Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/MCBkVpeIJ__6gPVKWhGOK4FF9Bc.roa
File: MCBkVpeIJ__6gPVKWhGOK4FF9Bc.roa (raw, json)
Hash identifier: yRho8hOFYpleucsUNtjDUp9L1xwrnlm3Zx+WMGwQUmY=
Subject key identifier: 30:20:64:56:97:88:27:FF:FA:80:F5:4A:5A:11:8E:2B:81:45:F4:17
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3C33
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/MCBkVpeIJ__6gPVKWhGOK4FF9Bc.roa
Signing time: Mon 08 Apr 2024 20:22:34 +0000
ROA not before: Mon 08 Apr 2024 20:22:34 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15411 (0x3c33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 8 20:22:34 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=30206456978827FFFA80F54A5A118E2B8145F417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:83:4a:2d:5c:36:e6:b4:4c:02:40:73:cb:03:
ac:8b:c0:de:57:29:59:4c:5f:06:b1:7c:d7:db:eb:
84:cf:c5:59:73:4b:c6:49:c0:f1:25:4e:94:3d:d7:
d3:62:80:3e:58:4b:a0:a1:eb:23:9a:d2:67:10:1c:
ca:15:d2:52:40:a7:cb:99:d1:d7:39:95:d5:71:f1:
c8:45:fb:9d:21:65:ad:b5:52:00:d8:8c:4b:9e:d9:
cd:11:f8:b1:a3:51:96:b6:e2:4c:3c:76:f6:e0:22:
43:d1:cd:05:ae:37:9e:a6:99:13:31:69:59:f2:53:
cf:28:1a:aa:6d:f9:13:62:48:2d:28:5e:b0:79:78:
f4:66:8c:7d:a5:f2:98:12:44:3f:3f:7d:ec:47:c3:
5f:e5:1f:88:0c:15:29:8d:f2:3e:3e:77:b6:ca:ec:
35:09:05:b8:68:6a:77:87:c4:c7:aa:1c:50:6a:86:
29:62:95:9d:bc:d7:46:3d:84:ab:42:fc:d2:99:fd:
ad:a0:9d:13:e2:c2:20:66:6f:62:d5:cb:7d:df:b5:
a9:dc:55:0c:8d:0d:bf:c6:e5:ed:a8:74:25:2f:f0:
e9:38:a5:7b:b8:79:10:f0:bc:e1:e0:9e:71:50:47:
f5:29:95:76:e3:79:14:62:19:7a:16:09:65:4e:7d:
81:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:20:64:56:97:88:27:FF:FA:80:F5:4A:5A:11:8E:2B:81:45:F4:17
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/MCBkVpeIJ__6gPVKWhGOK4FF9Bc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
71:ed:a3:9f:32:6e:44:26:b7:74:de:06:54:31:73:5b:6b:c4:
53:f9:d9:bb:e6:2c:a2:2d:f9:14:0b:f3:0d:cb:6e:91:9a:a2:
0e:65:e5:0e:3e:2b:f1:66:d7:af:d8:6f:64:97:5b:b6:f9:60:
3a:e5:e3:75:38:d8:17:93:d1:3f:67:9c:96:14:91:2a:51:0e:
ba:b7:74:f6:fe:e1:4d:16:dc:f6:f4:26:41:fb:7d:69:e5:0c:
eb:85:e1:be:10:fb:6d:33:7c:42:8c:a2:81:25:d0:9b:e6:cc:
c8:b1:b4:8d:c5:9b:34:f7:5f:03:4b:06:56:8b:07:ef:18:c0:
31:ef:80:f8:e8:ed:df:49:ad:48:0b:be:1e:0a:cd:17:35:c7:
b6:dc:2c:ca:07:2c:e0:6f:26:85:27:e3:2c:ad:54:1b:a6:02:
30:c4:10:25:96:b7:c4:ba:1e:7c:1e:85:3a:b2:0d:c5:e7:78:
19:88:8e:46:ef:b0:63:30:ed:2d:3e:bc:6b:df:6a:14:e5:26:
59:1f:fb:54:d5:61:c0:df:3c:70:ac:90:f2:22:63:b9:c1:0f:
e8:dc:38:eb:97:b2:b4:99:51:54:38:d9:6e:3d:92:f5:cf:27:
50:74:28:f3:1a:ac:36:43:55:32:79:c7:b7:68:66:ad:49:09:
b1:74:16:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 9 06:31:46 2024 by rpki-client on console.sobornost.net