Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/B3t8Qe0RG2ooAIXIBYu24eAh2gc.roa
File: B3t8Qe0RG2ooAIXIBYu24eAh2gc.roa (raw, json)
Hash identifier: Z7VTupAD+T3lYchUzbvcBie7xMr0QRKiyiunCT8cep0=
Subject key identifier: 07:7B:7C:41:ED:11:1B:6A:28:00:85:C8:05:8B:B6:E1:E0:21:DA:07
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 38BF
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/B3t8Qe0RG2ooAIXIBYu24eAh2gc.roa
Signing time: Thu 04 Apr 2024 05:52:24 +0000
ROA not before: Thu 04 Apr 2024 05:52:24 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14527 (0x38bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 4 05:52:24 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=077B7C41ED111B6A280085C8058BB6E1E021DA07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:51:11:e4:6c:54:75:cf:87:58:30:f2:d0:3d:
bd:8e:c9:cb:3a:25:3c:16:92:ec:30:67:f7:01:9b:
3d:04:33:37:c0:32:3a:98:d2:46:9a:89:06:7f:f5:
8f:fe:f6:fc:3a:26:38:a0:7a:57:8e:d1:7b:af:51:
df:1b:ae:f9:b7:4d:e4:64:5f:e3:68:44:85:65:2b:
92:8e:3d:c2:b1:cc:58:76:cf:e6:8b:e1:20:fe:2a:
96:ef:7b:a9:ef:5e:f3:1a:65:7b:dd:62:e7:f9:74:
6c:95:14:a4:1b:b6:02:ee:3c:63:4c:c5:44:16:c8:
c8:06:91:1b:a5:1f:31:97:d6:3d:a3:c2:4e:fb:4c:
fd:f0:ec:33:c8:41:38:80:a3:69:68:8e:de:de:43:
85:28:68:0f:74:39:ad:f4:7a:ad:cf:1f:69:de:f4:
39:b2:c0:f7:63:b0:9f:ac:0f:5e:a9:8d:a9:02:0a:
83:4a:43:cc:37:8a:e1:51:56:40:28:b9:f8:1c:73:
cf:e9:d9:0a:ed:25:67:63:8f:3c:d9:56:f8:77:69:
b7:81:f0:33:eb:ec:64:af:5c:61:86:3c:35:11:ff:
dd:e2:9f:c9:39:6b:41:1b:86:8a:9f:db:fc:03:ce:
1b:ab:90:b4:de:1c:37:6c:c9:74:ed:1c:6c:c7:63:
c4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:7B:7C:41:ED:11:1B:6A:28:00:85:C8:05:8B:B6:E1:E0:21:DA:07
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/B3t8Qe0RG2ooAIXIBYu24eAh2gc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
1f:1d:c7:13:98:a3:0f:37:22:4c:95:25:44:48:0b:7e:a6:dc:
6e:19:3c:05:9d:08:64:aa:4e:bc:d6:0e:32:cc:73:55:35:d2:
64:1f:26:e8:7c:99:bd:6d:af:62:0e:03:42:4e:46:98:94:85:
1e:9d:02:b9:52:a6:31:92:44:62:4d:63:d3:f2:4f:e2:1f:c3:
bb:f0:f5:9d:4e:c9:52:40:94:bd:82:dc:14:a4:b0:40:b7:67:
ff:25:9e:1f:0e:e3:eb:5a:5c:04:5b:03:08:20:88:f8:55:bb:
d1:a2:32:55:9a:08:6e:30:81:e1:2b:1e:b3:1a:a9:62:7b:d2:
f5:2a:e2:3f:12:38:de:24:47:95:a2:a4:61:c2:80:6a:05:de:
5f:f8:51:e1:1f:65:7c:4d:c4:01:77:c2:04:30:cc:db:85:87:
d8:69:d8:5c:11:15:31:d2:67:41:36:db:1e:0e:12:9f:67:10:
6f:08:6d:c4:20:1b:00:01:6a:61:1f:80:91:61:86:f5:67:68:
d6:f3:28:35:b2:0c:94:0f:db:2f:a9:2c:ba:d0:08:8e:a8:aa:
20:98:9a:80:c6:b6:23:58:2a:f6:0e:a6:cd:19:8a:45:d3:f2:
0b:a6:cd:0c:7e:15:cd:7c:92:3a:1e:9c:ad:8a:ab:68:f9:af:
5e:30:b9:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 4 12:50:09 2024 by rpki-client on console.sobornost.net