Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/mMPd5zhV-1ASmy729z9AB88KwyE.roa
File: mMPd5zhV-1ASmy729z9AB88KwyE.roa (raw, json)
Hash identifier: S68Mij5poRx/fzVglO7gr9QrVEjB4bWP/uBmedkWkrQ=
Subject key identifier: 98:C3:DD:E7:38:55:FB:50:12:9B:2E:F6:F7:3F:40:07:CF:0A:C3:21
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 56B7
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/mMPd5zhV-1ASmy729z9AB88KwyE.roa
Signing time: Tue 14 May 2024 04:54:18 +0000
ROA not before: Tue 14 May 2024 04:54:18 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22199 (0x56b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 14 04:54:18 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=98C3DDE73855FB50129B2EF6F73F4007CF0AC321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3c:21:2b:01:4d:d0:72:2f:86:55:08:6b:45:
48:11:31:12:08:72:85:41:88:d6:d5:3e:c9:d5:c6:
03:5d:e8:eb:b5:ab:8a:13:28:44:99:3e:17:84:b3:
11:24:0a:69:78:58:5e:f8:f5:38:9d:74:7e:d5:d4:
a6:a6:af:25:78:fa:0c:7f:93:a3:0d:96:69:a2:52:
f7:79:26:c5:66:6d:98:77:3e:0a:74:01:43:2b:99:
e4:e6:8a:4f:fd:41:c6:d1:ed:e1:4a:25:83:af:ce:
90:77:18:d9:25:5e:7c:20:f1:77:e3:2e:37:5c:6d:
71:37:4a:ed:e7:ad:34:ed:c2:3d:70:b9:37:04:4e:
d4:ec:e7:0e:0f:9c:e9:35:56:a4:54:c9:77:06:dd:
61:be:f1:93:e6:6e:ee:8b:c4:98:97:61:fb:c9:32:
98:5e:fa:d6:24:71:41:6c:2a:a3:20:f0:10:65:d2:
d3:7f:4f:f6:a9:2c:92:1f:bb:4e:95:c6:6c:e1:20:
ad:1f:e3:c5:6a:0f:8d:da:12:5a:92:e4:b9:b0:51:
73:68:20:32:93:d6:35:28:14:65:59:4c:21:a8:17:
54:00:d1:cd:9d:7a:da:7c:b8:b6:be:08:72:e5:a3:
7d:fa:a6:15:cc:70:2f:6d:14:2f:fd:55:fb:31:f8:
7a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C3:DD:E7:38:55:FB:50:12:9B:2E:F6:F7:3F:40:07:CF:0A:C3:21
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/mMPd5zhV-1ASmy729z9AB88KwyE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
a4:02:5e:6c:0a:3f:f8:3c:ab:49:2e:4e:b5:b6:9a:66:85:13:
0c:db:f8:9e:93:07:cf:85:ea:42:4e:b1:1f:af:62:2d:ac:45:
c1:4e:a1:a1:80:6a:b4:2e:f8:c2:02:41:96:1f:f6:44:50:6e:
85:be:66:37:0d:db:5f:0c:be:18:ed:bc:e2:23:15:49:8e:33:
30:cc:87:58:a9:db:25:9b:f9:ad:fe:9e:74:e5:0d:de:04:e1:
f6:76:01:66:14:8d:5f:ee:14:c2:4f:1b:a0:b7:c6:32:c3:31:
a1:ab:cd:5e:59:c6:b1:d1:ba:84:4b:e1:e9:a9:8a:a6:c1:9d:
10:10:53:52:99:69:75:06:59:7d:95:2d:6b:67:2f:0d:31:41:
e5:d1:27:1d:76:15:16:15:03:52:49:48:a7:0e:55:61:3a:5b:
ab:59:5a:da:2c:30:4e:97:72:53:b6:f0:a7:f9:1d:bb:8b:3e:
b9:fb:d6:3d:b9:0c:f6:dd:41:76:87:e4:d8:8a:68:6c:60:19:
45:a5:7a:d2:ec:9e:f1:2c:da:db:ff:54:5a:bd:b7:1f:ef:52:
58:ed:2f:65:69:d3:ac:1f:83:06:27:d6:a3:34:04:b8:0f:0f:
ff:00:bb:d3:32:42:23:0c:e4:d7:e9:c7:f1:8d:3c:97:d1:0b:
f8:1e:2d:d4
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICVrcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MTQw
NDU0MThaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDk4QzNEREU3Mzg1NUZC
NTAxMjlCMkVGNkY3M0Y0MDA3Q0YwQUMzMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUPCErAU3Qci+GVQhrRUgRMRIIcoVBiNbVPsnVxgNd6Ou1q4oT
KESZPheEsxEkCml4WF749TiddH7V1KamryV4+gx/k6MNlmmiUvd5JsVmbZh3Pgp0
AUMrmeTmik/9QcbR7eFKJYOvzpB3GNklXnwg8XfjLjdcbXE3Su3nrTTtwj1wuTcE
TtTs5w4PnOk1VqRUyXcG3WG+8ZPmbu6LxJiXYfvJMphe+tYkcUFsKqMg8BBl0tN/
T/apLJIfu06VxmzhIK0f48VqD43aElqS5LmwUXNoIDKT1jUoFGVZTCGoF1QA0c2d
etp8uLa+CHLlo336phXMcC9tFC/9Vfsx+Hp7AgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUmMPd5zhV+1ASmy729z9AB88KwyEwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L21NUGQ1emhWLTFBU215
NzI5ejlBQjg4S3d5RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAYkAEAwDQYJKoZIhvcNAQELBQADggEBAKQCXmwKP/g8q0kuTrW2mmaFEwzb+J6T
B8+F6kJOsR+vYi2sRcFOoaGAarQu+MICQZYf9kRQboW+ZjcN218MvhjtvOIjFUmO
MzDMh1ip2yWb+a3+nnTlDd4E4fZ2AWYUjV/uFMJPG6C3xjLDMaGrzV5ZxrHRuoRL
4empiqbBnRAQU1KZaXUGWX2VLWtnLw0xQeXRJx12FRYVA1JJSKcOVWE6W6tZWtos
ME6XclO28Kf5HbuLPrn71j25DPbdQXaH5NiKaGxgGUWletLsnvEs2tv/VFq9tx/v
UljtL2Vp06wfgwYn1qM0BLgPD/8Au9MyQiMM5Nfpx/GNPJfRC/geLdQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:45 2024 by rpki-client on console-fra.rpki-client.org