Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/zEM2xXevSZBIxkEL7mqzdZAA7zc.roa
File: zEM2xXevSZBIxkEL7mqzdZAA7zc.roa (raw, json)
Hash identifier: 4tr2V5KpYLTQZJ0IK8WhFRHcdpqH2hJUdPqn5+qYzq8=
Subject key identifier: CC:43:36:C5:77:AF:49:90:48:C6:41:0B:EE:6A:B3:75:90:00:EF:37
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3463
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/zEM2xXevSZBIxkEL7mqzdZAA7zc.roa
Signing time: Fri 29 Mar 2024 10:22:04 +0000
ROA not before: Fri 29 Mar 2024 10:22:04 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13411 (0x3463)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Mar 29 10:22:04 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=CC4336C577AF499048C6410BEE6AB3759000EF37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:06:5f:6b:4a:1c:de:3b:dd:d1:a4:2a:b9:92:
e3:41:3b:d0:05:9a:4d:d4:1f:8b:4a:6c:39:21:73:
1b:af:6d:01:b6:62:87:e0:a2:d1:fc:2d:dc:a5:7e:
e2:02:f6:e7:b9:5e:36:bd:2a:04:04:1d:88:d7:db:
20:3b:79:18:ea:48:13:9a:fa:d8:2f:c0:16:86:65:
76:50:f4:82:28:04:c6:5b:03:76:29:bf:90:5d:77:
c8:b7:4a:bb:5f:e2:03:69:5c:f6:d3:13:7e:ab:98:
28:75:3b:ae:ee:a1:c0:c2:a1:4b:4f:d0:f0:98:1d:
6f:28:17:70:e3:28:0f:7b:02:a5:6e:42:09:69:65:
09:d8:69:c8:f0:cf:1e:01:24:1b:2b:fe:e2:f8:c3:
c0:eb:87:94:04:c2:68:0d:41:44:7e:48:33:c6:d6:
a5:7e:ba:59:a0:b9:f4:e7:f5:17:1b:a2:ec:75:bf:
8a:68:5e:ab:65:09:0c:6b:09:5a:02:17:a5:fd:ea:
78:7b:6a:71:dc:e4:bc:19:19:3c:6e:79:e0:b5:4a:
8e:af:fa:af:74:47:87:3a:86:15:88:40:84:e1:81:
c4:cd:77:4a:e0:48:7e:60:54:8a:ed:59:f1:f2:e8:
9d:95:a5:e9:27:f4:25:27:3f:50:f4:e2:69:2d:0a:
aa:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:43:36:C5:77:AF:49:90:48:C6:41:0B:EE:6A:B3:75:90:00:EF:37
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/zEM2xXevSZBIxkEL7mqzdZAA7zc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
49:35:dd:c8:b0:06:51:ca:c5:3c:56:33:0a:ae:57:09:d0:05:
98:1e:8c:ee:35:8b:f5:f0:ec:67:63:c7:f1:87:b6:ef:a6:72:
a8:fa:33:3a:05:3b:52:c8:fa:6f:d3:cd:d2:fe:69:5c:de:8b:
d4:07:59:67:65:f3:22:d5:85:8a:85:0a:e3:52:4b:1c:95:50:
51:d9:0b:b9:02:aa:13:a8:d2:39:87:af:65:6d:8d:f1:cb:8d:
82:d4:57:61:0c:66:07:17:3d:44:40:f7:80:38:ab:7c:55:cd:
ed:14:a7:87:33:dd:47:40:91:a0:d2:fd:04:c8:b2:a6:85:77:
ff:8e:0f:c6:7d:c0:f2:fb:cc:8c:b0:ed:f8:61:52:e9:ff:b8:
06:ab:10:a1:23:b3:13:c9:63:2b:76:73:a3:4c:70:93:eb:c7:
ac:20:4c:75:d4:5f:52:0f:6a:42:28:07:95:33:9c:71:ff:4a:
68:09:0a:dc:50:cb:c7:d1:17:4a:d1:96:8c:17:f2:e1:f8:01:
67:36:95:2c:82:98:6f:aa:22:54:66:ce:3f:d3:9c:ae:f8:04:
39:4d:47:ce:3a:0e:e2:b1:0c:c1:76:32:a8:c3:37:89:58:e4:
5c:47:ea:2d:b9:f3:d6:e4:46:40:5c:85:9a:f4:a4:2c:c6:f5:
4e:c4:51:6c
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICNGMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDAzMjkx
MDIyMDRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKENDNDMzNkM1NzdBRjQ5
OTA0OEM2NDEwQkVFNkFCMzc1OTAwMEVGMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQChBl9rShzeO93RpCq5kuNBO9AFmk3UH4tKbDkhcxuvbQG2Yofg
otH8LdylfuIC9ue5Xja9KgQEHYjX2yA7eRjqSBOa+tgvwBaGZXZQ9IIoBMZbA3Yp
v5Bdd8i3Srtf4gNpXPbTE36rmCh1O67uocDCoUtP0PCYHW8oF3DjKA97AqVuQglp
ZQnYacjwzx4BJBsr/uL4w8Drh5QEwmgNQUR+SDPG1qV+ulmgufTn9Rcboux1v4po
XqtlCQxrCVoCF6X96nh7anHc5LwZGTxueeC1So6v+q90R4c6hhWIQIThgcTNd0rg
SH5gVIrtWfHy6J2Vpekn9CUnP1D04mktCqr3AgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUzEM2xXevSZBIxkEL7mqzdZAA7zcwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L3pFTTJ4WGV2U1pCSXhr
RUw3bXF6ZFpBQTd6Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAYkAEAwDQYJKoZIhvcNAQELBQADggEBAEk13ciwBlHKxTxWMwquVwnQBZgejO41
i/Xw7Gdjx/GHtu+mcqj6MzoFO1LI+m/TzdL+aVzei9QHWWdl8yLVhYqFCuNSSxyV
UFHZC7kCqhOo0jmHr2VtjfHLjYLUV2EMZgcXPURA94A4q3xVze0Up4cz3UdAkaDS
/QTIsqaFd/+OD8Z9wPL7zIyw7fhhUun/uAarEKEjsxPJYyt2c6NMcJPrx6wgTHXU
X1IPakIoB5UznHH/SmgJCtxQy8fRF0rRlowX8uH4AWc2lSyCmG+qIlRmzj/TnK74
BDlNR846DuKxDMF2MqjDN4lY5FxH6i2589bkRkBchZr0pCzG9U7EUWw=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:27:17 2025 by rpki-client