Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/v16rvMXFzvO-oCDDpypl9ZNLok0.roa
File: v16rvMXFzvO-oCDDpypl9ZNLok0.roa (raw, json)
Hash identifier: TdFN+1Xv9ftmjb8Y/0LYbzrk33TaB1Ob5jd3CxoHtpk=
Subject key identifier: BF:5E:AB:BC:C5:C5:CE:F3:BE:A0:20:C3:A7:2A:65:F5:93:4B:A2:4D
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4243
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/v16rvMXFzvO-oCDDpypl9ZNLok0.roa
Signing time: Tue 16 Apr 2024 22:22:57 +0000
ROA not before: Tue 16 Apr 2024 22:22:57 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16963 (0x4243)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 16 22:22:57 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=BF5EABBCC5C5CEF3BEA020C3A72A65F5934BA24D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9a:bd:bf:97:36:6e:98:d5:f3:a6:79:4d:bd:
03:c2:49:dd:12:40:c1:5b:63:1c:20:11:bf:2a:26:
95:8a:b5:cb:f3:32:00:5d:c1:cf:ae:c5:65:ef:f8:
2e:69:fe:39:a3:84:bb:03:c4:2d:b8:c7:68:5c:a2:
ee:6c:09:d3:5a:34:16:b1:d8:91:65:72:90:8d:f5:
6c:a8:f6:94:e6:6a:63:7e:3d:59:f2:b6:41:a2:cf:
d8:11:9e:45:1d:37:c6:e9:40:91:bb:f0:40:8c:b8:
0f:37:aa:b8:6d:30:46:fa:9e:7a:cd:b3:a2:30:51:
83:01:b4:f0:9a:f9:5e:2d:9c:91:e7:3f:b0:04:ec:
46:5a:76:5f:1b:6c:6e:6b:5b:44:5e:74:e8:63:32:
0d:cf:76:00:77:9f:f2:90:ab:69:fa:1e:59:42:a2:
03:cf:41:5d:ed:c9:53:16:55:99:44:20:8a:42:f0:
08:84:0c:61:eb:4e:d6:5c:45:52:87:db:e8:43:ae:
70:a5:ce:36:a8:9a:d4:fd:db:bd:9b:7a:a4:8c:c6:
ab:98:0d:52:8b:a7:d5:cf:71:a4:b3:5f:24:44:ec:
2e:f0:4a:af:05:24:c1:1f:d1:d5:9b:7a:16:a3:66:
49:3f:68:3f:15:ca:cc:21:eb:48:2b:e6:98:63:6c:
55:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:5E:AB:BC:C5:C5:CE:F3:BE:A0:20:C3:A7:2A:65:F5:93:4B:A2:4D
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/v16rvMXFzvO-oCDDpypl9ZNLok0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
56:9c:7b:06:f2:b4:47:0f:6f:3b:05:8d:3e:fc:74:b5:5d:d1:
ec:88:9d:7f:bd:ff:59:05:04:0b:f4:e2:c7:89:a4:52:4f:c7:
10:37:01:d5:76:a8:d0:b7:74:84:cf:d1:60:89:38:64:23:69:
8a:f1:16:4e:4e:59:39:9c:2e:91:5f:64:1d:82:e7:89:17:ca:
f7:ec:83:3b:a4:b1:aa:c7:c9:f0:22:b2:6a:f7:3c:d7:2a:55:
a0:11:71:09:c9:1c:c8:10:ef:c0:4e:b0:e0:d6:18:27:c7:bc:
cf:94:2b:04:77:2a:a2:7f:32:46:1c:da:8f:41:35:64:61:fd:
e9:ca:e6:6d:93:ab:d3:76:bc:13:c6:a2:0e:d3:b4:9d:10:09:
d3:ae:5d:26:a6:5f:e9:91:c4:77:ab:ea:bb:d0:51:b0:1c:81:
1c:db:73:e1:e2:9d:f3:d3:4f:c7:09:1e:f1:4a:fd:3a:bd:fe:
76:c4:bd:3c:b9:fc:8f:ac:a6:85:06:8d:61:23:9b:7a:ed:c8:
14:e6:59:ca:7b:e1:54:63:08:c9:18:ef:a1:4b:b0:c5:14:ce:
11:c2:ce:75:13:ad:29:b0:bf:85:b8:52:8a:d4:e7:7b:8c:8a:
2d:33:0f:98:86:2c:66:55:2a:4c:ac:da:62:ef:7f:c2:f5:12:
b8:cb:12:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:29:28 2025 by rpki-client