Route Origin Authorization
$ rpki-client -vvf rsync.rpki.tianhai.link/repo/TianhaiRpki/3/323430313a32303a3a2f33322d3430203d3e2034383432.roa
File: 323430313a32303a3a2f33322d3430203d3e2034383432.roa (raw, json)
Hash identifier: w/GWWEWlzxWeQV7jbdIZxJ6YYRkL5l/+Mu/dma84kd8=
Subject key identifier: F2:F6:42:F0:EB:B8:CD:12:D6:F7:9F:9D:85:06:1A:0E:9E:25:CF:98
Certificate issuer: /CN=A91F56750000/serialNumber=459D2B834A3BA08C0AA67C6E578146A8B1FE2C2F
Certificate serial: 5F14C319F8451A9E345CC1E2ABA169BE70CBD4B1
Authority key identifier: 45:9D:2B:83:4A:3B:A0:8C:0A:A6:7C:6E:57:81:46:A8:B1:FE:2C:2F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RZ0rg0o7oIwKpnxuV4FGqLH-LC8.cer
Subject info access: rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/3/323430313a32303a3a2f33322d3430203d3e2034383432.roa
Signing time: Fri 07 Jun 2024 03:48:10 +0000
ROA not before: Fri 07 Jun 2024 03:43:10 +0000
ROA not after: Fri 06 Jun 2025 03:48:10 +0000
asID: 4842
IP address blocks: 2401:20::/32 maxlen: 40
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:14:c3:19:f8:45:1a:9e:34:5c:c1:e2:ab:a1:69:be:70:cb:d4:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F56750000/serialNumber=459D2B834A3BA08C0AA67C6E578146A8B1FE2C2F
Validity
Not Before: Jun 7 03:43:10 2024 GMT
Not After : Jun 6 03:48:10 2025 GMT
Subject: CN=F2F642F0EBB8CD12D6F79F9D85061A0E9E25CF98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:97:6a:a3:61:12:c3:46:43:2c:6c:1b:24:dc:
a0:6e:c2:07:ec:47:79:95:29:e1:1f:19:d5:62:65:
a7:45:3f:13:d8:bf:60:e2:23:19:c3:cb:0e:25:6a:
61:f7:47:31:97:cd:23:55:45:7b:a5:63:45:98:10:
b5:f3:72:af:28:a4:1e:7b:e8:10:61:34:b9:24:37:
e4:ed:4f:8f:03:d2:34:20:32:45:73:30:46:87:8b:
83:3e:dc:9b:69:88:8e:f8:51:00:8d:2e:42:13:16:
93:8d:6c:5e:c3:ba:74:da:90:2c:5c:16:dc:e7:96:
7f:1c:42:95:77:0f:36:a4:dc:b7:69:08:cf:2e:26:
35:f1:04:69:75:e5:80:d5:09:d9:5d:01:0b:6a:44:
79:9d:91:84:a9:6c:30:eb:74:09:40:9d:84:98:af:
22:a9:41:46:05:8e:d0:11:d8:a8:62:8f:79:33:37:
32:b9:e6:0e:e0:1e:c5:ed:fa:f1:a9:32:46:35:65:
2c:d9:dd:9b:1a:cb:71:98:31:b2:b4:e9:02:a9:4e:
06:47:81:72:37:af:36:66:8e:29:db:8f:8b:0e:d4:
a1:89:40:23:c5:4f:ae:b8:9f:68:06:84:09:45:21:
e4:b3:0d:53:6c:32:46:85:0d:26:7e:83:7a:43:69:
6d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:F6:42:F0:EB:B8:CD:12:D6:F7:9F:9D:85:06:1A:0E:9E:25:CF:98
X509v3 Authority Key Identifier:
keyid:45:9D:2B:83:4A:3B:A0:8C:0A:A6:7C:6E:57:81:46:A8:B1:FE:2C:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/3/459D2B834A3BA08C0AA67C6E578146A8B1FE2C2F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RZ0rg0o7oIwKpnxuV4FGqLH-LC8.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/3/323430313a32303a3a2f33322d3430203d3e2034383432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:20::/32
Signature Algorithm: sha256WithRSAEncryption
25:74:71:d8:4c:e0:17:73:77:fb:aa:d2:98:5e:a1:21:74:aa:
b9:bd:10:7b:6e:9b:77:bd:df:df:22:d4:9c:56:2d:51:79:d3:
ee:81:94:75:4f:2e:f3:a0:38:77:f2:f9:d8:81:a0:db:16:fb:
26:c2:d5:19:9b:b8:3d:3b:b4:76:15:f5:02:7f:a5:fb:28:bf:
ed:c7:46:72:11:ae:f3:1c:a1:0d:e4:98:29:08:c4:5d:b8:78:
3c:6d:85:62:06:96:f2:6c:1e:63:0c:ea:44:8a:5f:ea:de:fc:
54:c4:8b:b9:01:69:9c:36:d1:89:ef:79:0c:9f:78:e8:08:e8:
f6:96:3c:47:92:df:69:7c:50:66:20:ef:32:c1:ab:d2:c3:3e:
23:d4:55:b2:da:a9:20:1f:69:fe:cd:8f:0a:63:ec:ac:47:ea:
6a:6b:60:4a:e6:cd:4c:89:a1:4c:a6:3b:64:ec:1f:ea:0c:fa:
97:2c:7b:72:14:dd:33:e9:77:85:c3:6d:f3:72:c7:3e:1d:91:
ff:7d:ac:d3:c6:d3:a8:6a:6b:ef:0e:20:5a:a4:22:06:89:43:
17:1c:69:0b:05:3f:be:54:4a:93:6e:b4:55:64:04:17:e3:60:
6a:ac:30:c9:d6:ac:a6:b8:48:98:8b:91:74:e3:ea:e8:52:e0:
22:b6:ac:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 20 08:59:03 2024 by rpki-client on console-ams.rpki-client.org