Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/iQ_WI03wL8exs7NFnvmMF9Jqwbo.roa
File: iQ_WI03wL8exs7NFnvmMF9Jqwbo.roa (raw, json)
Hash identifier: lSGW5I3ICwJiSHTSAqiYMExAmemiE8DVKodpdQk5hXw=
Subject key identifier: 89:0F:D6:23:4D:F0:2F:C7:B1:B3:B3:45:9E:F9:8C:17:D2:6A:C1:BA
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4DEF
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/iQ_WI03wL8exs7NFnvmMF9Jqwbo.roa
Signing time: Thu 02 May 2024 11:53:42 +0000
ROA not before: Thu 02 May 2024 11:53:42 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19951 (0x4def)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 2 11:53:42 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=890FD6234DF02FC7B1B3B3459EF98C17D26AC1BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:66:f7:0c:b4:28:91:04:b4:7d:b7:98:ca:30:
ad:ad:aa:e1:52:28:ec:e2:92:11:74:a6:5d:5d:b5:
21:fe:f3:62:7d:20:55:7a:bf:c5:25:a0:f4:3c:93:
f2:66:0c:af:21:df:ea:c2:f7:90:88:db:9a:71:88:
5b:d1:3d:17:ad:3d:b2:68:25:5e:24:f5:8f:20:42:
68:81:b9:02:db:40:38:b9:50:9e:af:1e:78:e7:d4:
22:fb:e4:81:f9:ef:e9:cb:84:b8:cd:fa:80:96:6e:
1d:f4:19:0b:4e:0c:f9:3e:18:e2:88:65:0a:20:8e:
60:2c:10:c3:d5:9a:61:ad:d0:7d:26:b7:98:e0:cc:
7a:54:ef:29:ec:2b:ab:87:b5:a2:49:a8:42:b1:4f:
50:94:87:0b:f0:6c:45:b7:54:4f:27:93:19:f4:fc:
43:84:b2:4b:23:2f:be:4e:04:32:9b:19:c3:74:a3:
5c:67:6c:39:a5:b0:6b:a6:26:dd:51:48:68:1c:ae:
c7:b2:02:d6:82:f5:24:6a:2a:6f:3c:8c:0a:7e:1b:
d9:4b:9e:e2:f0:4e:d2:25:91:3c:60:f2:6a:0c:64:
32:bc:29:74:9e:b2:24:7f:8a:8e:36:3c:3f:4d:d2:
fa:86:96:86:ec:b9:e3:cf:06:c0:81:c9:d0:2f:12:
77:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:0F:D6:23:4D:F0:2F:C7:B1:B3:B3:45:9E:F9:8C:17:D2:6A:C1:BA
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/iQ_WI03wL8exs7NFnvmMF9Jqwbo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3e:3f:0a:c5:7c:3f:ac:85:0d:82:45:05:74:52:7e:ed:04:64:
5c:39:97:da:59:4c:e4:8a:d6:d4:54:9f:20:cf:8e:f1:79:51:
51:01:ef:d5:65:8c:d4:90:41:25:91:87:66:d3:33:c7:e1:e7:
21:f0:e8:3a:ee:ae:28:cd:5d:4d:db:5a:8a:d7:cc:9b:4e:7c:
56:48:a2:bf:3f:ca:a2:fc:ca:79:04:20:af:d1:0b:39:b1:2f:
4e:42:ad:38:30:fe:4e:79:97:58:73:39:bc:8a:80:e3:06:46:
cc:32:df:bc:23:c3:37:58:0b:1c:21:c9:b5:28:14:5b:d7:69:
d4:93:39:e8:32:ed:95:18:b7:54:d3:26:65:14:58:5f:3b:08:
24:75:ed:f7:ba:83:9a:c7:35:cd:c0:9c:da:3f:51:f6:ed:8e:
a5:df:1f:12:e5:8e:ff:66:c4:8e:20:1f:f8:72:d3:19:67:ec:
a8:97:ef:03:04:31:7f:a8:16:45:81:16:74:a0:43:21:07:4f:
83:e0:21:7d:ce:c1:8c:b5:56:67:aa:0a:cf:a3:f1:c1:84:05:
59:74:b9:1c:b2:b0:5f:c9:55:f3:15:c9:53:7e:72:cf:e7:46:
03:52:61:9c:4a:87:64:0c:14:be:c6:f4:20:17:54:ac:a9:7c:
df:ef:a0:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:17:32 2025 by rpki-client