74=
Subject key identifier: 63:86:3C:CA:8A:6C:F1:A8:97:2B:93:7C:E2:F3:48:81:B7:B0:AC:07
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5043
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Y4Y8yops8aiXK5N84vNIgbewrAc.roa
Signing time: Sun 05 May 2024 14:23:49 +0000
ROA not before: Sun 05 May 2024 14:23:49 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20547 (0x5043)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 5 14:23:49 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=63863CCA8A6CF1A8972B937CE2F34881B7B0AC07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5d:f5:bb:18:58:a2:7e:6e:66:0b:79:ef:ab:
24:96:93:34:0a:79:af:ff:22:74:8d:c4:14:ec:c9:
a1:eb:0b:d5:62:b5:bd:85:66:a3:7b:95:41:f6:8f:
1e:1b:00:9c:ae:84:bb:bf:b7:99:7e:07:06:90:02:
af:76:f6:d6:c8:0a:28:1a:26:37:c7:15:d4:fa:57:
95:10:fa:c6:ff:e3:9c:1f:35:8b:06:ac:36:52:74:
31:34:65:db:4f:74:14:ac:00:ce:a5:4b:93:63:42:
cf:9a:89:c9:4d:15:3f:e3:46:34:9e:98:8a:27:24:
32:cf:a9:67:aa:cb:5f:51:ed:8d:62:2a:c7:53:55:
30:e9:3e:ad:d9:a5:2c:3f:e1:72:f2:db:87:12:71:
f6:9f:d1:90:c9:8d:9c:92:09:6d:0c:7b:cb:46:8f:
c1:1e:72:40:f5:70:cd:4b:1a:26:a8:3d:1e:f6:4c:
9e:8e:d6:f5:46:f9:fb:3c:80:1b:df:75:1d:3b:5c:
44:8b:88:81:7d:27:79:73:4b:1e:fe:98:c7:4f:de:
ae:75:b3:f8:b0:36:5c:b6:4a:85:c2:d0:26:b9:ef:
a5:5f:44:16:2c:a6:12:e5:3f:8a:88:c2:34:84:92:
c2:21:dd:39:d7:68:a9:38:28:89:f4:de:74:bc:b2:
a4:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:86:3C:CA:8A:6C:F1:A8:97:2B:93:7C:E2:F3:48:81:B7:B0:AC:07
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/Y4Y8yops8aiXK5N84vNIgbewrAc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
74:dd:40:32:25:f7:6e:a4:9e:22:8a:88:ee:19:d6:ad:3f:1f:
d3:c9:e4:68:51:67:97:c5:d1:09:f7:0c:9b:55:6d:f2:14:bc:
11:8c:e4:59:14:be:62:0b:49:51:de:78:3f:68:c5:b9:4e:3f:
c2:fb:4b:39:3b:32:1c:89:a8:30:5e:b2:03:be:6d:1c:f8:74:
9f:9f:b4:1d:f3:01:26:62:1f:ba:c4:b7:a5:b1:28:e3:5a:7e:
df:76:d6:4d:08:6f:e5:d9:27:98:ed:ed:b1:12:0d:07:ba:2c:
30:56:bb:ac:ab:7f:ae:1c:e6:38:4c:c1:81:96:0b:fb:22:a1:
89:4f:14:65:50:16:46:5e:86:e0:7b:6d:9b:e2:6c:b1:6a:20:
f2:d9:a5:ca:20:fd:cf:04:23:cd:7e:cd:a6:e1:e2:74:a5:63:
1d:f4:6e:07:e2:54:cd:d3:e3:03:ce:f3:1c:f2:e7:8c:33:a8:
a7:62:37:c7:fa:4c:5a:08:7b:e3:8f:84:2a:c6:7c:4a:16:25:
df:95:49:68:94:c3:1b:dc:ec:e6:f4:21:2d:7f:ca:a4:89:78:
1d:77:1e:4a:d5:4b:c0:10:17:81:9f:91:c8:8c:f1:e0:a1:c0:
2d:c2:a3:bb:ba:10:57:9a:4b:7d:c6:3e:a4:aa:26:bd:73:7c:
61:9e:d6:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:31 2024 by rpki-client on console-fra.rpki-client.org