Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/gjBcZDI8yIbfC40J0gGT3Q_9rfk.roa
File: gjBcZDI8yIbfC40J0gGT3Q_9rfk.roa (raw, json)
Hash identifier: 5VsM/+U5FtYZdjskVB2pQFz5ze/eoPFibM+O+hymJoQ=
Subject key identifier: 82:30:5C:64:32:3C:C8:86:DF:0B:8D:09:D2:01:93:DD:0F:FD:AD:F9
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 5747
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/gjBcZDI8yIbfC40J0gGT3Q_9rfk.roa
Signing time: Tue 14 May 2024 22:54:11 +0000
ROA not before: Tue 14 May 2024 22:54:11 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22343 (0x5747)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 14 22:54:11 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=82305C64323CC886DF0B8D09D20193DD0FFDADF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ae:48:74:79:a4:cc:78:8a:91:5a:30:f0:10:
1c:da:de:ca:72:c2:cd:8d:e3:a3:0c:0a:ee:d5:4f:
1d:82:2d:69:76:e7:dd:cb:d0:40:e7:51:01:ec:b3:
b3:2c:0b:44:75:64:a7:54:25:6d:5b:40:1f:ec:f7:
4a:49:6a:f0:73:ca:cc:da:01:03:91:27:06:4c:64:
6e:b7:24:70:fa:e7:7e:fb:53:34:a9:9d:ea:2d:3d:
1a:59:3c:49:a5:45:b3:72:3d:d5:f8:78:86:1d:08:
97:50:8f:cf:72:0c:f4:23:f1:1b:08:f7:c5:8d:de:
b8:52:0b:73:bf:23:ac:13:eb:7e:be:55:6f:26:5e:
62:dd:b7:48:3a:a0:a2:a9:00:eb:f6:1c:c4:3c:30:
85:e8:ae:c6:3c:f9:57:d8:5e:8e:d2:11:fd:c4:77:
4d:4d:93:20:64:20:f6:9d:4e:0c:f4:ae:bf:c1:a9:
09:2d:bd:15:d3:51:aa:f6:06:d0:f4:8a:92:76:59:
8d:e0:10:14:43:81:65:7e:d4:b9:c8:2b:b8:c1:f9:
24:d5:63:bc:e9:1c:29:2a:c4:6b:83:45:a2:f8:d4:
ec:43:c1:d0:94:1d:ae:83:c4:48:e2:c5:c8:6c:bf:
ef:f5:88:81:9b:a5:f4:6f:fb:d3:0e:e0:70:65:11:
4a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:30:5C:64:32:3C:C8:86:DF:0B:8D:09:D2:01:93:DD:0F:FD:AD:F9
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/gjBcZDI8yIbfC40J0gGT3Q_9rfk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
31:d3:94:6a:0e:6d:9f:40:3c:c7:a9:48:c4:67:35:df:cb:f7:
95:75:58:fd:55:52:31:c5:8e:ac:6c:c2:fd:84:a1:88:6a:fb:
de:71:bd:a8:33:e0:22:e3:5c:7b:58:f7:03:9b:82:cb:93:60:
01:39:30:bb:f0:d2:c5:eb:68:77:cf:ca:a2:8e:0e:f5:6a:c7:
88:3b:78:d4:d3:a2:44:68:97:a9:7a:a9:27:c2:61:5c:a2:32:
9e:2c:38:db:9a:aa:cc:61:cd:f1:9e:d2:07:fe:18:12:2b:c4:
23:6d:d1:93:c8:ac:7e:a6:fa:5b:2b:d5:d0:6a:bc:76:9a:39:
0a:27:95:24:e4:5f:5c:ed:a8:85:23:fc:12:f8:e5:d7:53:f0:
05:b8:65:05:c2:a3:3b:2b:d5:a7:98:49:c6:df:e5:a5:a0:81:
af:59:86:a3:d3:77:d5:4e:50:53:8b:3a:6c:ec:48:ea:bf:e1:
bd:de:1a:d3:b2:e5:db:38:25:c6:84:6c:57:32:e4:cf:2c:50:
83:ad:17:09:f0:11:9f:62:68:36:32:52:dd:cf:64:fc:6d:00:
c8:39:10:fd:17:1d:53:5f:6c:d8:69:35:f9:9a:54:37:3f:3e:
08:33:cd:08:71:9e:9e:30:ef:96:bc:14:54:80:89:e0:37:64:
11:d7:39:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 20:46:17 2025 by rpki-client