Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/oWsnOnIsyBrBBtKh6IaWgElJOYk.roa
File: oWsnOnIsyBrBBtKh6IaWgElJOYk.roa (raw, json)
Hash identifier: 3fmKAkVkbeKfXMvrs71aMR1S7OxHGf0gGlHk0cFff8k=
Subject key identifier: A1:6B:27:3A:72:2C:C8:1A:C1:06:D2:A1:E8:86:96:80:49:49:39:89
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3B77
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/oWsnOnIsyBrBBtKh6IaWgElJOYk.roa
Signing time: Sun 07 Apr 2024 20:52:34 +0000
ROA not before: Sun 07 Apr 2024 20:52:34 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15223 (0x3b77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 7 20:52:34 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=A16B273A722CC81AC106D2A1E886968049493989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:78:02:5d:6a:dd:20:02:92:0e:6a:fe:9f:7d:
f9:8d:e3:01:25:cb:30:bd:66:dd:4a:43:29:de:a7:
cd:ae:6a:d8:99:43:35:40:71:0d:95:8a:8f:90:a2:
10:b6:f9:3c:07:2e:62:32:2b:53:b0:37:b3:f6:6b:
4c:c8:f3:34:42:ff:f3:5c:48:a4:cb:7a:77:0d:d1:
5a:fd:5b:a7:ed:6b:ff:f8:a2:42:f8:17:73:69:2c:
2b:f9:b7:bc:b2:5e:67:f3:93:7a:fc:89:e7:27:cd:
9a:ad:67:0e:e2:66:2e:69:ac:9f:79:83:a9:6c:d0:
3b:c5:bd:1a:15:b0:fb:6a:95:4c:61:64:f0:d2:c5:
7c:6b:e4:fe:8b:0f:b3:3b:bc:40:a9:65:b8:5f:d7:
d4:e1:52:51:38:53:bb:0e:c3:f5:b0:d3:97:98:8e:
ee:9e:82:fa:ab:74:d9:6d:3f:0f:1b:63:65:55:3c:
f6:41:a0:e6:0c:1a:4a:84:39:18:ef:60:7b:07:2a:
d7:77:7c:66:62:60:e0:8d:f1:af:33:cd:d3:f5:16:
42:cd:c3:48:55:28:b8:14:5e:6b:8d:e9:73:4f:5b:
15:65:23:e8:33:62:e3:b3:ea:0c:97:3b:2b:07:29:
ee:79:e9:bc:69:f0:ac:d5:c9:b9:9a:55:82:ed:41:
69:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:6B:27:3A:72:2C:C8:1A:C1:06:D2:A1:E8:86:96:80:49:49:39:89
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/oWsnOnIsyBrBBtKh6IaWgElJOYk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
ba:78:0e:f5:50:c1:dc:32:f7:3e:ec:1d:20:fe:d8:62:33:66:
df:65:4a:f4:99:94:5d:d6:de:78:b7:c5:8b:e4:fa:83:55:2d:
06:a2:a9:2b:1a:54:2b:7e:6a:1a:d6:9e:da:51:c2:09:da:90:
2e:06:d7:08:93:1a:f5:e1:7c:30:fe:49:c8:9b:0f:62:a9:38:
16:c6:bc:c4:0f:f5:78:29:0d:fa:e4:e5:18:ad:3b:e5:83:80:
19:a6:1b:51:08:b7:6f:39:03:6c:4b:93:24:71:d8:6a:6b:8c:
0a:34:bc:48:09:fb:e7:3a:1d:b1:32:ed:28:c4:df:08:7a:64:
39:1c:39:ab:a2:14:a8:85:33:a6:84:85:d5:c8:a6:76:f9:bf:
e7:46:81:ba:e5:28:74:02:c0:a2:72:3f:6a:75:08:6e:72:6b:
a1:27:6c:e7:44:8b:1a:36:7c:28:67:1b:84:3b:93:44:ec:ff:
13:e6:db:47:91:91:b9:56:4f:76:ea:be:df:dd:65:13:24:de:
51:26:7f:86:43:d0:07:55:d5:65:93:07:5f:ba:91:d4:31:2a:
41:19:f0:2a:5f:8b:73:ae:d9:6d:6d:d0:41:8e:2a:2d:88:fb:
89:35:21:be:ed:44:59:9f:2d:87:1d:b1:3a:71:72:c0:6f:38:
c5:c3:5d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:46 2024 by rpki-client on console-fra.rpki-client.org