Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/T9jFVVDQ6bP0jZ8Paeuwsll6uMU.roa
File: T9jFVVDQ6bP0jZ8Paeuwsll6uMU.roa (raw, json)
Hash identifier: tJNp8hsj/t+B0PjiWiEsjr50FchyoLv+PmRwJbFZ6co=
Subject key identifier: 4F:D8:C5:55:50:D0:E9:B3:F4:8D:9F:0F:69:EB:B0:B2:59:7A:B8:C5
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4D47
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/T9jFVVDQ6bP0jZ8Paeuwsll6uMU.roa
Signing time: Wed 01 May 2024 14:53:37 +0000
ROA not before: Wed 01 May 2024 14:53:37 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19783 (0x4d47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: May 1 14:53:37 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=4FD8C55550D0E9B3F48D9F0F69EBB0B2597AB8C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6f:a2:9c:9c:bd:a1:6c:da:97:f8:47:b6:7b:
f2:f1:17:57:91:5e:2a:d5:30:2e:ed:1f:47:0f:ec:
20:47:36:19:a7:d3:2d:a3:49:8a:89:9d:c1:d6:0c:
4f:82:0d:68:13:4f:e0:c2:30:84:da:b6:48:5e:95:
9c:73:21:1b:7b:a9:05:9f:d1:ce:90:9f:fd:ba:14:
4f:30:97:84:c6:e0:c2:7c:df:fe:0b:79:17:26:56:
f0:c3:52:97:aa:86:d3:9a:65:6f:83:ec:76:25:c6:
9b:10:8b:bf:d3:fa:d4:ad:21:16:22:1e:8b:b5:bb:
d0:da:ba:cd:3d:43:b1:18:37:57:7a:3c:01:af:44:
ff:4e:97:6c:17:4d:42:6e:ab:55:17:25:64:51:2d:
5a:6c:e5:2f:7c:29:36:c2:3d:55:02:e1:2b:c9:c7:
c6:20:30:53:f0:89:5b:ee:d0:88:af:58:21:c1:f4:
24:ef:79:19:f7:0d:c7:24:ff:af:25:60:d8:25:d0:
d2:c0:ed:16:ad:1e:30:9a:b5:86:78:1e:ef:33:18:
cf:fe:1f:68:5b:06:07:42:4f:b8:1b:33:62:22:90:
23:11:4c:79:87:b7:cf:5c:43:88:d9:42:a7:24:9a:
f3:d3:b0:d0:25:c1:ea:86:44:4f:08:a3:65:79:76:
d0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:D8:C5:55:50:D0:E9:B3:F4:8D:9F:0F:69:EB:B0:B2:59:7A:B8:C5
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/T9jFVVDQ6bP0jZ8Paeuwsll6uMU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
45:5b:70:a7:f0:7c:49:56:81:8c:d5:67:a6:f3:0d:04:b4:56:
19:e3:f4:08:df:4e:d0:de:5b:b3:86:61:b5:d6:99:53:54:60:
a4:f4:79:c0:a9:a6:36:a2:49:c0:34:ce:1a:ef:a5:0d:32:4b:
03:d2:b5:21:12:eb:89:f3:54:48:78:7a:05:98:5d:4c:82:43:
29:7d:e0:98:56:5c:4f:c8:0e:ad:73:ba:2d:a6:fc:b4:9b:fe:
59:ee:3d:b1:1a:76:13:e4:59:a3:fc:89:f1:57:0c:d0:3f:7b:
04:9d:91:51:a7:24:70:70:37:a0:a9:a8:81:d1:b8:da:0d:3e:
13:67:5b:06:79:60:0b:7e:30:84:90:b9:c2:2c:40:64:ea:7d:
ba:68:6e:9c:96:ba:5d:13:17:76:48:41:c2:34:25:f0:32:e8:
f6:1e:03:86:65:a9:64:d1:cd:3d:39:36:3e:a3:8a:3e:e8:77:
35:6f:66:40:62:f7:3c:76:61:ef:c4:8e:65:8f:01:e5:8b:a3:
4b:13:89:65:3e:06:97:f3:f2:3e:61:70:88:3a:1b:63:a6:8d:
70:9f:a7:45:45:0f:23:95:1e:b0:b6:70:8b:de:f0:03:ee:13:
fd:0b:6e:d8:a5:15:51:49:ae:09:e9:58:33:a1:3d:c7:5d:f1:
81:a5:dc:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 20:19:07 2024 by rpki-client on console.sobornost.net