Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/xvdKMoqGLs19UwDSB2tNTB8eo3c.roa
File: xvdKMoqGLs19UwDSB2tNTB8eo3c.roa (raw, json)
Hash identifier: mB4p+P9ciY/HRb36MCZ81hTAGha31F6EpKp2LlsL96E=
Subject key identifier: C6:F7:4A:32:8A:86:2E:CD:7D:53:00:D2:07:6B:4D:4C:1F:1E:A3:77
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 351F
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/xvdKMoqGLs19UwDSB2tNTB8eo3c.roa
Signing time: Sat 30 Mar 2024 09:52:07 +0000
ROA not before: Sat 30 Mar 2024 09:52:07 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13599 (0x351f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Mar 30 09:52:07 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=C6F74A328A862ECD7D5300D2076B4D4C1F1EA377
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fe:70:50:8e:d0:3f:82:0a:9e:e4:79:7e:4a:
f9:db:72:4d:c9:51:95:c7:2e:06:bd:49:71:58:79:
85:2c:bf:23:a7:33:5c:55:99:c1:d0:cc:cb:82:69:
24:30:ed:09:ae:9c:6c:81:95:78:cf:47:ee:6a:42:
cf:f6:b6:7b:53:a0:aa:a6:f8:34:5a:ec:35:1e:0e:
df:e0:2b:07:56:85:86:2f:16:e0:d3:31:10:f9:0c:
8b:fe:f8:71:68:48:0f:55:39:e6:5c:29:23:61:e6:
c1:80:b1:2d:fc:c7:8f:57:1a:fa:1b:42:81:dc:df:
19:da:07:c8:bf:34:1e:cf:94:4c:f2:c2:7e:97:73:
d2:3f:c6:6f:ea:47:c0:eb:e2:84:fb:65:b9:1e:19:
70:8c:a3:bb:ff:ad:16:1d:c1:50:dc:e8:07:1b:e1:
52:d0:ed:e7:40:99:b4:79:50:58:37:da:11:d9:70:
ce:fa:c1:29:68:3e:91:bb:ea:bd:64:2d:1e:f3:d0:
8e:53:9a:37:42:9b:49:71:0f:26:34:31:49:0a:16:
75:db:08:c5:be:31:5c:42:a0:05:0d:3b:68:f3:a3:
ff:e7:1a:28:01:e6:36:c5:36:ff:82:d4:e7:27:a5:
c3:f5:13:b4:2b:45:4c:82:0f:97:e4:3d:21:00:e8:
1b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F7:4A:32:8A:86:2E:CD:7D:53:00:D2:07:6B:4D:4C:1F:1E:A3:77
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/xvdKMoqGLs19UwDSB2tNTB8eo3c.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3b:7e:2f:1c:44:b6:30:93:be:e0:d6:42:b2:a1:8d:aa:43:f2:
00:87:1f:35:82:d4:37:40:4e:e5:f9:f1:90:9f:76:17:0e:8a:
dd:5a:e4:3d:fa:10:1b:39:72:bc:88:95:9b:5d:2b:74:79:c6:
4f:d3:fd:97:ac:2e:21:1b:8f:50:8b:0d:76:64:3c:ed:cc:88:
db:e6:41:f2:5a:76:fe:c7:d4:63:97:f1:db:dd:68:f4:e7:75:
07:82:e6:5d:96:25:63:ce:5e:f4:f1:12:77:b1:47:55:0b:75:
e3:f6:3f:31:a7:be:8d:85:92:11:4a:28:36:fc:31:e0:06:18:
76:e7:d2:67:e4:13:72:1c:b1:a9:ec:ff:2b:fb:f8:ac:5a:05:
01:cd:e1:80:87:14:a6:d1:a4:29:1c:81:80:6f:d3:2a:4b:0d:
7a:ce:d7:1a:77:08:64:f7:1a:61:5c:83:52:72:04:21:5e:06:
c7:b9:2a:94:07:87:90:5d:9f:89:e0:09:e8:00:98:f4:70:fb:
2a:76:3a:2b:b4:4d:ab:25:f2:ff:b8:d3:ef:bb:b3:e4:89:cb:
90:c0:7b:cd:51:1e:8d:e4:73:ef:2c:58:db:20:b9:d4:54:70:
8f:fa:18:db:eb:17:0a:58:07:28:77:da:28:45:25:28:3d:be:
90:57:af:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:20 2024 by rpki-client on console-ams.rpki-client.org