Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/cotWV_esAU_TN4zJKIwMBTDyT2Y.roa
File: cotWV_esAU_TN4zJKIwMBTDyT2Y.roa (raw, json)
Hash identifier: LXgQ5yXC5PS+UOcxLrE3xwhiGYMzEuWGh3KGRpsKzVY=
Subject key identifier: 72:8B:56:57:F7:AC:01:4F:D3:37:8C:C9:28:8C:0C:05:30:F2:4F:66
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4F9B
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/cotWV_esAU_TN4zJKIwMBTDyT2Y.roa
Signing time: Sat 04 May 2024 17:23:50 +0000
ROA not before: Sat 04 May 2024 17:23:50 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20379 (0x4f9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 4 17:23:50 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=728B5657F7AC014FD3378CC9288C0C0530F24F66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4d:d3:c0:ac:73:8c:ad:df:fe:3d:a9:d5:26:
75:d4:60:98:f3:43:b7:8d:b2:b6:c6:fa:71:4c:c0:
70:d2:33:39:88:46:67:5e:62:b0:2f:0e:3e:8b:86:
56:66:db:3f:f1:65:25:18:79:0d:fc:d2:67:87:bd:
aa:fe:e9:a5:0f:91:ef:b8:41:e9:bb:ed:76:5d:9c:
fe:e1:31:47:a9:4c:34:78:8d:5c:f9:31:02:cc:a0:
a5:57:55:4b:7f:0e:f5:ec:3f:7d:59:24:41:b1:bf:
56:5b:df:ea:5a:e5:1a:88:64:19:04:6b:26:eb:51:
62:db:88:7b:ef:d5:8d:f0:17:2e:6a:71:54:d0:c0:
df:2e:2c:43:60:dc:55:fd:56:e8:d5:c5:37:1d:b8:
81:d9:c8:44:db:97:cc:74:ac:07:96:24:c4:be:c2:
9b:32:b6:8c:9d:5a:dc:0e:35:a8:20:3f:0a:5c:dd:
0a:84:03:98:61:8a:a0:bc:f4:9b:aa:9c:20:92:b0:
d0:79:7b:b2:80:28:dc:68:26:76:81:25:76:ed:ad:
45:15:0c:4d:02:dd:be:db:46:36:7f:8d:52:4b:22:
46:00:0a:0f:09:ea:c5:28:e3:fe:26:2c:2f:39:92:
bd:c5:2c:05:29:f4:00:10:3a:41:98:f2:a4:d4:64:
c1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:8B:56:57:F7:AC:01:4F:D3:37:8C:C9:28:8C:0C:05:30:F2:4F:66
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/cotWV_esAU_TN4zJKIwMBTDyT2Y.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
02:9e:4b:e4:d9:e5:71:55:a3:4b:9c:71:a1:36:ec:72:9a:8a:
ff:b3:4f:53:31:8b:27:63:60:2b:3e:2c:b9:73:b7:30:6e:81:
4a:ac:71:a7:99:5c:43:34:c8:7c:d7:53:83:a0:54:0f:e5:1c:
02:6d:3f:9b:68:1d:f0:9e:e5:60:b3:de:49:4d:66:0a:61:a6:
af:74:4a:0b:fc:85:99:75:f0:9c:d8:fd:87:a1:37:91:33:ed:
9e:ff:f3:94:84:a1:99:6a:5c:f6:fa:d8:e7:b5:ad:6e:00:4a:
29:de:c1:a1:bc:97:aa:52:be:76:30:a7:92:08:b9:bb:04:d6:
a6:2b:0f:3f:71:2b:27:ea:21:3b:78:f2:70:7a:2d:97:3d:ae:
0b:1d:95:55:d0:7f:b7:36:c8:56:7b:9b:0c:f1:58:b1:8a:28:
ac:08:e9:63:69:65:ac:fa:5a:e9:cf:3f:4b:56:ca:52:90:df:
4d:4e:6a:20:9d:c8:10:d0:47:3c:0a:b0:b3:72:7f:2a:12:6e:
a1:07:52:6e:82:00:e9:c2:f8:cf:94:fc:26:da:5b:41:7d:8f:
b6:47:5a:ee:b5:fc:43:d6:d5:be:1f:c5:ec:37:14:25:4d:d9:
0e:5d:fb:b0:29:20:77:7d:ac:fd:7b:57:f4:9b:6f:0c:2c:3a:
32:42:a1:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:36 2024 by rpki-client on console-fra.rpki-client.org