Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/weBDiuYeQRyKTZl187khLLUY0LY.roa
File: weBDiuYeQRyKTZl187khLLUY0LY.roa (raw, json)
Hash identifier: X1/TfHhkyEMHOnL5lB5/buHK9u9QcBzu5z8FxyUMwig=
Subject key identifier: C1:E0:43:8A:E6:1E:41:1C:8A:4D:99:75:F3:B9:21:2C:B5:18:D0:B6
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3FEF
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/weBDiuYeQRyKTZl187khLLUY0LY.roa
Signing time: Sat 13 Apr 2024 19:52:53 +0000
ROA not before: Sat 13 Apr 2024 19:52:53 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16367 (0x3fef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 13 19:52:53 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=C1E0438AE61E411C8A4D9975F3B9212CB518D0B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:14:80:b1:c9:82:52:24:c3:c8:3c:fe:6e:9b:
89:f3:09:12:fd:eb:b8:9e:94:69:2b:9d:66:59:45:
09:00:8c:7f:57:d5:ba:30:d8:e7:70:45:be:8b:2e:
93:9f:5a:1c:05:4b:51:16:0a:cf:73:66:87:d3:ac:
7e:c4:54:57:02:3c:6f:54:81:17:94:25:7a:c9:67:
7c:25:e3:85:2d:12:9f:c3:78:ce:b9:2d:88:d1:cc:
2c:d1:e4:b9:d4:21:de:4f:bd:fd:68:df:d0:b6:17:
24:19:b2:e7:ff:eb:cc:d9:0f:3e:30:17:2c:45:55:
a1:15:0b:5e:61:67:9b:e4:3c:06:2f:f3:c1:37:c6:
c8:dd:76:0f:c6:29:80:74:ea:65:15:0b:e3:9c:69:
d7:54:6d:b8:21:aa:59:f0:ee:d8:e6:22:d2:d7:8f:
d2:ff:42:5c:70:ec:a0:80:23:d9:68:55:1c:85:8d:
28:e1:ee:4f:f7:0d:f4:e4:eb:fc:cb:1b:f5:fd:9d:
f9:0f:dc:91:ef:d4:97:e6:45:de:37:ba:f7:02:e8:
21:a8:4e:35:22:43:c1:e9:f2:7a:4a:da:8e:aa:d5:
ba:67:2c:f8:16:7c:67:01:15:70:00:c2:f3:b4:b8:
ed:0f:bd:36:32:53:a5:b0:da:f8:12:30:3e:1e:78:
d2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:E0:43:8A:E6:1E:41:1C:8A:4D:99:75:F3:B9:21:2C:B5:18:D0:B6
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/weBDiuYeQRyKTZl187khLLUY0LY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
b8:45:85:1f:f1:c8:d1:e5:59:07:c3:4c:9a:e2:3a:89:bf:00:
00:0e:d2:46:f2:81:a0:a7:9a:6a:60:e6:54:96:b5:85:11:87:
70:ac:0b:06:43:b9:82:86:88:fd:f9:b3:d5:c6:8e:a5:dc:d3:
50:62:ec:4b:59:4b:5b:40:35:b4:1c:00:c0:04:03:38:cb:0d:
b0:09:dc:cf:ab:01:0f:28:c4:eb:fe:53:53:27:62:cc:6d:13:
4f:b4:ca:fb:b2:76:73:a9:8c:7f:48:d3:36:4c:3a:00:b2:06:
11:fc:7a:e6:29:b7:55:0e:f2:95:eb:e4:7c:7b:ec:9d:05:b5:
01:2c:06:62:f0:f1:6a:df:a2:e9:81:da:64:a8:14:5b:52:27:
28:e4:3a:0f:b5:11:68:cb:46:e1:24:b5:ef:49:80:26:82:af:
40:4e:cc:b6:65:56:de:dd:7f:60:8e:2c:18:ef:c4:15:57:39:
05:b0:55:d4:17:f4:c2:f7:c3:43:3f:11:d1:03:52:cc:db:04:
3f:aa:70:89:6a:c2:66:64:4e:35:42:00:6b:f8:d3:b1:f5:7e:
07:72:49:56:ff:3e:fd:dd:4c:22:79:5d:4f:89:33:05:04:f2:
b5:3c:c9:08:43:a1:36:ff:c2:71:54:b1:9d:44:92:7e:79:d7:
dd:3e:f8:53
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICP+8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF
QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MTMx
OTUyNTNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEMxRTA0MzhBRTYxRTQx
MUM4QTREOTk3NUYzQjkyMTJDQjUxOEQwQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHFICxyYJSJMPIPP5um4nzCRL967ielGkrnWZZRQkAjH9X1bow
2OdwRb6LLpOfWhwFS1EWCs9zZofTrH7EVFcCPG9UgReUJXrJZ3wl44UtEp/DeM65
LYjRzCzR5LnUId5Pvf1o39C2FyQZsuf/68zZDz4wFyxFVaEVC15hZ5vkPAYv88E3
xsjddg/GKYB06mUVC+OcaddUbbghqlnw7tjmItLXj9L/Qlxw7KCAI9loVRyFjSjh
7k/3DfTk6/zLG/X9nfkP3JHv1JfmRd43uvcC6CGoTjUiQ8Hp8npK2o6q1bpnLPgW
fGcBFXAAwvO0uO0PvTYyU6Ww2vgSMD4eeNLTAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUweBDiuYeQRyKTZl187khLLUY0LYwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj
3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3
L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L3dlQkRpdVllUVJ5S1Ra
bDE4N2toTExVWTBMWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAYkAEAwDQYJKoZIhvcNAQELBQADggEBALhFhR/xyNHlWQfDTJriOom/AAAO0kby
gaCnmmpg5lSWtYURh3CsCwZDuYKGiP35s9XGjqXc01Bi7EtZS1tANbQcAMAEAzjL
DbAJ3M+rAQ8oxOv+U1MnYsxtE0+0yvuydnOpjH9I0zZMOgCyBhH8euYpt1UO8pXr
5Hx77J0FtQEsBmLw8WrfoumB2mSoFFtSJyjkOg+1EWjLRuEkte9JgCaCr0BOzLZl
Vt7df2COLBjvxBVXOQWwVdQX9ML3w0M/EdEDUszbBD+qcIlqwmZkTjVCAGv407H1
fgdySVb/Pv3dTCJ5XU+JMwUE8rU8yQhDoTb/wnFUsZ1Ekn55190++FM=
-----END CERTIFICATE-----
Generated at Sun Apr 14 01:27:52 2024 by rpki-client on console.sobornost.net