Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/VuGTLZ_fXnnovdk1hIeLkBgZyCg.roa
File: VuGTLZ_fXnnovdk1hIeLkBgZyCg.roa (raw, json)
Hash identifier: 8mAiUOpIOCtzNNKHzogVjZejE1am30MqD0gwfOOGXdg=
Subject key identifier: 56:E1:93:2D:9F:DF:5E:79:E8:BD:D9:35:84:87:8B:90:18:19:C8:28
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 57F7
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/VuGTLZ_fXnnovdk1hIeLkBgZyCg.roa
Signing time: Wed 15 May 2024 20:54:14 +0000
ROA not before: Wed 15 May 2024 20:54:14 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22519 (0x57f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 15 20:54:14 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=56E1932D9FDF5E79E8BDD93584878B901819C828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5c:04:8a:22:47:06:0d:f3:d6:68:75:91:a1:
92:17:f1:38:f3:e3:37:8f:c8:a2:3f:78:f8:3b:31:
6f:f9:25:a2:39:b3:6c:88:9f:d1:b8:62:aa:31:c9:
49:63:ed:13:40:c7:b4:de:f0:03:29:56:77:d3:15:
d4:7b:af:87:5e:1f:b3:68:91:72:b1:4f:af:aa:c8:
85:93:cc:8d:d7:bf:ce:67:67:56:52:69:6c:63:38:
54:ae:16:15:9f:7f:94:73:df:7c:4c:89:92:0b:a1:
fa:96:8a:1b:ce:77:98:38:1c:af:8a:89:d8:f5:15:
6e:00:1d:54:1e:d0:46:fc:46:9c:59:8f:62:78:be:
f0:4e:e0:cf:3f:06:f4:88:0c:08:d6:b0:d7:c9:72:
65:f7:35:e6:83:a1:fc:b2:21:07:a3:a1:ce:a2:75:
23:f5:ca:00:61:1f:d1:3c:d2:2b:75:e3:60:a4:16:
9e:b1:cd:cb:87:bd:2e:49:61:7e:e3:ea:9a:f6:97:
9b:17:1f:14:06:84:01:b7:b5:30:3f:75:45:f4:61:
57:b7:23:0d:29:63:f5:38:d2:b8:26:ef:7e:81:cb:
76:71:12:bb:1d:98:e9:75:44:56:a1:00:d6:7d:57:
02:96:35:ce:c2:52:37:91:de:0d:de:6f:81:25:91:
0a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:E1:93:2D:9F:DF:5E:79:E8:BD:D9:35:84:87:8B:90:18:19:C8:28
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/VuGTLZ_fXnnovdk1hIeLkBgZyCg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3e:a5:b2:c6:55:39:18:90:c0:4d:6c:01:d2:5b:d8:63:c7:b7:
34:0f:1e:b8:b4:31:24:30:74:12:3e:aa:8a:6b:f6:d3:5c:78:
db:a4:10:2a:1d:44:7f:c9:e0:9f:d7:ba:e6:71:7f:0e:0a:40:
f1:c7:04:ce:ce:e0:38:40:46:e3:d3:b2:f5:4d:66:7e:ff:a1:
b4:e4:64:8d:50:9b:83:b3:66:c7:3c:aa:5b:af:07:1d:2b:e6:
a0:b3:95:06:a7:ee:dd:ba:28:3f:70:af:91:2e:25:fa:29:c4:
ab:37:dd:62:f9:dd:84:28:1a:98:21:a1:9c:6c:74:bd:26:93:
d7:8f:af:42:a6:a5:a0:d3:2f:a1:83:78:be:ec:50:5c:10:58:
85:6a:59:fa:74:ec:9c:f3:ee:41:5d:bb:0e:c8:43:f1:4b:13:
f4:96:6f:b6:f8:38:d1:13:58:12:50:b9:db:3f:ca:c3:b9:8d:
78:96:64:02:28:f6:85:6f:2a:ac:4a:18:b8:98:ea:2d:2f:8f:
2c:93:97:3c:77:28:c7:da:73:1d:2a:d2:1a:7c:17:79:22:b9:
fb:66:b4:90:85:42:c6:71:ad:41:67:39:ed:2f:c0:d7:2c:48:
af:84:9f:3f:ad:73:cd:a9:f1:fc:98:c6:74:d0:c7:6a:a7:27:
27:62:50:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 20:33:40 2025 by rpki-client