Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/mOhKz6Tih1YIFp___SjJtYMhDHY.roa
File: mOhKz6Tih1YIFp___SjJtYMhDHY.roa (raw, json)
Hash identifier: o/IW7/iz+xi/k3Q5GpmkwCn2yyfHWy/Pbtsev3PjtUY=
Subject key identifier: 98:E8:4A:CF:A4:E2:87:56:08:16:9F:FF:FD:28:C9:B5:83:21:0C:76
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 375B
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/mOhKz6Tih1YIFp___SjJtYMhDHY.roa
Signing time: Tue 02 Apr 2024 09:22:13 +0000
ROA not before: Tue 02 Apr 2024 09:22:13 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14171 (0x375b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 2 09:22:13 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=98E84ACFA4E2875608169FFFFD28C9B583210C76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:06:c2:ba:11:af:35:62:13:ec:0b:2e:7b:c8:
a2:e2:8d:a7:0c:85:94:29:98:73:74:ea:65:37:83:
28:33:5c:51:45:27:d2:fd:37:db:00:c8:9b:00:e3:
2f:7f:31:79:57:fe:b6:9e:fd:c7:6f:e8:20:5d:4d:
ec:9c:50:9c:00:5a:52:24:c2:88:43:f3:62:a5:28:
e6:2d:ae:5b:c0:3e:9d:67:34:39:16:c6:09:8d:02:
8e:f0:98:49:4f:91:40:07:7a:64:0d:0c:ae:8a:b1:
42:08:12:f1:3e:41:d7:8f:48:48:1f:60:48:f6:e6:
c7:7a:67:bf:a9:99:44:6e:98:73:de:db:33:42:85:
c3:94:e5:94:20:e0:00:8c:be:fa:98:82:14:19:37:
86:e0:0e:7d:e9:a8:74:73:b6:ac:ca:0c:77:79:08:
7a:27:dc:5b:c1:2c:8c:7e:71:fe:1d:7a:e4:58:df:
65:5f:8a:ef:23:58:25:e4:d5:5d:d9:ef:96:bb:69:
b4:3a:8c:48:24:f7:e1:f4:00:7f:a1:99:5a:07:60:
55:98:8f:e5:be:c0:c9:bb:58:02:40:8b:bb:de:c8:
36:13:eb:a3:41:03:a4:91:ef:00:97:92:26:9f:cc:
16:e1:e4:6e:20:13:2c:48:7d:16:15:4d:f7:ef:ec:
3f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E8:4A:CF:A4:E2:87:56:08:16:9F:FF:FD:28:C9:B5:83:21:0C:76
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/mOhKz6Tih1YIFp___SjJtYMhDHY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
0b:05:ad:d2:a7:9d:68:8c:9e:19:87:09:b3:13:be:17:5a:3c:
14:8e:3a:47:9d:a9:32:0d:44:cc:58:e6:e9:95:ce:16:fb:70:
2c:27:37:1f:bd:d2:02:b6:c3:56:e7:a5:f3:b4:de:8d:1a:8b:
a9:d7:ab:4b:4a:97:2c:64:d3:35:6e:0b:4b:13:55:a7:1d:99:
27:b5:db:cf:af:c0:7e:da:97:34:e0:bf:0a:06:9c:18:71:f9:
94:3c:18:d1:2f:38:03:a8:a8:14:df:3c:a8:f2:dd:32:0f:92:
59:06:27:9f:65:08:b2:e1:64:28:3d:02:c4:33:12:39:38:36:
f1:90:59:b8:5e:ad:f8:fd:13:57:4f:09:65:e5:25:ff:ac:06:
b2:4e:6e:31:ed:6e:9b:04:14:bf:2f:c3:c6:1a:f9:48:68:a7:
a4:48:41:9b:5b:d0:aa:9b:e1:ee:b8:46:b2:b2:c3:49:f4:ac:
8a:db:dc:c9:ef:ba:e7:c0:d8:d0:a4:f4:9e:1c:e0:3d:ba:a2:
a8:25:16:57:e4:68:ee:37:8a:f5:6d:52:83:29:bd:26:33:a4:
1d:fa:fd:e3:27:a8:1b:1b:b5:08:a8:41:d7:5e:92:d6:b2:b4:
e1:9c:50:d4:1c:d7:3e:79:5f:9f:f6:56:8f:d9:fe:69:1e:f5:
b7:e8:43:11
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICN1swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MDIw
OTIyMTNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDk4RTg0QUNGQTRFMjg3
NTYwODE2OUZGRkZEMjhDOUI1ODMyMTBDNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyBsK6Ea81YhPsCy57yKLijacMhZQpmHN06mU3gygzXFFFJ9L9
N9sAyJsA4y9/MXlX/rae/cdv6CBdTeycUJwAWlIkwohD82KlKOYtrlvAPp1nNDkW
xgmNAo7wmElPkUAHemQNDK6KsUIIEvE+QdePSEgfYEj25sd6Z7+pmURumHPe2zNC
hcOU5ZQg4ACMvvqYghQZN4bgDn3pqHRztqzKDHd5CHon3FvBLIx+cf4deuRY32Vf
iu8jWCXk1V3Z75a7abQ6jEgk9+H0AH+hmVoHYFWYj+W+wMm7WAJAi7veyDYT66NB
A6SR7wCXkiafzBbh5G4gEyxIfRYVTffv7D/bAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUmOhKz6Tih1YIFp///SjJtYMhDHYwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L21PaEt6NlRpaDFZSUZw
X19fU2pKdFlNaERIWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAYkAEAwDQYJKoZIhvcNAQELBQADggEBAAsFrdKnnWiMnhmHCbMTvhdaPBSOOked
qTINRMxY5umVzhb7cCwnNx+90gK2w1bnpfO03o0ai6nXq0tKlyxk0zVuC0sTVacd
mSe128+vwH7alzTgvwoGnBhx+ZQ8GNEvOAOoqBTfPKjy3TIPklkGJ59lCLLhZCg9
AsQzEjk4NvGQWbherfj9E1dPCWXlJf+sBrJObjHtbpsEFL8vw8Ya+Uhop6RIQZtb
0Kqb4e64RrKyw0n0rIrb3MnvuufA2NCk9J4c4D26oqglFlfkaO43ivVtUoMpvSYz
pB36/eMnqBsbtQioQddektaytOGcUNQc1z55X5/2Vo/Z/mke9bfoQxE=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:42:47 2025 by rpki-client