Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/tRxwgOhFSl8MkzI2LXHnnUZHXr0.roa
File: tRxwgOhFSl8MkzI2LXHnnUZHXr0.roa (raw, json)
Hash identifier: I83N9jcYs9ZjRFMXvsOa+HX834gjs3vSre2AlG8HrX4=
Subject key identifier: B5:1C:70:80:E8:45:4A:5F:0C:93:32:36:2D:71:E7:9D:46:47:5E:BD
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3D23
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/tRxwgOhFSl8MkzI2LXHnnUZHXr0.roa
Signing time: Wed 10 Apr 2024 02:22:40 +0000
ROA not before: Wed 10 Apr 2024 02:22:40 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15651 (0x3d23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 10 02:22:40 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=B51C7080E8454A5F0C9332362D71E79D46475EBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:02:12:aa:cd:80:ee:f0:e7:c9:18:a9:c2:26:
3f:32:5f:49:50:9d:9f:18:43:4e:8e:d3:56:eb:da:
ce:a1:a9:73:3d:ea:d7:c3:90:76:d8:81:b9:01:ac:
b6:79:ee:5b:59:23:65:25:e3:bb:e3:69:07:b4:98:
47:bc:94:b2:b7:25:00:60:59:ef:ce:4b:4b:95:5f:
11:f2:eb:dd:64:3f:cb:39:52:2a:d1:63:1f:b8:60:
26:1e:95:e3:56:75:83:17:79:7c:cf:f9:73:36:2a:
cb:61:54:cc:51:68:12:02:e9:1a:c9:22:78:4b:db:
cc:0f:d6:a8:d7:83:7b:1c:ae:17:94:c7:89:71:d6:
01:a0:93:9c:13:22:aa:c1:8f:7b:20:8d:71:7c:8b:
50:89:35:cd:39:47:3e:c5:fc:86:ce:8f:4e:e7:c9:
52:1d:65:bc:73:d0:8d:e8:db:af:49:da:a9:3c:ae:
36:aa:08:24:99:24:ad:fd:b8:13:37:6d:88:0c:06:
c9:b3:12:12:d6:68:20:c8:56:4e:ea:f0:aa:fa:7a:
03:17:65:9c:62:11:08:d4:17:c1:90:1b:96:d0:57:
2a:ef:56:01:06:55:1a:1a:1f:56:fc:b7:29:7d:05:
fe:68:a3:b3:7a:bd:b3:21:00:d7:44:5c:92:c5:fa:
0a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:1C:70:80:E8:45:4A:5F:0C:93:32:36:2D:71:E7:9D:46:47:5E:BD
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/tRxwgOhFSl8MkzI2LXHnnUZHXr0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
bc:e0:02:c3:2c:fa:91:e4:f9:5f:61:94:58:8f:ff:ec:0c:66:
82:af:a8:fa:29:34:0e:cb:41:be:04:0f:f7:f9:16:16:dd:f1:
7b:e6:85:84:b0:7b:03:0c:5d:91:ed:b5:59:83:c9:a6:c4:4d:
3c:2f:a4:43:c4:1d:fc:25:bf:e3:dd:db:3b:c3:a0:59:82:17:
a2:90:4e:34:19:6a:38:c0:d8:91:3c:4e:b9:07:67:9a:40:33:
9a:10:1e:15:8a:99:78:3e:f5:66:26:37:d4:2c:c4:6f:26:64:
f7:86:bd:ec:bb:35:d7:2c:4a:64:dd:20:50:15:f6:17:1a:65:
41:62:62:ca:d0:45:62:99:a7:0d:29:fe:38:ac:56:0a:2d:b5:
c3:48:e9:51:ab:26:40:52:a5:f9:c5:3d:6d:fd:f5:ea:40:2a:
e5:2d:26:0c:36:be:5e:ff:1c:b4:2f:4d:e5:80:a6:d7:f7:54:
7e:75:68:59:a4:55:41:c6:19:7b:2f:a4:86:10:97:e5:34:9e:
ea:99:02:9e:df:f4:25:b8:02:b1:9e:8a:c3:97:10:6e:4a:45:
68:74:e8:ee:3c:91:1b:8a:eb:b9:4b:63:9f:48:0e:ea:ff:d6:
dc:5c:8d:8f:81:33:89:a5:48:f6:9e:7b:1c:6e:3c:9b:24:e2:
ba:6b:8b:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 10 09:28:59 2024 by rpki-client on console.sobornost.net