Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/bv828ps0o0Qmo-pWW-vhczDMj_A.roa
File: bv828ps0o0Qmo-pWW-vhczDMj_A.roa (raw, json)
Hash identifier: UGLhKcjka88DRAETBfVIe1wkYrQwPYph1jLkCv9mqXk=
Subject key identifier: 6E:FF:36:F2:9B:34:A3:44:26:A3:EA:56:5B:EB:E1:73:30:CC:8F:F0
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4A87
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/bv828ps0o0Qmo-pWW-vhczDMj_A.roa
Signing time: Sat 27 Apr 2024 22:53:33 +0000
ROA not before: Sat 27 Apr 2024 22:53:33 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19079 (0x4a87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 27 22:53:33 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=6EFF36F29B34A34426A3EA565BEBE17330CC8FF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c7:b7:28:dd:0c:3e:fa:91:8d:bb:87:db:8c:
ca:53:53:95:45:0c:dc:a5:5c:cb:c8:4e:73:67:11:
fe:a1:77:eb:3f:52:b9:9b:ad:d1:84:79:07:5a:92:
4c:d9:25:48:c0:55:a5:06:fa:f9:72:1b:3b:0f:c9:
99:7e:9d:21:02:fe:35:70:87:68:1e:53:9a:21:fd:
9f:8d:2c:b5:ff:f0:cb:2f:cf:a2:25:d4:cc:7c:22:
7e:98:70:ad:8a:47:e7:0f:2d:1c:95:6e:b8:c2:ae:
17:c0:61:c2:c2:d3:43:a0:07:5c:cb:0c:59:3c:04:
92:3d:ee:4c:31:2a:9d:78:fb:0c:c3:0a:75:cb:29:
67:e3:ce:62:99:4a:f8:65:c2:12:99:81:29:0c:1a:
31:f7:f6:cc:55:15:ee:42:0a:7b:b2:84:bb:ab:38:
5c:a6:b1:ba:e9:ac:3e:41:1a:ac:42:cb:bb:1a:76:
cf:f9:6b:86:67:3a:4b:fc:15:14:c2:24:28:c0:fd:
d6:36:dc:1b:fe:a5:c1:b6:9c:07:ee:99:e7:9e:68:
16:e6:20:7a:95:04:cc:81:cc:ff:fd:12:4a:19:ea:
43:19:30:42:3d:fd:7d:f1:55:e6:aa:41:09:da:93:
81:a2:84:c4:59:19:bd:00:1b:f7:17:0b:7a:42:55:
57:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:FF:36:F2:9B:34:A3:44:26:A3:EA:56:5B:EB:E1:73:30:CC:8F:F0
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/bv828ps0o0Qmo-pWW-vhczDMj_A.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
64:b3:be:7d:2e:8d:55:1c:5f:8d:16:cc:ad:80:41:56:9e:28:
a9:89:6b:de:be:d0:87:69:bb:0d:ad:4c:f5:ad:44:36:a5:e0:
9e:7c:47:af:38:7c:b7:a5:d1:f5:74:56:3f:34:84:bd:f6:51:
e7:0b:86:bb:8b:15:14:e9:07:3d:75:34:ab:30:83:45:81:85:
5b:af:c1:33:5b:8d:72:b1:6d:2c:a7:9e:d8:6f:54:54:01:25:
73:2f:5c:bc:e1:12:fa:03:52:7e:24:26:06:1f:71:5f:e3:87:
c4:64:77:0f:43:1d:ab:a3:c6:7b:f3:63:85:12:ee:c1:46:bb:
7e:1f:89:f9:8c:b7:9c:8b:92:d2:9f:2a:f4:7a:35:d4:d8:1c:
79:c7:b0:24:ee:86:5d:41:f8:c5:ed:ca:2c:ac:91:e7:66:fb:
5f:61:53:5f:32:63:ba:fd:e1:45:47:d9:1d:8c:77:f1:9c:78:
b5:69:1b:36:e4:c2:27:9f:e4:da:25:d5:1b:af:44:8d:41:54:
aa:f6:3d:b1:e8:13:0e:60:65:97:90:76:89:a0:ce:0f:30:e2:
40:77:3e:2b:3a:93:6b:2c:62:b4:54:6c:80:30:21:b0:77:8e:
af:41:70:a0:72:98:ff:78:af:c0:16:12:a4:a9:a0:08:84:30:
57:9d:b5:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:44:36 2025 by rpki-client