Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/cSypUmbgGPVhgORXSUiN7ROpUEI.roa
File: cSypUmbgGPVhgORXSUiN7ROpUEI.roa (raw, json)
Hash identifier: QQYHZQ3Vw70+E6OAzMjMHN6sTgV9GnU9Z4CcRticcqs=
Subject key identifier: 71:2C:A9:52:66:E0:18:F5:61:80:E4:57:49:48:8D:ED:13:A9:50:42
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 425F
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/cSypUmbgGPVhgORXSUiN7ROpUEI.roa
Signing time: Wed 17 Apr 2024 01:52:58 +0000
ROA not before: Wed 17 Apr 2024 01:52:58 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16991 (0x425f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 17 01:52:58 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=712CA95266E018F56180E45749488DED13A95042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:92:e8:2e:b3:bf:d3:4a:5b:2c:5d:bd:2d:58:
74:82:23:34:6a:d0:24:66:5e:73:ef:5a:d1:ed:42:
9c:46:bc:ee:26:f5:fc:be:40:1a:13:d6:33:fb:21:
b8:21:e4:93:8d:86:dd:2d:14:a8:59:a7:da:a0:7c:
a7:86:b7:dd:f9:3d:e7:32:c3:3d:fc:73:18:04:57:
4a:cc:f2:38:53:eb:97:0a:90:90:fe:c9:2f:1e:fb:
d2:34:c7:2f:7c:58:ff:d6:7c:28:c5:14:16:f0:f2:
55:ad:29:9f:d9:ef:2d:cc:1f:68:90:c5:58:44:8e:
72:a7:30:7f:af:c0:53:6a:5f:6b:f6:96:f3:aa:18:
23:96:5c:bb:91:a1:58:dc:96:b5:07:33:bd:2c:17:
a9:ff:99:35:3e:54:fc:1b:c1:7c:a9:d1:0a:be:f1:
e0:84:35:2f:51:56:92:19:4e:1d:8e:07:3c:18:f0:
f4:42:f5:e4:89:60:4b:54:b2:b6:57:7f:f2:b0:28:
bb:79:35:0d:89:6e:fd:7a:cb:bd:15:90:81:a3:35:
d5:29:94:9d:7d:27:37:72:20:65:a7:dc:26:d5:9e:
09:3e:a3:df:75:1d:5f:fa:99:60:52:b7:43:2f:64:
0f:b4:1c:7e:4e:dd:c7:4f:50:bb:98:2a:e3:37:35:
43:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:2C:A9:52:66:E0:18:F5:61:80:E4:57:49:48:8D:ED:13:A9:50:42
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/cSypUmbgGPVhgORXSUiN7ROpUEI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
34:6f:09:50:89:b2:89:e5:3c:28:93:bd:7d:a1:cd:99:0a:50:
6e:46:cd:b8:c6:1a:89:d0:63:a2:7c:4a:45:36:57:4d:99:f6:
03:af:02:53:4d:11:d4:00:55:38:ac:16:db:5b:61:cd:f2:8d:
c7:a8:1d:68:e0:a2:0e:af:f2:8a:c3:7d:53:af:84:7d:39:fe:
81:fa:3b:0e:59:65:2d:16:92:fa:80:1c:87:71:83:5a:fe:e2:
2e:d3:90:61:c1:54:dd:b9:0c:aa:64:3d:13:92:1a:eb:6f:56:
ed:7d:76:f1:f2:c1:c8:92:90:49:d0:a4:01:f0:f3:60:90:b2:
4f:0f:6b:88:c8:13:45:4e:88:16:c5:60:6b:87:af:a7:c5:73:
fa:26:f0:09:a9:27:42:f9:3c:28:53:83:c5:98:2e:e5:1c:db:
71:29:96:40:1a:73:9e:d7:f1:82:3b:90:9c:45:a2:f9:56:e6:
fb:3f:9a:4e:0d:c0:87:23:2c:b9:09:12:f6:1a:30:74:bb:89:
a9:d4:8e:b0:1b:27:4c:fc:49:e0:fb:27:62:51:6a:8c:7c:85:
f2:4f:a3:d1:51:91:a9:b1:b4:3a:28:a2:58:15:c0:f1:f5:91:
a5:d8:9a:2a:59:79:76:26:1b:4d:1c:62:b0:fa:4a:e3:ba:9f:
77:64:28:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:36 2024 by rpki-client on console-fra.rpki-client.org