Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/VU5iUg1UxQ7_rQwFiFDvMwuPYuk.roa
File: VU5iUg1UxQ7_rQwFiFDvMwuPYuk.roa (raw, json)
Hash identifier: CzLavXyWcx1HYVRIvf2i8t7LSYLBCuG1kOHmKj1bkcg=
Subject key identifier: 55:4E:62:52:0D:54:C5:0E:FF:AD:0C:05:88:50:EF:33:0B:8F:62:E9
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 4B3F
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/VU5iUg1UxQ7_rQwFiFDvMwuPYuk.roa
Signing time: Sun 28 Apr 2024 21:53:38 +0000
ROA not before: Sun 28 Apr 2024 21:53:38 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19263 (0x4b3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 28 21:53:38 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=554E62520D54C50EFFAD0C058850EF330B8F62E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:6e:08:82:dc:58:27:72:f1:0c:69:54:a7:1d:
25:27:8f:99:67:59:b0:40:bc:c4:96:6a:24:97:ef:
d7:fc:c8:ca:18:5c:39:03:27:b5:de:d7:42:10:d5:
93:64:be:29:49:95:64:db:56:4e:03:a9:d4:ac:0d:
6a:3c:3a:06:e7:f6:ca:85:78:fa:2c:36:e7:4f:e9:
91:c0:db:38:37:af:7c:a3:18:f0:58:2a:82:ac:27:
78:c6:7a:f6:7d:26:97:65:c1:a9:f1:e7:e9:a2:36:
c9:3a:1f:08:f6:19:81:42:14:9f:0f:61:06:d8:ca:
82:02:bc:4b:d7:41:7a:7e:2f:63:c3:59:d8:6b:95:
9b:c6:d6:51:54:95:62:16:de:34:e9:04:35:eb:08:
e7:71:41:c0:6e:35:6c:26:8b:44:90:02:63:0b:1d:
60:ab:41:0f:36:25:c4:3e:4e:c0:0c:28:18:b6:32:
d9:19:9a:a2:37:48:6b:c0:21:ba:f3:89:98:90:aa:
47:9d:2f:a6:e8:1f:96:d7:de:e6:d3:64:9a:ff:9b:
9e:dd:2e:38:98:c4:07:31:2e:4b:9b:fd:7a:6f:6c:
05:11:6b:dc:0a:94:0f:24:b2:9a:77:ee:51:29:70:
52:fe:c2:d9:96:6b:6b:34:75:b6:fd:98:c9:03:6b:
e8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:4E:62:52:0D:54:C5:0E:FF:AD:0C:05:88:50:EF:33:0B:8F:62:E9
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/VU5iUg1UxQ7_rQwFiFDvMwuPYuk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3f:ea:27:85:17:f6:e1:db:0e:a8:81:c7:c0:cd:2e:d2:c6:58:
46:b4:a5:6a:72:d5:e5:54:e6:1c:ad:e7:17:c5:98:65:cc:16:
83:46:2a:1a:a2:f3:0a:f7:0c:c9:0e:0a:cc:ac:9e:ef:55:bf:
17:65:42:43:63:5e:5f:58:5e:c2:6e:a1:f2:f1:74:39:9a:1a:
39:d8:81:26:f1:dc:f3:3b:1a:e9:26:2f:61:75:3e:28:8d:81:
69:b7:75:d8:0d:fa:fc:5b:40:5e:7d:20:46:3e:41:c7:89:14:
82:f5:bf:cf:79:ec:d9:56:95:bb:47:94:af:db:59:72:bf:de:
bd:21:92:d2:dd:5a:4e:dc:71:59:1c:9c:73:c9:45:a2:2c:3a:
dd:f4:cc:aa:ae:ae:e3:6e:37:6e:bb:32:97:b7:30:f5:c3:59:
f3:55:38:6f:cf:3e:e4:8f:05:11:93:f0:22:a4:e0:a5:37:64:
d2:96:d3:d9:49:f3:a0:e8:c0:fc:7a:2d:76:14:34:27:8f:48:
e1:94:1c:f2:c9:28:ed:ee:af:86:60:59:d3:7b:d1:3c:95:58:
e2:bd:3a:20:14:80:a6:8d:86:4e:f1:6d:8e:2a:8e:5f:b8:80:
a4:75:72:50:5e:16:0e:23:82:a2:f0:76:e0:cf:42:7f:46:46:
8c:de:af:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 06:28:42 2024 by rpki-client on console.sobornost.net