Route Origin Authorization
$ rpki-client -vvf rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3139342e3132372e3232392e302f32342d3234203d3e20313531343634.roa
File: 3139342e3132372e3232392e302f32342d3234203d3e20313531343634.roa (raw, json)
Hash identifier: ptA8zh1keOHKQ+AEeS2Hfc2K+6B+PGjErQygT931+3k=
Subject key identifier: 44:47:6A:0E:C7:09:FD:FB:08:86:55:EC:AD:1A:2A:37:CD:D9:E1:D1
Certificate issuer: /CN=3cdec27384aade5ca0809fd6f16d2bca18beb659
Certificate serial: 0E02A00DC83CE962CAAE971D9A5048C36E2616CD
Authority key identifier: 3C:DE:C2:73:84:AA:DE:5C:A0:80:9F:D6:F1:6D:2B:CA:18:BE:B6:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer
Subject info access: rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3139342e3132372e3232392e302f32342d3234203d3e20313531343634.roa
Signing time: Wed 14 Aug 2024 18:48:27 +0000
ROA not before: Wed 14 Aug 2024 18:43:27 +0000
ROA not after: Wed 13 Aug 2025 18:48:27 +0000
asID: 151464
IP address blocks: 194.127.229.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:02:a0:0d:c8:3c:e9:62:ca:ae:97:1d:9a:50:48:c3:6e:26:16:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdec27384aade5ca0809fd6f16d2bca18beb659
Validity
Not Before: Aug 14 18:43:27 2024 GMT
Not After : Aug 13 18:48:27 2025 GMT
Subject: CN=44476A0EC709FDFB088655ECAD1A2A37CDD9E1D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:75:b4:ba:4e:f2:89:0c:db:3b:bc:2f:c5:1a:
67:56:6a:17:36:ff:d8:f1:87:a0:98:a9:7e:36:60:
f2:dd:1c:d6:c9:b1:c6:4b:2c:e0:e7:97:b9:4a:9f:
17:b8:68:54:78:ee:b5:94:48:18:28:b4:2c:fe:6e:
95:cf:b1:0d:c9:74:06:52:6f:a0:ea:24:17:58:f4:
70:c4:50:6c:a3:49:11:19:3e:3c:0e:c6:6a:53:ea:
31:52:c4:55:ec:14:1c:61:aa:b1:b2:82:6f:fd:81:
59:73:ad:92:3e:76:f7:56:22:7e:6c:f5:af:70:02:
3c:69:73:70:f3:f6:a2:0e:2f:0e:8f:d9:b3:40:1b:
38:5e:2e:61:bc:cf:72:4d:28:ce:3f:91:ef:10:3f:
30:c5:ce:b6:4f:d5:f8:7f:c9:6b:cd:c5:dd:a7:16:
5e:71:09:a9:ce:66:8c:ed:91:22:34:14:05:b2:10:
1e:e1:0d:a8:e2:51:a9:52:6f:ea:09:4a:12:7e:64:
95:3b:74:32:64:73:67:81:90:29:77:dd:19:77:43:
bb:cf:7f:c3:f8:4b:ba:5f:d9:1d:80:b9:5c:02:ab:
67:47:2d:35:b1:22:d1:02:14:f6:28:21:f6:3b:84:
77:6f:3a:df:ca:d4:9c:a5:0e:ff:4c:90:2a:7f:00:
12:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:47:6A:0E:C7:09:FD:FB:08:86:55:EC:AD:1A:2A:37:CD:D9:E1:D1
X509v3 Authority Key Identifier:
keyid:3C:DE:C2:73:84:AA:DE:5C:A0:80:9F:D6:F1:6D:2B:CA:18:BE:B6:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3CDEC27384AADE5CA0809FD6F16D2BCA18BEB659.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3139342e3132372e3232392e302f32342d3234203d3e20313531343634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.229.0/24
Signature Algorithm: sha256WithRSAEncryption
36:aa:b1:6c:1e:12:91:0d:6b:30:40:af:85:32:a9:f6:ad:5f:
af:61:bf:aa:66:84:92:65:5c:3f:d3:21:a5:9e:4a:c2:ba:8e:
5d:f8:bb:09:6d:b4:5b:ea:d0:05:e0:38:73:23:b0:2f:c1:af:
32:6d:03:1a:27:b4:da:fd:4a:ac:44:74:a5:50:c2:b3:93:07:
4f:f8:be:0f:4d:15:c9:2d:4e:b3:52:c5:65:32:40:c7:85:9d:
9b:00:e3:00:e2:64:96:34:87:10:ca:8f:ba:db:9c:00:d4:bb:
82:d9:46:65:da:b5:47:27:7c:88:ea:7e:13:6f:ce:6d:77:bd:
92:18:94:03:08:9f:5c:1b:bd:48:d3:c0:c2:03:79:67:4b:06:
57:b1:0f:ad:96:10:ad:5e:26:e8:45:ad:b8:11:d8:f9:ed:fb:
5b:19:0d:bd:60:69:2e:97:6c:a0:c5:21:8b:88:93:2f:e2:d6:
ce:31:41:57:22:db:b1:93:16:58:15:ee:b3:cd:c5:df:0b:d2:
65:f1:94:c4:38:48:26:1c:c2:77:b7:0a:93:03:3f:02:50:be:
0a:a7:3b:13:ec:ce:24:90:b7:ad:d4:07:d5:bd:45:b3:86:bd:
df:9d:44:e8:18:96:b9:84:bc:3d:b0:d8:80:47:95:77:3c:04:
50:07:31:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 20 05:45:28 2024 by rpki-client on console-fra.rpki-client.org