Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/uQt1NyRce30PTJ08H-wewBTtxb0.roa
File: uQt1NyRce30PTJ08H-wewBTtxb0.roa (raw, json)
Hash identifier: BwCLQNnrnUwVMPNYM97mATV8E2z38enXxqe5Zgu5OtE=
Subject key identifier: B9:0B:75:37:24:5C:7B:7D:0F:4C:9D:3C:1F:EC:1E:C0:14:ED:C5:BD
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4417
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/uQt1NyRce30PTJ08H-wewBTtxb0.roa
Signing time: Fri 19 Apr 2024 08:53:24 +0000
ROA not before: Fri 19 Apr 2024 08:53:24 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17431 (0x4417)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 19 08:53:24 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=B90B7537245C7B7D0F4C9D3C1FEC1EC014EDC5BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c7:6a:6e:2a:db:5d:74:1e:9a:07:e3:5b:fc:
f7:7f:c8:67:74:83:d7:05:f5:9c:dd:d1:a0:df:e6:
a1:f7:e0:f7:1a:76:5a:2a:e9:07:3b:68:62:1c:75:
5f:65:53:24:a2:65:41:e0:5f:77:9f:31:7b:e0:7e:
77:df:a8:a0:5c:f0:53:93:25:05:26:27:f1:ed:c6:
ea:1e:e7:fb:28:a0:21:9f:8c:65:10:e6:e0:69:bf:
fc:da:b0:fb:50:fa:c2:f4:48:68:b8:d0:e5:26:eb:
a9:16:1e:0d:a4:a1:98:4c:3c:aa:0b:a0:30:82:47:
6e:f4:46:e3:24:87:93:10:e2:b8:7d:1d:dc:24:c0:
c2:81:cb:8e:41:62:73:b9:60:6f:e3:60:e9:9f:51:
64:b7:c4:0f:31:08:62:25:69:64:e9:66:8b:95:77:
d3:c2:9c:1b:70:88:aa:74:0c:c5:c5:58:47:90:64:
b7:b0:bb:18:ec:bb:13:11:02:15:99:56:ce:fb:79:
29:a1:2e:be:f5:71:5a:61:e3:7f:d3:90:92:d6:57:
62:77:5a:47:12:b5:8e:7e:3e:db:3a:74:9c:86:e3:
31:4f:10:7a:5e:16:94:73:05:d2:86:45:49:51:d4:
bf:d7:ad:89:ea:1c:8a:2a:2b:3a:f8:bf:bf:81:4d:
2d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:0B:75:37:24:5C:7B:7D:0F:4C:9D:3C:1F:EC:1E:C0:14:ED:C5:BD
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/uQt1NyRce30PTJ08H-wewBTtxb0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
af:d3:5c:76:b5:e7:43:26:8a:b3:0d:53:e3:c2:ad:a5:fb:5e:
3d:7a:18:bb:3e:b1:f0:62:8b:c0:6f:51:dd:8f:0d:45:6e:75:
d5:59:9d:cf:68:e0:18:e4:d8:80:28:77:f2:39:5c:ac:34:67:
c8:a5:38:19:e4:62:bf:c5:dd:d2:86:50:37:13:0f:b6:34:81:
d1:75:d6:3b:7c:2b:07:63:da:5d:38:ac:09:e7:f8:cf:76:50:
de:b7:ca:7d:bd:5e:85:97:22:c4:ea:08:16:e1:10:44:42:f7:
68:f7:1f:2a:13:06:d9:8c:01:cc:79:78:28:a8:92:36:2f:91:
b0:58:54:03:af:22:16:31:c7:6d:34:3e:de:3b:da:43:32:d3:
6e:0a:16:5f:75:0c:24:8d:ce:49:7b:94:f2:9b:0f:e7:94:00:
88:8e:59:b4:d2:a8:e7:c4:ca:03:e8:00:ed:ca:11:e4:1b:74:
29:0e:85:77:e8:d2:26:83:32:27:9d:2d:da:bf:fd:dd:c5:93:
a6:24:83:e4:df:a3:42:cd:50:01:e7:6a:56:a1:94:51:d7:9c:
a6:5f:b7:10:16:d4:20:8f:23:33:c0:5c:08:25:87:cd:85:15:
a1:e3:09:a7:f2:fc:2b:81:ca:40:d8:dc:bf:eb:51:7b:ea:88:
73:4c:f5:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:52 2024 by rpki-client on console-fra.rpki-client.org