Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/lOD5LmlmRxigaHo6VlIM9inkAGg.roa
File: lOD5LmlmRxigaHo6VlIM9inkAGg.roa (raw, json)
Hash identifier: ttEMG7SPa1+F2CI1DomBYqFGfUakuWnZkPeqoIQYeAs=
Subject key identifier: 94:E0:F9:2E:69:66:47:18:A0:68:7A:3A:56:52:0C:F6:29:E4:00:68
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5456
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/lOD5LmlmRxigaHo6VlIM9inkAGg.roa
Signing time: Sat 11 May 2024 00:54:01 +0000
ROA not before: Sat 11 May 2024 00:54:01 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.236.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21590 (0x5456)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 11 00:54:01 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=94E0F92E69664718A0687A3A56520CF629E40068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:26:a3:80:6b:b1:e3:8d:63:a6:b0:2f:a2:fb:
62:23:79:c9:56:fc:67:0c:87:55:42:db:ab:5a:99:
ca:c9:71:91:75:ff:bd:43:09:69:b5:35:96:fe:9f:
48:ed:c8:cb:9f:a3:52:d9:aa:8a:f0:db:45:b7:c6:
b5:30:f2:f3:7e:23:f2:97:00:7f:ca:9e:67:47:0d:
cf:2d:66:b0:ab:a2:76:1b:b8:b2:be:66:5e:ab:2b:
01:fe:18:99:62:b1:f1:f4:14:df:ae:24:28:57:d5:
fc:c7:e6:9d:b7:96:43:18:df:a0:96:07:44:3c:0a:
53:41:57:0d:8a:9e:17:15:e4:a8:a2:36:d6:3f:a3:
9c:46:e5:ac:ba:25:a1:bf:6d:6c:98:c3:e3:98:d8:
ed:06:1d:4f:5c:d8:23:37:77:3c:71:b4:31:96:13:
ec:e3:f9:b7:18:fe:f7:95:a0:36:aa:5b:e9:de:54:
48:31:66:bc:c8:d7:eb:07:0e:8e:cf:2c:dd:81:2e:
31:2e:82:bf:bd:bc:fe:8d:8b:81:43:69:8a:bb:45:
fb:f8:c1:fd:ba:31:5c:d2:31:ab:5e:9d:0a:53:32:
fc:02:6f:bf:71:7f:db:87:5b:f2:37:95:e6:a0:e5:
a9:9e:b6:f4:bb:dd:4d:f1:23:0b:d2:d0:5d:1f:a6:
6d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:E0:F9:2E:69:66:47:18:A0:68:7A:3A:56:52:0C:F6:29:E4:00:68
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/lOD5LmlmRxigaHo6VlIM9inkAGg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.236.0.0/16
Signature Algorithm: sha256WithRSAEncryption
61:95:58:66:72:4c:76:30:a1:9c:35:86:b0:95:3b:84:a9:94:
f5:8c:95:18:3e:98:60:53:26:60:18:e8:95:5f:b5:92:d2:26:
a8:60:0d:10:b2:3c:62:40:fd:58:04:5e:1d:af:00:9a:69:6e:
75:b9:9b:de:ed:5e:7c:7d:11:cb:af:db:0d:94:44:b4:12:6a:
7f:e8:1f:7a:d7:a3:13:4f:71:f2:cf:db:cb:2b:33:6e:ea:f8:
7f:6e:37:27:32:93:25:7c:c4:26:e8:78:c3:58:fe:c4:05:08:
66:0b:5e:f8:b3:14:e5:dc:56:92:01:87:93:1d:5f:10:8d:29:
6c:2e:99:8f:cf:cd:f3:32:92:11:22:9c:77:08:c9:65:9e:2d:
ad:78:81:7d:62:2b:31:fc:6a:e9:7b:93:a4:86:c1:c2:b8:0a:
a0:49:94:8d:1a:07:cb:af:1f:80:78:55:5f:b1:9a:4d:c4:fc:
d4:7d:ea:cb:ec:d6:be:ad:e9:c7:5c:03:ea:45:5b:d3:1e:35:
a5:2d:33:4a:f1:19:2a:82:bb:cf:13:5b:8f:55:78:51:7b:7d:
d6:78:1c:bc:d9:d0:fe:21:bf:e7:9b:5a:e3:b7:43:6a:2e:2c:
91:2d:28:ec:03:bb:20:46:06:f5:96:75:43:4d:b5:5c:78:1a:
ee:82:36:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:40:02 2025 by rpki-client