Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/sQe4Ybl-HOFAXaGZCt1tCZTV0E4.roa
File: sQe4Ybl-HOFAXaGZCt1tCZTV0E4.roa (raw, json)
Hash identifier: vQOjkg0VSIegVTh5RB96GqZsU0ViOnJQOoptJfUp4NE=
Subject key identifier: B1:07:B8:61:B9:7E:1C:E1:40:5D:A1:99:0A:DD:6D:09:94:D5:D0:4E
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 56E7
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/sQe4Ybl-HOFAXaGZCt1tCZTV0E4.roa
Signing time: Tue 14 May 2024 10:54:09 +0000
ROA not before: Tue 14 May 2024 10:54:09 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22247 (0x56e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 14 10:54:09 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=B107B861B97E1CE1405DA1990ADD6D0994D5D04E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ac:72:f1:f3:eb:16:be:47:3d:39:b1:fc:7e:
2f:b1:0e:65:5c:c4:86:be:22:89:b3:2c:13:c4:a7:
a2:14:f6:74:a1:f7:ff:87:3c:aa:43:7f:23:8b:77:
ff:20:e6:a1:b8:e3:47:3f:aa:dd:d0:c7:83:ad:40:
10:63:43:9d:15:fa:7b:69:30:77:bd:bc:2a:5d:c4:
28:30:d0:b4:83:a6:aa:09:94:44:ae:71:a2:8d:a8:
a7:42:e5:40:b8:c4:fe:61:81:73:2b:6d:f4:9d:bf:
ca:8f:e3:ea:69:f3:04:ad:cc:04:7d:ff:c5:2a:be:
35:d1:2c:10:47:88:9d:c8:f8:18:56:50:cf:ce:ad:
9d:33:9c:67:47:2c:14:39:d1:a6:7a:e1:ef:36:8e:
48:3e:c5:fb:a6:76:3a:ae:2a:1d:21:49:01:0e:84:
db:9d:5c:c0:32:88:37:7f:b9:80:a7:2b:3c:16:9d:
cf:61:1b:3a:85:cd:53:ba:d9:5e:34:d5:28:7f:28:
ad:3b:8a:fe:01:8f:b6:30:14:33:b6:67:0b:37:9c:
13:64:5f:de:27:b8:8b:3f:a1:ef:13:1b:6c:47:29:
81:e9:48:f2:82:01:f9:a7:2e:79:b9:20:da:f3:05:
93:4a:d5:5e:fe:78:96:b2:fc:a5:80:8b:85:12:bc:
f1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:07:B8:61:B9:7E:1C:E1:40:5D:A1:99:0A:DD:6D:09:94:D5:D0:4E
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/sQe4Ybl-HOFAXaGZCt1tCZTV0E4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
1b:87:40:bc:fb:4c:03:86:60:ef:39:d9:5e:00:d8:15:ea:52:
b8:22:3e:57:0b:1e:32:c8:89:83:21:53:b5:15:ec:27:9d:fe:
df:ef:0a:54:8a:c8:e5:39:39:95:bc:7f:3e:68:d0:61:df:70:
5b:b9:20:fd:9f:2a:e8:4b:5a:2f:2c:bb:94:98:89:1f:0f:1f:
13:81:b1:4b:78:9f:c3:3b:9a:ef:e4:48:87:0e:ed:99:ec:9a:
af:3c:da:f6:57:5b:14:38:c4:3d:5d:49:3f:23:40:95:99:63:
f0:d7:21:d1:94:0c:69:be:3b:2d:b5:2b:b9:cd:0a:a9:0f:6a:
3f:11:21:72:a9:01:38:95:ae:09:72:e3:31:88:10:ab:1e:50:
04:0c:9f:98:7a:1b:80:e9:b7:60:81:18:1f:1e:b0:da:81:bc:
fe:3c:74:c1:ad:27:58:8a:b0:7f:47:86:80:f4:22:aa:4d:b4:
fe:2a:09:09:d4:72:f7:ba:0e:c6:ed:c7:6d:cf:ca:1d:aa:b1:
7f:07:1a:19:01:ee:d3:4e:00:b0:4a:ae:0f:2b:b7:14:2f:79:
c1:75:30:ed:da:18:39:46:fa:56:69:22:da:6d:0a:19:95:7c:
ed:65:f0:be:dc:fc:fd:a8:2c:b8:22:ad:25:5b:61:9f:fb:5c:
5e:c6:6a:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:50 2024 by rpki-client on console-fra.rpki-client.org