Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/gSZ2tUZ-VY-Kq3DFPHScEIKC_6g.roa
File: gSZ2tUZ-VY-Kq3DFPHScEIKC_6g.roa (raw, json)
Hash identifier: 9n4j/Nza7KemfWx4Tuu3ZVE/B10v4DbOFekbfHjTgcE=
Subject key identifier: 81:26:76:B5:46:7E:55:8F:8A:AB:70:C5:3C:74:9C:10:82:82:FF:A8
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3B26
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/gSZ2tUZ-VY-Kq3DFPHScEIKC_6g.roa
Signing time: Sun 07 Apr 2024 10:52:31 +0000
ROA not before: Sun 07 Apr 2024 10:52:31 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.236.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15142 (0x3b26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 7 10:52:31 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=812676B5467E558F8AAB70C53C749C108282FFA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1a:fe:2a:57:95:28:b8:77:2d:87:2c:36:79:
ba:44:f8:b2:ef:83:20:f3:d6:bb:75:c8:a4:d4:14:
21:f9:11:11:de:65:04:76:4e:b6:39:b3:a0:51:c4:
6a:74:5d:e8:1c:c7:d9:73:72:57:76:6e:96:b3:e1:
f2:05:c9:d0:89:f9:69:31:78:46:93:45:b3:dc:25:
8d:46:de:52:f9:1a:32:47:d3:13:7c:04:20:61:61:
29:f4:b6:8b:eb:71:56:66:47:3d:38:72:35:5d:1b:
6c:03:e0:d9:54:7f:67:b3:76:b0:9f:3e:79:27:28:
f5:7e:96:bb:7b:c6:18:96:57:6f:74:32:e3:a0:60:
ba:c0:ec:67:9e:7f:54:67:b1:d6:26:dd:e4:c0:5f:
60:ea:7c:26:9f:a8:2f:34:84:9d:6c:1e:28:11:48:
84:ae:dd:a0:04:34:c9:c2:c8:b9:a4:65:d0:73:b2:
48:9e:82:95:31:d6:98:e2:b0:9e:d4:5f:c8:14:18:
fa:49:7d:00:74:df:53:bb:ca:69:30:01:ac:00:40:
e8:cb:e3:0d:ea:5d:18:69:8f:1b:28:da:73:eb:af:
5e:c2:47:04:ff:eb:4f:ae:86:9c:ec:2d:4c:20:cc:
f4:24:56:88:57:b7:bd:a1:b8:e3:f2:26:7a:85:ee:
bd:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:26:76:B5:46:7E:55:8F:8A:AB:70:C5:3C:74:9C:10:82:82:FF:A8
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/gSZ2tUZ-VY-Kq3DFPHScEIKC_6g.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.236.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6c:33:e6:10:38:d5:30:55:c8:e7:c1:df:10:c2:b6:38:85:66:
d0:38:56:df:47:09:29:3e:a2:18:67:f8:ed:14:0c:62:0f:bd:
75:c5:3d:e9:83:af:93:06:a8:f8:5a:00:ff:a0:df:e2:38:db:
cb:26:0a:b4:19:12:d2:fd:2e:31:77:30:fa:46:99:bc:6e:50:
30:58:60:d5:f9:04:8b:3c:8b:ef:6e:d7:e5:f3:0f:09:83:ee:
9e:99:bc:7a:4b:81:82:b8:29:e2:10:89:a5:db:c2:29:68:90:
f8:13:a7:8c:1a:be:7e:88:2c:a1:90:a4:6f:f4:11:aa:03:58:
0b:01:ea:46:86:e6:08:e0:2a:00:5e:b9:ee:6c:a4:44:a7:16:
3f:0b:b6:3c:ec:75:55:30:16:a4:81:b8:95:8f:d5:cd:55:92:
30:85:7c:87:73:f4:c8:6f:d9:07:42:78:a7:8c:c7:20:5b:54:
a9:25:5a:b8:04:45:80:dc:2a:6f:c3:ab:9a:7e:b3:f2:bc:af:
fb:45:91:5d:2f:a9:7f:5a:d1:5d:fe:0a:f1:f6:61:ff:c4:5f:
f5:60:fa:92:a7:a9:ec:5a:5b:f1:b9:a9:3f:13:8d:3b:32:7a:
59:10:48:ed:29:b1:7a:41:94:63:41:47:83:c6:47:46:00:81:
36:23:58:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:00 2024 by rpki-client on console-ams.rpki-client.org