Route Origin Authorization
$ rpki-client -vvf rsync.rpki.tianhai.link/repo/TianhaiRpki/0/326131333a313830313a3138303a3a2f34332d3438203d3e20313531343634.roa
File: 326131333a313830313a3138303a3a2f34332d3438203d3e20313531343634.roa (raw, json)
Hash identifier: kghmO1MItu7ETLt8/ETjEoas52eeGmwEP7VXy5Y5fGI=
Subject key identifier: 48:04:F9:5D:F9:E2:B4:D8:62:F3:2C:59:91:AC:40:05:00:CC:F0:64
Certificate issuer: /CN=3cdec27384aade5ca0809fd6f16d2bca18beb659
Certificate serial: 317E103A00DE1085046E8C663617DAF3876B77BF
Authority key identifier: 3C:DE:C2:73:84:AA:DE:5C:A0:80:9F:D6:F1:6D:2B:CA:18:BE:B6:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer
Subject info access: rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/326131333a313830313a3138303a3a2f34332d3438203d3e20313531343634.roa
Signing time: Sat 08 Jun 2024 12:48:13 +0000
ROA not before: Sat 08 Jun 2024 12:43:13 +0000
ROA not after: Sat 07 Jun 2025 12:48:13 +0000
asID: 151464
IP address blocks: 2a13:1801:180::/43 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:7e:10:3a:00:de:10:85:04:6e:8c:66:36:17:da:f3:87:6b:77:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdec27384aade5ca0809fd6f16d2bca18beb659
Validity
Not Before: Jun 8 12:43:13 2024 GMT
Not After : Jun 7 12:48:13 2025 GMT
Subject: CN=4804F95DF9E2B4D862F32C5991AC400500CCF064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:41:10:42:74:ef:cd:d9:dd:64:53:ec:0b:f8:
2f:e3:c4:ec:bc:a9:ab:aa:a2:eb:98:a6:89:c6:59:
a3:ff:a0:de:72:35:b0:cc:28:c1:d9:83:ae:9c:6e:
5f:c5:0c:03:c9:56:83:0e:5d:e6:d0:2d:93:4d:af:
93:8c:18:10:2a:1f:4c:12:28:9c:f5:1e:73:24:26:
0d:72:92:ca:4a:91:8b:c6:8f:ac:ac:a6:f8:c4:e2:
c3:34:7e:d1:ce:3f:4d:a1:cf:0f:49:06:5e:15:98:
b7:a8:0e:e7:be:f5:97:2a:ef:a6:46:71:72:eb:d2:
2d:99:4e:89:e5:ba:b9:e0:ad:32:24:6a:28:0e:fb:
05:5a:b1:a6:23:7f:c1:72:89:7c:78:10:d9:e4:f1:
3d:e0:79:e8:29:54:eb:38:0f:c2:4a:d3:39:55:ea:
0d:ed:9f:71:64:bb:d6:20:8d:41:39:1e:ea:fc:35:
4f:2d:56:7f:04:56:a7:bb:da:0c:ba:73:60:a4:4a:
41:58:0a:ad:74:74:cb:fa:d2:4a:fc:89:c4:da:48:
83:c0:80:f7:2b:13:98:ba:97:97:e9:f4:1d:78:5f:
d0:a1:25:4f:b1:f6:98:2e:a3:06:69:c7:9a:c8:8d:
5b:36:b0:4b:10:f1:14:13:d7:64:f0:2f:35:af:59:
e7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:04:F9:5D:F9:E2:B4:D8:62:F3:2C:59:91:AC:40:05:00:CC:F0:64
X509v3 Authority Key Identifier:
keyid:3C:DE:C2:73:84:AA:DE:5C:A0:80:9F:D6:F1:6D:2B:CA:18:BE:B6:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3CDEC27384AADE5CA0809FD6F16D2BCA18BEB659.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/326131333a313830313a3138303a3a2f34332d3438203d3e20313531343634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1801:180::/43
Signature Algorithm: sha256WithRSAEncryption
24:61:90:f9:1a:10:7d:c5:5e:b1:de:f5:d5:64:f2:ff:12:06:
46:6f:10:04:b2:68:79:ea:04:6e:37:25:03:d8:59:ef:66:92:
57:31:d3:e5:00:35:9d:21:b1:39:56:b5:be:31:f2:77:e7:89:
aa:00:60:53:51:f8:0e:26:5e:55:8a:19:6f:ab:b9:08:4d:94:
8d:7f:ba:be:d8:a2:f4:66:0c:65:70:ed:f0:19:f9:4d:6a:a1:
76:ab:53:73:c0:f8:9a:80:f5:d8:ed:b1:58:0e:26:8d:1e:2b:
d0:fe:8d:0c:b3:ae:26:68:8d:e4:6d:22:54:77:5c:93:8e:2e:
57:be:5b:b6:3e:67:79:fc:14:00:43:d2:db:c6:74:59:2f:a5:
e5:a7:6c:a4:65:c3:aa:d2:a9:72:4b:4c:dc:24:c1:83:37:e2:
9f:3d:aa:69:77:03:aa:ac:47:3c:05:42:07:2b:c0:fb:89:69:
da:c5:38:bb:a9:81:72:9d:5f:fe:5c:1f:d6:6f:70:21:2f:95:
01:7d:3c:83:ed:9e:4f:f0:c4:39:3a:de:d8:a8:78:e4:56:a1:
71:7b:7d:0a:a8:6a:b3:aa:92:73:02:e2:96:49:db:ea:bd:71:
9f:fc:0e:94:d1:90:15:a9:68:e3:90:0a:2a:e5:38:f0:bf:38:
a4:77:48:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 20 05:45:28 2024 by rpki-client on console-fra.rpki-client.org