Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/zlPUlj3SQ4zkacHQzLpiO_iNv88.roa
File: zlPUlj3SQ4zkacHQzLpiO_iNv88.roa (raw, json)
Hash identifier: cdlZ1ZujKgXahc5XXp5MFEkVGAmjercxrQL97FVmZl8=
Subject key identifier: CE:53:D4:96:3D:D2:43:8C:E4:69:C1:D0:CC:BA:62:3B:F8:8D:BF:CF
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 41F7
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/zlPUlj3SQ4zkacHQzLpiO_iNv88.roa
Signing time: Tue 16 Apr 2024 12:52:58 +0000
ROA not before: Tue 16 Apr 2024 12:52:58 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 36.0.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16887 (0x41f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 16 12:52:58 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=CE53D4963DD2438CE469C1D0CCBA623BF88DBFCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f2:8b:05:2a:7d:f5:2b:d3:e5:11:0b:3b:e5:
f0:49:33:24:95:58:92:9c:43:55:1b:59:88:0f:b1:
4a:b5:ba:70:f4:94:ae:96:03:ed:56:7d:e8:82:fa:
35:76:27:fb:13:84:85:30:ab:99:06:95:5c:4a:d5:
fe:37:6b:72:31:ef:cd:6b:3a:12:6a:e5:b1:3a:a1:
fa:38:95:cf:2e:7f:71:a7:a4:91:a0:f9:a8:5f:5e:
a6:5b:2c:21:8d:9a:0a:62:be:73:38:71:f9:dd:95:
3b:c8:39:ae:1c:f5:23:19:eb:99:87:b0:74:75:9c:
49:9b:26:10:54:c2:1f:42:3e:37:e4:59:49:2c:ca:
62:a9:e5:02:20:48:fe:85:ec:97:a1:82:14:d2:0e:
5b:dd:51:17:78:4a:1c:10:a4:e6:be:8b:d6:36:86:
69:ba:44:36:db:b3:b7:df:0f:91:74:05:4c:e5:c7:
6b:5d:8c:d4:5b:80:a1:02:8a:d6:0c:a4:30:41:83:
08:81:53:79:42:f2:cf:db:c1:ef:43:56:26:bb:02:
7a:45:99:d2:0b:9f:2b:0b:9e:9e:0d:2a:fd:45:e5:
59:fe:39:74:85:4c:5f:8a:f7:ba:03:de:61:e9:21:
45:03:07:46:0e:ef:fb:4f:31:bd:69:29:52:2f:d7:
d7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:53:D4:96:3D:D2:43:8C:E4:69:C1:D0:CC:BA:62:3B:F8:8D:BF:CF
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/zlPUlj3SQ4zkacHQzLpiO_iNv88.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
7c:5f:44:e0:e0:e6:54:2d:53:a5:a5:ca:8b:a0:bb:e2:68:1e:
5c:ee:77:75:21:5a:88:db:0e:36:a0:fc:23:65:e1:bc:89:54:
2b:00:08:e4:b5:22:67:ac:25:4e:3b:72:29:5e:67:37:ad:c9:
6d:bb:18:f9:2b:46:f1:5e:93:90:9a:f4:f7:55:e9:66:6f:36:
87:8e:a4:21:9b:42:e2:6c:62:58:3e:88:c3:85:c4:27:c9:e0:
0c:67:2a:ac:49:da:e9:21:d9:6e:f7:74:83:4b:1a:bf:99:01:
b9:8d:fc:a1:54:16:b0:e9:f8:b3:39:3a:50:a3:3f:d1:de:a5:
d2:58:3f:92:a6:11:81:59:02:bd:96:79:57:a4:a9:52:32:5a:
90:75:5a:25:51:ea:27:4f:1b:51:cb:50:d3:3a:e4:d3:a6:04:
98:6e:08:1b:9a:82:78:c1:5d:c7:b7:b9:cc:96:53:19:7c:3c:
b1:f4:d1:82:e6:79:15:16:c7:35:9b:8f:c4:48:05:ae:96:7b:
b4:b0:e2:41:e4:ec:ee:eb:2a:c7:d5:34:d3:1c:5b:b1:4c:25:
e9:cf:bd:a0:f0:da:9a:98:10:c7:8b:2e:51:4e:86:1c:46:02:
a9:30:c2:71:15:d0:a0:52:75:7f:cf:53:98:15:a9:1b:29:7e:
3c:93:0d:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 19:57:01 2024 by rpki-client on console.sobornost.net