Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/z1SpFNfOg2cyTATgt1U3lTZbwvo.roa
File: z1SpFNfOg2cyTATgt1U3lTZbwvo.roa (raw, json)
Hash identifier: ahbjuFESGs16D597roNyo2KqTeFLNyVqXzdtSaOcALk=
Subject key identifier: CF:54:A9:14:D7:CE:83:67:32:4C:04:E0:B7:55:37:95:36:5B:C2:FA
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3BDF
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/z1SpFNfOg2cyTATgt1U3lTZbwvo.roa
Signing time: Mon 08 Apr 2024 09:53:04 +0000
ROA not before: Mon 08 Apr 2024 09:53:04 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15327 (0x3bdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 8 09:53:04 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=CF54A914D7CE8367324C04E0B7553795365BC2FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c2:ab:c1:0f:d9:72:41:50:a2:be:77:16:42:
cd:f0:26:ec:49:01:75:a4:e5:b3:5e:d4:1d:eb:07:
52:cd:dc:e5:0e:50:30:eb:16:cb:6c:2a:ec:43:9d:
aa:91:a7:f2:40:82:8c:d9:65:0c:e0:6e:a2:c7:8c:
a1:c0:d0:a2:fa:a2:38:cb:c0:3c:e7:0f:c6:ec:26:
99:0a:c1:18:d8:8f:22:df:86:cf:01:73:0d:63:2a:
3c:a5:46:6c:3f:73:93:d4:15:34:7b:be:9e:5c:ab:
e6:08:ca:f1:80:1b:bb:ae:cb:72:26:96:57:db:d7:
16:5e:83:2b:1a:38:6a:be:3b:fa:d3:1c:df:3b:2c:
9e:7d:b1:60:a7:22:b9:d2:7a:b7:96:99:45:a9:c3:
ff:56:69:4c:e7:c1:7d:6d:23:a0:29:00:a4:a8:a0:
c3:35:3e:97:14:b1:47:e2:9c:e0:94:51:f2:42:dc:
23:65:bd:4e:10:fd:d7:59:65:e5:31:04:5f:a1:9d:
c9:70:06:16:15:3a:4a:41:75:8b:0f:62:7f:36:92:
d1:e0:22:bd:1a:86:50:db:32:09:12:83:f8:a1:48:
8b:50:32:cb:83:94:10:4d:f3:b4:aa:0c:0c:78:e1:
39:2d:01:e3:8d:84:a2:43:67:36:f4:a5:2c:63:0c:
93:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:54:A9:14:D7:CE:83:67:32:4C:04:E0:B7:55:37:95:36:5B:C2:FA
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/z1SpFNfOg2cyTATgt1U3lTZbwvo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3b:1c:14:71:3b:9a:1d:97:87:a9:b4:08:46:fe:c4:2b:f3:c4:
dd:5e:c9:52:2f:6d:3e:4b:2f:35:17:f9:9f:bf:44:9f:0e:c9:
c5:80:6f:26:91:7f:f9:26:6c:0d:35:d2:d3:dd:ed:aa:54:ae:
dc:46:fa:82:f0:cf:59:23:8f:d5:3c:4f:09:6b:8e:27:e6:62:
76:2f:58:4b:c2:4b:db:06:83:7c:a7:ad:59:18:36:62:0d:4b:
20:e0:db:44:9e:b5:b3:4a:bd:d2:34:49:93:24:34:5e:e4:36:
c7:66:0c:07:02:60:e8:bf:62:b2:28:3f:ca:25:fc:8c:a9:e3:
63:e4:05:8a:5d:74:c8:02:34:75:51:f1:ed:f8:6d:26:35:7c:
f7:f5:cc:35:12:c6:a3:d3:6c:2f:af:23:c8:8e:98:71:a2:51:
b9:61:3c:61:3f:e8:f8:a3:29:65:86:d0:45:a3:bf:65:4e:11:
6d:6d:eb:99:cb:44:37:4b:77:67:95:97:dc:11:20:9e:82:c0:
e0:24:7f:29:fe:90:2e:72:48:ee:e7:ed:96:9e:64:95:f3:9d:
39:21:49:72:24:cc:f0:ad:2b:74:2c:6c:d2:8a:b1:45:3a:aa:
9f:a1:f6:06:26:58:ae:c3:fd:04:e7:38:38:a1:f6:5c:81:75:
4e:2e:ac:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 8 16:31:00 2024 by rpki-client on console.sobornost.net