Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/HP3CJ8jjn7aXC0HoZHVma6wGCEA.roa
File: HP3CJ8jjn7aXC0HoZHVma6wGCEA.roa (raw, json)
Hash identifier: nQjbFfiKbCGQpQSL59zgLOlyaqwDww9lntnq6Xszc1U=
Subject key identifier: 1C:FD:C2:27:C8:E3:9F:B6:97:0B:41:E8:64:75:66:6B:AC:06:08:40
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4E07
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/HP3CJ8jjn7aXC0HoZHVma6wGCEA.roa
Signing time: Thu 02 May 2024 14:53:43 +0000
ROA not before: Thu 02 May 2024 14:53:43 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19975 (0x4e07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 2 14:53:43 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=1CFDC227C8E39FB6970B41E86475666BAC060840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d5:79:47:42:b4:8a:57:d3:f5:ce:17:2f:df:
14:81:c7:d6:5d:14:e7:69:9e:5e:b8:d9:df:be:8a:
4f:08:46:b5:dd:0c:15:99:00:ed:99:42:40:bc:c9:
60:8e:52:94:f5:26:ef:8b:4c:e8:07:b5:ac:e3:e5:
08:63:de:55:e8:c2:73:08:0b:19:4b:59:42:52:04:
9f:01:10:7d:76:14:88:e9:ec:d0:52:30:d5:56:62:
9d:ae:fc:4a:16:15:0e:29:31:a9:b0:24:60:40:75:
6b:bd:41:12:61:c3:e5:c1:e9:8d:19:a3:3f:64:e1:
e7:e6:ac:24:ea:23:22:d8:9f:ed:ff:20:1f:a1:21:
7b:ec:76:f8:e7:f5:c0:b3:61:f0:a3:fe:06:41:74:
79:19:da:ad:da:27:84:e9:b7:5b:81:f5:1f:8e:28:
cc:bd:57:d4:d1:6f:e5:da:ac:b0:de:ec:3e:6c:1a:
b4:93:b1:0f:4c:ba:97:9b:a4:78:44:df:79:f8:14:
70:7c:fd:fc:70:63:64:60:ee:66:f5:8f:ad:94:48:
3d:43:7a:7d:67:3e:b5:f5:df:54:e5:af:dd:2a:13:
8d:66:01:57:8c:57:c3:ac:b5:cd:68:51:13:f5:de:
19:b6:2a:8c:fe:53:b6:9d:75:b6:4d:92:e6:41:e9:
2a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:FD:C2:27:C8:E3:9F:B6:97:0B:41:E8:64:75:66:6B:AC:06:08:40
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/HP3CJ8jjn7aXC0HoZHVma6wGCEA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
14:1e:ea:e2:a6:18:e4:cb:e7:e8:0b:10:3e:bc:52:ad:6b:97:
5c:8f:0d:ff:50:bd:d2:5e:fd:8c:41:7b:cd:ba:8f:9b:6b:03:
e5:28:76:28:08:60:39:5b:e4:71:46:89:f7:46:35:fe:ba:a0:
95:64:09:55:4c:50:ee:2b:94:90:d0:51:b7:0e:cb:ab:69:57:
ad:bf:70:dc:c6:af:5c:2b:b5:70:21:1b:12:8d:6b:42:35:7a:
a8:37:3b:d8:14:8e:d6:2f:87:74:de:8e:88:c1:ac:94:44:aa:
ba:4b:53:a4:33:0a:33:26:65:4c:23:30:1d:e0:26:84:16:bb:
4f:e5:64:50:8c:12:52:8c:eb:24:2c:92:eb:a4:da:b8:05:25:
a3:60:91:4d:67:ae:71:97:7e:43:1c:1e:97:28:b1:ef:82:2b:
55:62:02:ac:f6:e2:90:e2:1f:ff:65:ec:fa:d7:ee:71:99:12:
db:59:81:95:13:af:15:34:b2:ba:c3:f5:aa:9b:5b:f4:04:75:
38:08:87:c5:8c:2c:04:13:fa:ce:27:65:06:44:d7:26:e8:9e:
46:93:39:4b:94:5a:75:dc:9b:c2:19:d2:74:4a:af:45:4b:46:
16:0e:c3:5d:62:f3:91:0f:c1:5c:a0:81:13:47:a8:32:6e:5a:
de:a0:73:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 20:04:04 2024 by rpki-client on console.sobornost.net