Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/jvxwPycvedlYjkDVjWPea8Dr5Bg.roa
File: jvxwPycvedlYjkDVjWPea8Dr5Bg.roa (raw, json)
Hash identifier: bGADYC5494SZaHQ+KbIBvTAo8lWAeLCf4X2bsYVSx8Q=
Subject key identifier: 8E:FC:70:3F:27:2F:79:D9:58:8E:40:D5:8D:63:DE:6B:C0:EB:E4:18
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4F53
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/jvxwPycvedlYjkDVjWPea8Dr5Bg.roa
Signing time: Sat 04 May 2024 08:23:59 +0000
ROA not before: Sat 04 May 2024 08:23:59 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20307 (0x4f53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 4 08:23:59 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=8EFC703F272F79D9588E40D58D63DE6BC0EBE418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:eb:9d:04:12:c6:ea:7c:05:b0:5f:f5:a8:0a:
74:3c:06:ec:82:6c:76:00:83:8e:cd:51:a8:1b:6c:
13:2c:f0:d7:7a:a6:c1:6e:bf:35:5f:8f:81:2a:46:
f1:96:a4:9b:82:d2:55:f9:4f:c4:34:ab:2a:85:19:
af:ec:da:9b:94:09:8f:f8:8c:e6:50:b1:e8:3c:9b:
0a:84:ac:2c:3c:c4:46:2d:e1:50:cf:7d:44:02:33:
bb:52:a5:4a:28:9f:ce:b2:2b:88:2c:b6:0c:2e:53:
bd:df:05:37:39:6d:36:f1:67:88:65:11:c2:e0:de:
5c:55:e9:12:fd:db:88:45:42:1c:77:af:57:8e:a9:
5c:6e:7c:5c:30:58:9f:ab:d2:77:0f:0a:7f:30:6e:
78:2e:fb:d0:63:ea:9b:0e:3b:8e:a9:15:27:21:f5:
a8:7a:ea:10:59:c4:37:34:46:4d:b1:6c:61:f6:4f:
1e:0a:9f:15:f1:52:14:8e:3b:ef:43:ac:f8:48:16:
c7:b2:f8:f7:c0:a4:92:39:60:ba:49:f6:a5:42:c3:
df:a2:89:e5:b9:5a:ab:e4:14:46:e9:8e:bb:34:9e:
d9:91:34:f2:c5:02:86:ee:51:8f:37:45:64:c0:f9:
2c:08:5d:72:99:3f:3b:45:9c:7a:97:00:ca:cc:d4:
d9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:FC:70:3F:27:2F:79:D9:58:8E:40:D5:8D:63:DE:6B:C0:EB:E4:18
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/jvxwPycvedlYjkDVjWPea8Dr5Bg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
06:9d:ab:25:85:55:98:4b:8f:67:09:51:e8:67:3f:5e:f4:aa:
fa:3d:c0:7b:ed:28:88:78:85:22:49:0d:74:f2:9e:75:7e:7b:
1b:27:97:8f:ea:12:ca:b1:d2:06:c0:5f:e3:2a:d1:45:bf:21:
19:8e:8b:3a:09:fe:b9:00:31:fc:5b:98:78:7d:bb:a2:c5:c5:
40:a5:44:16:aa:d1:24:d0:aa:78:88:70:ef:2b:29:d3:ac:74:
8d:45:89:a3:e0:e0:b9:ba:46:fb:91:64:e1:8d:82:16:19:2d:
11:d1:65:4c:da:b4:b4:12:7b:1e:45:95:0b:80:d7:c4:3b:d8:
7b:e6:08:6a:d1:4f:a5:1d:7a:e9:a4:65:4e:19:a6:6d:ca:6f:
c5:84:d0:86:45:1f:03:25:01:71:11:33:9c:f1:70:de:6c:87:
6e:ac:b8:ab:43:0a:af:a3:b3:1e:29:80:7c:4a:17:30:ba:58:
08:26:7a:0a:27:23:df:d6:56:7b:d5:81:9a:2d:4b:54:b8:e5:
6a:72:14:11:fe:84:d9:cf:d3:d8:54:fd:54:4c:bf:7d:6a:c4:
cf:a7:34:66:c6:43:68:2a:42:dd:fc:55:37:7c:18:fd:10:97:
9d:28:ed:31:db:e6:ad:ec:8a:79:3c:e6:95:67:9d:6e:02:2d:
9b:77:49:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:14:43 2025 by rpki-client