Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/d99gMMwMyoza1YUowOnbWAmnDNE.roa
File: d99gMMwMyoza1YUowOnbWAmnDNE.roa (raw, json)
Hash identifier: oSd/333o9krxfWScKfMZJ3hzJ+WfvqUP3tarAKVzDCc=
Subject key identifier: 77:DF:60:30:CC:0C:CA:8C:DA:D5:85:28:C0:E9:DB:58:09:A7:0C:D1
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3C53
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/d99gMMwMyoza1YUowOnbWAmnDNE.roa
Signing time: Tue 09 Apr 2024 00:23:02 +0000
ROA not before: Tue 09 Apr 2024 00:23:02 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15443 (0x3c53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 9 00:23:02 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=77DF6030CC0CCA8CDAD58528C0E9DB5809A70CD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f2:99:0a:06:28:b3:cb:09:1f:d7:7b:ff:2b:
8b:a3:da:69:fe:e2:40:a8:3a:2c:f1:73:42:bf:bc:
61:0a:ba:a5:13:70:13:fc:a9:df:c4:dd:4f:44:71:
09:5e:90:25:ed:b4:eb:c5:28:a3:54:20:a2:0f:7b:
b7:30:05:04:3a:c0:56:09:e5:46:86:f7:52:ad:7f:
ab:fc:40:0f:ba:d2:b1:15:c2:06:be:e4:1d:3e:77:
e8:ab:ae:ad:ba:31:9e:bd:89:b7:d5:73:aa:23:f8:
09:45:f6:aa:a7:71:3f:0e:2f:72:e9:b8:ea:32:a4:
d5:7c:79:8c:87:32:5c:1f:6d:6a:14:f9:5b:43:a5:
b0:3b:ce:d2:9e:63:ca:7b:d0:d5:06:7b:a6:8e:1f:
8d:6e:73:ef:8d:2f:1e:d7:67:7d:cc:f1:60:69:37:
e1:b6:f1:e2:e2:6e:4e:4e:97:c3:c0:52:b9:19:d9:
e3:58:2c:30:5c:03:df:8d:ea:3f:ae:19:d0:ca:d1:
63:88:8f:aa:e0:94:9b:39:30:00:ee:b2:7a:47:ae:
93:e7:fe:d0:77:32:c7:e1:4a:62:a6:d7:04:57:5a:
bc:7c:66:0c:94:9b:5f:38:c7:d8:af:c5:a7:c4:cd:
02:da:dd:87:3d:f9:2f:77:64:e2:e6:88:79:e4:95:
98:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DF:60:30:CC:0C:CA:8C:DA:D5:85:28:C0:E9:DB:58:09:A7:0C:D1
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/d99gMMwMyoza1YUowOnbWAmnDNE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
8a:f0:16:da:c2:28:8f:3c:d8:fd:3f:5b:b5:68:f0:21:fb:b2:
18:77:9b:31:ce:cd:74:d4:b5:fe:63:16:3f:2f:05:08:0c:93:
6f:b5:8e:f6:29:b1:50:66:fd:c7:ae:6c:2b:3d:cf:ca:1a:dc:
7b:43:db:37:fc:84:ca:2e:34:1d:91:d2:a9:ad:1a:6c:42:ec:
65:bc:29:98:c3:f8:70:2e:2e:e3:da:ea:85:f8:71:23:a6:9d:
de:27:f4:c1:7a:41:5d:10:82:fc:20:27:a6:87:98:d2:bf:a0:
cf:2b:48:61:d9:80:6b:d8:94:14:66:24:fe:29:7b:8f:fd:23:
dc:5a:5e:3a:46:9f:84:6e:f5:2f:17:5d:c4:4c:55:3c:d3:7f:
a2:df:0d:5c:c6:9f:55:f7:4b:f1:b6:cb:d2:22:de:3a:7c:b8:
c5:00:59:8a:24:27:1d:ab:a8:99:1d:ef:00:fb:ba:bf:3c:aa:
73:ec:e1:d6:24:2e:18:e1:49:83:bf:91:c8:8c:58:b5:8b:d2:
44:63:d7:7c:fd:ba:d3:cc:52:41:8f:e3:c6:a0:58:b6:c2:95:
5e:77:8f:91:33:3a:10:63:16:b4:de:d4:78:15:92:76:ac:2a:
4f:7b:7f:32:94:69:17:67:f1:27:80:51:dd:68:4e:a6:22:ab:
75:59:4a:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 21 05:37:25 2025 by rpki-client