Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/uajYSPNw269CqxOx3feASbEPTYw.roa
File: uajYSPNw269CqxOx3feASbEPTYw.roa (raw, json)
Hash identifier: h2+amO25ye96KA5Qt94oI3WwZDUqYSchTJCzG4PZ/FU=
Subject key identifier: B9:A8:D8:48:F3:70:DB:AF:42:AB:13:B1:DD:F7:80:49:B1:0F:4D:8C
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 513F
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/uajYSPNw269CqxOx3feASbEPTYw.roa
Signing time: Mon 06 May 2024 21:53:53 +0000
ROA not before: Mon 06 May 2024 21:53:53 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20799 (0x513f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 6 21:53:53 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=B9A8D848F370DBAF42AB13B1DDF78049B10F4D8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:19:59:ca:c6:f8:c1:c1:f7:1f:6a:68:f6:c3:
cc:6a:60:54:e8:f4:f5:e3:6f:b2:80:27:80:d2:72:
95:48:ca:d4:6f:62:83:bb:6e:9c:c7:35:ad:10:db:
fc:7c:d6:43:c5:37:b3:68:96:ff:9e:1b:78:5d:e6:
78:0e:c4:b6:e4:84:6a:3b:66:45:6e:91:0c:71:22:
3e:03:63:59:b0:53:bf:b5:a0:1a:53:ea:2c:c8:35:
87:2c:d6:f1:7a:a3:2d:30:32:f7:a0:50:c7:7f:07:
0e:f2:bd:f1:86:d1:4c:1c:20:d4:4f:eb:b4:b2:8d:
78:fb:3a:53:f9:cb:8a:bb:9f:bb:12:d1:b0:6f:29:
a3:91:83:86:6f:d5:f3:5d:ae:a6:22:38:40:36:4d:
02:ec:a4:3c:5a:07:c1:6b:aa:5c:ca:96:de:f7:9c:
0d:85:05:14:c6:28:e3:3f:b8:68:0e:1b:11:d9:22:
2c:dc:3d:52:62:ab:4d:41:eb:f6:c0:e6:ea:b7:e2:
94:7a:d3:c3:51:f9:fb:da:4e:87:20:41:20:72:96:
60:79:55:c6:1a:ce:36:35:96:c5:bd:44:49:93:de:
69:1c:89:51:4b:ba:f8:a9:94:d7:97:7f:48:5e:45:
f6:63:f0:6f:52:d8:06:d5:f4:ff:7e:ee:67:a7:10:
b3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A8:D8:48:F3:70:DB:AF:42:AB:13:B1:DD:F7:80:49:B1:0F:4D:8C
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/uajYSPNw269CqxOx3feASbEPTYw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
06:82:e8:d0:09:6e:99:8e:39:2d:6d:13:bb:4a:02:16:7b:b0:
ff:05:ec:7a:14:35:38:10:f0:e3:fe:a4:95:82:e1:16:d6:89:
3c:eb:ee:13:1c:3d:e2:55:45:45:9e:37:2c:a1:a0:d9:e3:21:
35:aa:a7:ba:08:9b:47:a6:e5:4a:7d:92:f9:c8:79:cd:fa:35:
2c:7b:41:e3:0d:a1:48:36:ea:dc:5f:ac:40:a5:2c:c6:6d:b1:
80:e7:58:d1:5e:3e:eb:76:33:ca:8d:70:ab:7f:33:c2:5b:76:
3e:6d:d2:6f:b4:da:4d:53:5a:ee:f0:0c:d3:58:12:d4:63:e6:
94:5a:24:48:75:ae:88:bb:f3:ad:29:5e:9e:07:86:81:24:a7:
52:5f:8f:0b:ff:6c:82:4a:33:b9:df:c2:c7:1a:4b:49:fb:dc:
fd:5f:dd:ad:7c:9c:58:bd:c4:d2:4b:dd:85:0e:d1:e0:77:c0:
88:e5:00:22:8b:f9:d2:4d:a2:a7:7f:aa:6c:f7:54:7a:80:f1:
52:de:6b:f0:aa:f1:db:39:b6:d0:b6:2d:d5:96:00:82:a1:03:
5a:83:a9:16:82:44:79:9e:cc:c2:96:5a:82:a7:69:ae:49:bd:
a9:a9:14:c3:e8:d9:ba:d3:39:f3:e5:c6:80:00:47:f2:d9:6f:
c3:c5:06:50
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICUT8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MDYy
MTUzNTNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEI5QThEODQ4RjM3MERC
QUY0MkFCMTNCMURERjc4MDQ5QjEwRjREOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/GVnKxvjBwfcfamj2w8xqYFTo9PXjb7KAJ4DScpVIytRvYoO7
bpzHNa0Q2/x81kPFN7Nolv+eG3hd5ngOxLbkhGo7ZkVukQxxIj4DY1mwU7+1oBpT
6izINYcs1vF6oy0wMvegUMd/Bw7yvfGG0UwcINRP67SyjXj7OlP5y4q7n7sS0bBv
KaORg4Zv1fNdrqYiOEA2TQLspDxaB8FrqlzKlt73nA2FBRTGKOM/uGgOGxHZIizc
PVJiq01B6/bA5uq34pR608NR+fvaTocgQSBylmB5VcYazjY1lsW9REmT3mkciVFL
uviplNeXf0heRfZj8G9S2AbV9P9+7menELOzAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUuajYSPNw269CqxOx3feASbEPTYwwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L3VhallTUE53MjY5Q3F4
T3gzZmVBU2JFUFRZdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAYkAEAwDQYJKoZIhvcNAQELBQADggEBAAaC6NAJbpmOOS1tE7tKAhZ7sP8F7HoU
NTgQ8OP+pJWC4RbWiTzr7hMcPeJVRUWeNyyhoNnjITWqp7oIm0em5Up9kvnIec36
NSx7QeMNoUg26txfrEClLMZtsYDnWNFePut2M8qNcKt/M8Jbdj5t0m+02k1TWu7w
DNNYEtRj5pRaJEh1roi7860pXp4HhoEkp1Jfjwv/bIJKM7nfwscaS0n73P1f3a18
nFi9xNJL3YUO0eB3wIjlACKL+dJNoqd/qmz3VHqA8VLea/Cq8ds5ttC2LdWWAIKh
A1qDqRaCRHmezMKWWoKnaa5JvampFMPo2brTOfPlxoAAR/LZb8PFBlA=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:24:38 2025 by rpki-client