Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/ggT6UGQolGrYf6pwg0oK2W8yVyg.roa
File: ggT6UGQolGrYf6pwg0oK2W8yVyg.roa (raw, json)
Hash identifier: IutSUmxsG5/9mD/DlSD9kowPjDOs41xkJeAixe0L9Lk=
Subject key identifier: 82:04:FA:50:64:28:94:6A:D8:7F:AA:70:83:4A:0A:D9:6F:32:57:28
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 379F
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/ggT6UGQolGrYf6pwg0oK2W8yVyg.roa
Signing time: Tue 02 Apr 2024 17:52:41 +0000
ROA not before: Tue 02 Apr 2024 17:52:41 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14239 (0x379f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 2 17:52:41 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=8204FA506428946AD87FAA70834A0AD96F325728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9a:12:8e:a2:31:91:1f:1c:66:11:91:d7:3a:
ad:49:dd:d7:95:a7:a6:8f:a3:ea:a7:2f:54:e8:ff:
99:e7:22:43:69:b0:7b:ad:f5:70:a8:e4:10:3c:76:
96:95:e7:15:30:5e:16:ba:a1:72:24:51:d7:b3:f9:
88:f6:99:81:ba:c3:0d:23:16:d2:f5:a9:c6:dd:c4:
de:72:48:53:1d:48:0e:13:38:11:56:49:2f:c2:9e:
5a:5e:13:00:0c:54:cd:f0:3d:58:9a:c4:89:14:da:
46:fd:36:e8:08:28:19:78:ec:75:d4:ad:e6:70:23:
cd:f4:4f:3b:7f:96:1a:a5:15:27:55:db:74:eb:a3:
f4:63:2a:37:00:80:0c:68:9f:ef:15:0b:e5:5d:8a:
24:32:ea:74:0c:15:e4:f8:b6:0f:46:d0:43:63:a3:
7d:39:7a:6d:82:7d:37:c9:f3:93:5a:29:a3:60:a5:
c5:50:e1:ec:54:34:8d:b1:f3:ec:21:b4:f6:ef:db:
09:0c:93:09:39:1b:11:c8:b2:e0:d7:fd:78:39:31:
48:9d:aa:a5:fd:b1:a3:7d:55:82:c4:42:0d:72:ba:
02:e4:7f:9f:f2:9b:c0:52:e8:c0:fa:dc:47:3f:18:
a9:0c:5c:65:6d:f1:12:41:a5:5c:78:d0:c5:1e:38:
51:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:04:FA:50:64:28:94:6A:D8:7F:AA:70:83:4A:0A:D9:6F:32:57:28
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/ggT6UGQolGrYf6pwg0oK2W8yVyg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
1d:fc:a2:27:07:4a:a2:12:e0:03:e0:ff:81:15:a8:ba:09:62:
40:e8:9c:5b:33:69:9b:31:ff:26:03:f1:1e:69:e5:0b:73:7f:
10:0c:1a:ba:94:da:2b:58:00:1d:f6:8c:a2:82:de:f5:65:e7:
92:b2:fd:d9:74:a2:fc:b7:e0:55:31:bd:02:f9:de:85:43:78:
ef:9f:42:98:2b:fb:cf:1d:f7:47:44:e4:fc:b3:60:47:1a:18:
4b:73:09:4a:ac:46:05:f3:f3:1f:22:47:d1:94:15:09:4c:2f:
ba:4a:36:09:23:2f:12:84:c5:19:09:f2:e7:c4:37:88:21:88:
14:a1:0a:df:43:3c:7b:15:c2:4c:29:82:b9:ed:9b:8f:04:f8:
7b:eb:c6:9f:ca:4c:c1:8c:f0:f0:59:d6:fd:81:5e:e7:06:97:
8e:73:25:0f:61:33:6b:a1:18:99:f2:f0:d9:98:ad:57:9d:9e:
76:1e:db:a2:e3:11:33:36:e0:f5:09:79:ad:4e:ef:01:73:c7:
ae:cf:e9:a0:0e:ca:58:c0:e4:d8:9b:ba:54:5e:e1:cc:3b:ad:
da:b2:b2:ed:b9:fe:e5:c6:a4:38:4f:14:0d:4b:39:63:9f:64:
d6:bd:cd:3f:0a:f0:f7:c1:8a:e7:ec:ae:f9:43:a3:8f:95:a7:
36:85:d5:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:33:49 2025 by rpki-client