Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/dv658Vvhc257KeejNNlSFo7lvJ0.roa
File: dv658Vvhc257KeejNNlSFo7lvJ0.roa (raw, json)
Hash identifier: cPwW67wOLR+itphvLDcg4WMfghnVoLlcblZTgeHCW5o=
Subject key identifier: 76:FE:B9:F1:5B:E1:73:6E:7B:29:E7:A3:34:D9:52:16:8E:E5:BC:9D
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 54FB
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/dv658Vvhc257KeejNNlSFo7lvJ0.roa
Signing time: Sat 11 May 2024 21:24:03 +0000
ROA not before: Sat 11 May 2024 21:24:03 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21755 (0x54fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 11 21:24:03 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=76FEB9F15BE1736E7B29E7A334D952168EE5BC9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:37:78:12:61:ab:81:80:48:6b:7f:7b:66:bc:
29:ba:e5:4a:eb:19:70:9c:79:c1:be:f3:b4:5f:0c:
e8:26:c6:e6:77:0c:ad:7a:98:91:a2:34:78:be:24:
21:37:4b:07:57:a9:db:94:34:42:ec:89:fc:18:5a:
89:e7:7c:13:83:65:2c:9c:95:82:68:c6:3f:31:89:
78:d0:6f:22:31:ea:72:c8:da:80:48:3e:58:b7:a9:
71:7d:76:f0:88:6b:c9:25:77:6a:ff:1c:9d:8c:e0:
04:4b:c8:8a:41:a5:18:e9:7e:33:ea:49:eb:c8:3e:
bc:59:71:08:d4:f3:24:b2:17:df:d6:3b:38:c6:87:
ef:6d:ce:f2:ca:c6:1f:da:74:cc:c8:40:77:85:f8:
bb:cc:11:06:3b:6f:ee:fa:a0:d6:b0:38:d2:c5:13:
33:ba:8d:99:89:0e:4d:f5:c6:fd:ac:04:ff:83:cb:
2f:3e:c9:c2:2d:8a:a8:c1:48:ce:ee:d9:4f:a7:9e:
97:38:28:4e:eb:1b:a9:19:f5:0a:1f:ec:26:fe:36:
6b:05:3f:e6:0b:f0:c9:57:fc:0c:6c:22:7c:f4:a6:
41:1e:fd:c8:68:29:ed:db:17:78:38:f9:a5:ed:9b:
52:ef:03:48:d9:2e:2d:73:8f:0d:95:fb:4d:97:85:
3d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:FE:B9:F1:5B:E1:73:6E:7B:29:E7:A3:34:D9:52:16:8E:E5:BC:9D
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/dv658Vvhc257KeejNNlSFo7lvJ0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
92:15:37:e1:09:58:cb:b4:ef:0d:39:c8:42:85:75:a9:ba:2c:
1a:9e:38:c0:c5:70:a7:f5:49:70:bd:70:02:01:d1:21:0b:77:
67:f1:e2:dc:c0:9f:8e:99:01:36:d6:9f:ff:ae:33:9b:4d:3a:
dc:0b:df:42:2b:35:ae:78:2f:3d:65:a5:bd:23:97:2f:b4:ac:
5f:3d:20:08:ed:f5:13:90:18:a0:3a:46:3f:55:49:c9:d7:ec:
b2:d6:83:bf:eb:28:82:e3:2c:86:fc:ff:0e:35:98:41:3f:c6:
c5:72:e9:ad:20:21:1c:83:6c:8a:8d:c0:e2:22:a5:df:71:ec:
f2:d4:23:76:69:24:97:dd:99:ab:0a:75:41:a0:73:e2:ce:57:
50:94:f2:5d:b4:28:79:b7:dc:85:a1:a7:70:c5:76:94:44:23:
9d:ae:24:fc:78:c5:76:5b:a4:86:0b:81:ba:da:c1:95:7a:1b:
a3:dd:f4:d0:83:d8:19:67:4a:7e:0b:4a:ba:14:83:fc:7e:bb:
9c:b9:c3:a9:c8:b8:c5:91:5e:84:96:cb:6e:94:01:b7:33:f5:
1b:c3:d4:23:a2:de:5f:fb:28:77:93:ff:1d:58:66:87:53:2d:
80:34:c5:a6:52:52:42:07:3b:64:be:ce:0e:4b:97:9a:8b:7a:
7d:7c:e7:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:37 2024 by rpki-client on console-fra.rpki-client.org