Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/jvJtoVvrOlbmb2rh7Taj0YL0J58.roa
File: jvJtoVvrOlbmb2rh7Taj0YL0J58.roa (raw, json)
Hash identifier: nyQLP2At44iuc2ffQU9cyyfuwHduJBhKnYtP+7tQuI8=
Subject key identifier: 8E:F2:6D:A1:5B:EB:3A:56:E6:6F:6A:E1:ED:36:A3:D1:82:F4:27:9F
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4116
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/jvJtoVvrOlbmb2rh7Taj0YL0J58.roa
Signing time: Mon 15 Apr 2024 08:52:57 +0000
ROA not before: Mon 15 Apr 2024 08:52:57 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.236.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16662 (0x4116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 15 08:52:57 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=8EF26DA15BEB3A56E66F6AE1ED36A3D182F4279F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:aa:b8:b3:e6:7e:e2:a4:ec:8a:4f:f5:b0:9e:
ba:a0:01:35:66:84:5f:00:4d:6a:b5:2a:3f:7c:13:
e8:46:bf:70:e2:98:9b:0c:86:e9:0e:f2:d8:35:2b:
8a:e7:56:b7:49:bb:a7:14:b9:9d:0f:ea:2a:74:fc:
d0:3f:3d:63:ed:d1:ea:c0:33:ea:64:c4:b7:eb:e9:
b9:da:4f:dd:e3:ba:a8:f7:cd:86:cc:0d:f2:db:58:
39:47:3d:b7:19:52:d1:db:3a:34:c1:10:39:83:a2:
9f:16:c6:cd:be:2f:4d:fd:d0:8b:e4:d0:18:11:70:
43:ab:e4:ea:d5:6d:d0:bb:42:63:c1:bf:25:46:35:
76:6a:f8:ab:5d:7a:00:38:47:37:ce:c4:b5:52:df:
22:68:30:63:c1:c4:83:75:21:28:9f:48:8e:e2:9a:
b8:3e:00:3c:0f:a0:b2:50:0d:9d:b2:99:75:03:26:
bf:cd:f0:c6:3f:e4:89:8d:2f:40:c6:93:7c:3d:2c:
e4:09:bb:79:54:99:bd:67:f8:20:06:a5:23:13:34:
99:7e:05:9d:27:3e:17:72:85:69:9d:58:62:70:f5:
c5:8c:d9:0f:4e:eb:d1:31:52:15:09:23:2f:27:92:
33:76:da:18:04:72:de:b5:6a:d5:05:d6:28:71:92:
3c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F2:6D:A1:5B:EB:3A:56:E6:6F:6A:E1:ED:36:A3:D1:82:F4:27:9F
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/jvJtoVvrOlbmb2rh7Taj0YL0J58.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.236.0.0/16
Signature Algorithm: sha256WithRSAEncryption
01:99:c4:a4:5b:f7:2d:ce:85:d0:02:6d:64:c2:e1:18:1c:b9:
14:99:89:63:f0:d7:25:98:93:6d:9f:bc:32:51:b5:e7:b1:e5:
3d:c6:a6:76:63:d3:2b:6d:73:88:29:5d:07:8a:6b:75:69:be:
6c:50:01:3f:b1:e2:50:55:18:71:06:73:7d:3f:6e:13:16:4a:
71:d3:e0:cd:82:07:e2:4a:e7:73:c4:eb:64:20:2f:b2:2f:41:
a3:29:f6:93:3e:ca:c5:55:b4:32:8a:a2:ad:2b:5e:61:91:09:
c6:bf:c8:46:9f:44:38:70:8f:84:66:cb:ce:47:86:53:36:89:
00:5c:6e:15:be:3b:d5:b0:8d:b7:4a:84:7e:ab:37:9d:ee:e1:
43:5e:2d:8e:e1:0d:a3:3b:e0:29:dc:fd:3d:89:ca:ea:21:8d:
be:2a:20:76:07:1c:0d:9f:c2:9e:67:81:10:63:37:df:a3:c0:
c3:f3:cd:a4:28:74:db:c1:e1:ed:db:74:2b:02:3a:5c:9e:b4:
d6:4d:bc:8e:91:32:dd:37:95:b6:92:ba:ff:fb:c6:3a:7c:f6:
3d:9c:58:a9:c8:d2:b7:f1:52:78:77:d4:67:0e:a8:4e:92:b5:
34:d7:92:aa:59:3e:58:c0:32:df:48:db:fc:2e:4f:f4:7d:84:
b2:fa:f6:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:29:25 2024 by rpki-client on console.sobornost.net