Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/GM0XDLIH9gpP30exZZN8lyFyvyc.roa
File: GM0XDLIH9gpP30exZZN8lyFyvyc.roa (raw, json)
Hash identifier: +qF9jt/G8QNUbsY/e500caoRfVHSijafw4K0uSpLZmk=
Subject key identifier: 18:CD:17:0C:B2:07:F6:0A:4F:DF:47:B1:65:93:7C:97:21:72:BF:27
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 39EF
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/GM0XDLIH9gpP30exZZN8lyFyvyc.roa
Signing time: Fri 05 Apr 2024 19:52:24 +0000
ROA not before: Fri 05 Apr 2024 19:52:24 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14831 (0x39ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 5 19:52:24 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=18CD170CB207F60A4FDF47B165937C972172BF27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:01:f5:1e:0d:85:5e:c6:1e:f2:f8:e9:44:c2:
07:bd:9e:44:91:15:37:69:40:b2:68:0e:17:87:66:
8d:06:ad:62:98:ce:a3:f5:91:a9:45:77:1f:0b:04:
8e:49:2d:8c:04:15:df:15:e6:77:08:14:29:04:30:
60:b5:ca:5f:aa:79:fe:da:5f:9f:a5:00:38:95:9c:
72:90:ab:f1:1f:81:2b:28:ca:f1:d5:8e:9d:f4:ad:
a7:9b:f7:de:b7:6f:45:f1:77:5a:5d:12:d1:e3:ba:
3c:7f:e4:cf:68:96:0f:72:e8:bf:5e:8c:cd:c5:71:
d7:3b:8c:2e:c2:5a:27:9f:85:12:98:f7:7a:61:3a:
b8:3e:1e:5d:c5:32:c9:ac:fb:5d:ab:5e:a3:27:98:
b1:90:b5:3e:6b:34:41:cf:3d:9b:82:4c:9d:0e:3e:
85:e9:bc:0a:fe:32:c5:71:82:15:5b:45:aa:f1:22:
29:b4:83:bb:d3:45:35:48:1e:fc:7c:49:40:55:ee:
41:c2:22:ae:45:f5:98:f6:aa:8c:c1:ef:d8:55:69:
ec:79:62:90:52:4e:74:03:fd:59:ba:8b:30:07:c4:
95:27:6d:fd:4d:04:38:4a:0f:7b:74:da:22:11:69:
85:fe:8b:a5:fd:a5:2a:b5:88:1c:57:76:73:5b:fe:
b7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:CD:17:0C:B2:07:F6:0A:4F:DF:47:B1:65:93:7C:97:21:72:BF:27
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/GM0XDLIH9gpP30exZZN8lyFyvyc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
5d:1e:b1:7f:4e:f9:49:91:9f:69:1c:e4:ec:3e:5b:3b:cc:d7:
55:b0:53:60:c3:bd:86:91:9a:1f:1e:3e:d9:7e:a5:c0:7a:72:
58:5a:05:a9:b7:09:4e:1e:4c:b4:f9:1e:31:85:c1:5e:e0:2b:
ab:9f:0d:90:2f:bd:cf:66:68:08:f5:6b:53:e8:29:9e:fd:76:
05:ab:fe:f9:fb:c8:bb:79:fb:04:d6:16:a6:1f:d2:78:a6:a1:
76:97:b4:de:c8:32:d1:88:37:65:58:8d:5c:a0:73:2e:6f:e6:
e7:65:90:26:fc:1d:b4:a2:ab:d7:bd:34:3f:2e:37:67:44:ee:
34:a3:4c:8a:96:e4:4d:5b:35:bf:57:e5:5f:b8:cd:77:b6:c0:
5b:69:ee:3c:42:71:fb:51:3b:1b:3b:1c:32:8f:60:f7:8b:c4:
c9:8a:6b:8a:fc:fb:da:c2:a1:75:ca:81:b8:16:01:ab:88:a7:
30:1f:47:b2:bc:c9:ce:5b:1d:64:1a:74:32:a8:4f:2a:f5:1f:
01:87:ba:50:1a:c8:e7:8e:14:27:0a:9a:4b:ba:1b:f8:be:3b:
72:40:ee:f7:a8:f5:45:b1:4f:d8:ea:bb:2a:59:d2:60:e6:00:
46:aa:2c:61:fd:a6:a7:25:4d:8c:fd:96:5d:78:e5:5d:15:d9:
68:99:43:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 06:04:28 2024 by rpki-client on console.sobornost.net