Route Origin Authorization
$ rpki-client -vvf rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3139342e3132372e3232392e302f32342d3234203d3e2034383432.roa
File: 3139342e3132372e3232392e302f32342d3234203d3e2034383432.roa (raw, json)
Hash identifier: RKKPO8UDpirqQpMIIyUMOfTFwfGY1E8Nc1c5LB1yPVg=
Subject key identifier: 32:06:39:D4:BC:CB:93:EF:8E:34:9A:E2:0E:53:73:7A:BA:EC:70:11
Certificate issuer: /CN=3cdec27384aade5ca0809fd6f16d2bca18beb659
Certificate serial: 437ADE9CF24693A3D9F1B3F435B86E2BF796303E
Authority key identifier: 3C:DE:C2:73:84:AA:DE:5C:A0:80:9F:D6:F1:6D:2B:CA:18:BE:B6:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer
Subject info access: rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3139342e3132372e3232392e302f32342d3234203d3e2034383432.roa
Signing time: Wed 14 Aug 2024 18:48:26 +0000
ROA not before: Wed 14 Aug 2024 18:43:26 +0000
ROA not after: Wed 13 Aug 2025 18:48:26 +0000
asID: 4842
IP address blocks: 194.127.229.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:7a:de:9c:f2:46:93:a3:d9:f1:b3:f4:35:b8:6e:2b:f7:96:30:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdec27384aade5ca0809fd6f16d2bca18beb659
Validity
Not Before: Aug 14 18:43:26 2024 GMT
Not After : Aug 13 18:48:26 2025 GMT
Subject: CN=320639D4BCCB93EF8E349AE20E53737ABAEC7011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b2:31:a9:70:26:8d:9a:6b:e0:cc:95:76:40:
bb:a7:83:21:a4:51:1b:5f:33:d4:86:23:ee:29:a4:
3b:af:f0:05:d2:0d:e7:bf:28:ff:60:be:f9:c6:dd:
bb:b9:9d:59:be:e6:07:35:f7:f6:d5:d6:57:92:65:
e0:b8:7b:74:57:c3:b7:f0:2a:a5:c1:44:73:3b:ba:
29:e3:25:b2:b2:12:d1:3f:e9:50:0a:c3:e8:26:43:
a9:8f:51:17:cd:4a:e0:44:bc:79:1b:bd:07:a8:f6:
fe:5a:e8:12:52:2b:14:f4:86:61:c4:89:05:36:92:
39:0e:24:e5:52:e4:5a:79:39:66:b0:d9:94:7c:4d:
84:79:97:96:35:f2:20:14:16:ed:6d:da:41:29:74:
7e:9b:f5:45:95:3b:09:ad:7b:e9:53:91:02:84:2d:
9d:90:2f:5c:9e:27:ad:d3:b6:43:df:14:ae:e2:81:
41:09:2e:8c:48:69:04:9c:77:b3:ad:c6:d2:53:4b:
00:5f:22:22:64:70:1b:00:d3:ce:46:12:5a:9a:47:
a5:94:bc:72:23:d3:0a:91:02:2c:44:d5:d3:5c:d5:
7c:8f:37:64:5a:ac:9c:fd:13:29:10:95:ea:22:62:
9a:79:b5:35:d8:85:b8:b3:de:89:5a:aa:09:2d:b8:
15:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:06:39:D4:BC:CB:93:EF:8E:34:9A:E2:0E:53:73:7A:BA:EC:70:11
X509v3 Authority Key Identifier:
keyid:3C:DE:C2:73:84:AA:DE:5C:A0:80:9F:D6:F1:6D:2B:CA:18:BE:B6:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3CDEC27384AADE5CA0809FD6F16D2BCA18BEB659.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3139342e3132372e3232392e302f32342d3234203d3e2034383432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.229.0/24
Signature Algorithm: sha256WithRSAEncryption
42:ce:61:dc:12:c8:da:76:2a:10:6f:dc:00:52:6a:9a:01:d6:
6e:b6:a8:9a:b9:e6:63:04:ab:46:e0:9b:05:89:6f:37:24:92:
83:49:27:0b:04:59:ff:db:b7:db:69:09:73:2c:c5:e6:fc:0c:
5f:09:6c:e3:df:4b:3d:c9:37:c4:57:6c:22:79:83:72:a9:31:
0f:d6:5a:84:f8:3e:78:71:fd:b1:aa:67:89:bf:cf:83:06:71:
ea:71:07:cb:0a:14:52:80:88:ab:98:b4:21:ae:7c:c8:cf:8d:
4a:26:6e:b0:c2:83:3b:b0:41:c4:e1:79:94:0e:ff:69:73:9d:
8f:20:fb:28:f7:21:5f:59:2c:43:71:48:27:ae:56:94:8d:9c:
3d:e2:ac:67:f5:7a:f2:93:18:4a:d5:d1:64:bf:47:0f:26:93:
68:4a:96:1a:ee:67:8a:4a:90:e6:7f:0e:f4:a2:49:29:04:dc:
b0:fb:6b:c3:9d:a3:e2:7b:8a:3a:a1:0c:26:18:44:6c:5b:44:
49:22:e6:ef:ff:99:89:14:94:21:4e:50:60:99:90:95:c1:e2:
d8:7a:40:e7:00:88:b1:c3:2b:24:7c:54:62:b7:09:c1:2e:c9:
1f:95:57:90:69:48:aa:14:7f:9d:f1:d2:04:53:2c:d8:25:7e:
59:30:0a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 20 05:15:01 2024 by rpki-client on console-ams.rpki-client.org