Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/1bNUeTzTAGNr4XZN4dNaezyWJjA.roa
File: 1bNUeTzTAGNr4XZN4dNaezyWJjA.roa (raw, json)
Hash identifier: VvCT2fIrKV8a5ZXQeFihVFycLUTIC+sNX42FY+VBOmU=
Subject key identifier: D5:B3:54:79:3C:D3:00:63:6B:E1:76:4D:E1:D3:5A:7B:3C:96:26:30
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 105A
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/1bNUeTzTAGNr4XZN4dNaezyWJjA.roa
Signing time: Wed 03 Apr 2024 13:52:43 +0000
ROA not before: Wed 03 Apr 2024 13:52:43 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4186 (0x105a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 3 13:52:43 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=D5B354793CD300636BE1764DE1D35A7B3C962630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:92:3e:49:13:cc:b4:a0:c1:1f:16:28:ac:a5:
4e:3a:5b:20:43:40:75:12:83:1e:07:88:5f:b5:2c:
9c:84:08:f8:a9:5a:f6:01:29:98:2f:1a:c0:4c:f4:
fd:f1:30:50:13:79:2e:11:ec:90:97:a9:28:06:8d:
fe:9b:cf:7e:bb:e5:c7:8d:1b:d5:bb:b2:07:7b:33:
17:72:ec:63:3c:e5:1a:6d:05:5f:7f:e8:e5:46:26:
b4:45:5c:ae:7a:4a:ee:4d:24:1c:60:b1:fe:38:d1:
19:40:e1:9f:74:ae:a1:ad:0e:43:6f:19:e1:a7:75:
4c:47:82:cd:ba:12:7b:67:db:cb:9a:51:88:3c:93:
30:8d:ab:96:eb:31:2f:78:f5:81:39:18:95:2b:31:
18:bc:83:e2:f5:23:34:6e:27:97:a4:e9:33:04:cb:
cf:f1:29:3b:30:73:4a:28:08:fd:e2:1b:3c:9e:b5:
23:37:8c:b4:a3:f6:0c:ee:ac:1f:7e:ab:bc:da:fc:
88:ee:84:1b:58:33:39:8f:76:c8:d8:ee:35:4d:78:
f1:a3:be:9c:34:93:59:69:cc:62:a7:33:9a:fc:79:
2a:6b:fd:43:b0:8f:b7:d0:d4:1a:34:dd:5a:31:b0:
bf:47:fd:65:f4:bb:1c:2b:af:c5:3b:2d:e9:f2:be:
8b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B3:54:79:3C:D3:00:63:6B:E1:76:4D:E1:D3:5A:7B:3C:96:26:30
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/1bNUeTzTAGNr4XZN4dNaezyWJjA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
50:07:17:6f:50:69:a9:21:0f:0e:5d:3f:57:61:f3:dd:1b:e0:
87:c5:10:01:a0:fa:d7:83:f4:28:f8:14:7c:89:45:7e:91:8a:
26:32:45:e1:59:3f:a2:30:18:cc:9a:0d:1e:28:7d:f1:78:f0:
7f:76:a0:4a:36:fa:e4:42:44:e0:fc:d5:9c:92:fb:d8:84:21:
fc:d2:0b:20:7a:43:40:c3:eb:4e:79:a9:f5:8c:3c:3e:f3:e2:
f2:97:33:1b:e2:b4:75:80:a5:97:b2:65:10:89:a0:8e:50:23:
77:10:85:4a:34:6a:1d:bf:ac:36:21:a6:55:29:c9:1e:3a:7c:
1c:b4:5f:2b:61:f8:fb:f9:0b:75:93:2c:d3:67:2c:36:b5:58:
42:02:fa:d7:72:2d:fc:8a:c9:2f:c0:be:7c:62:b0:b7:b8:05:
b0:7d:3a:25:fa:b7:12:37:7d:7d:9b:6d:8b:32:e2:ef:77:f0:
aa:df:6a:3c:2d:00:e8:1c:b4:b0:b4:e0:56:1f:1e:24:93:d7:
ec:c6:d8:df:1e:93:ed:e8:eb:cc:6f:61:8d:39:a4:d7:5e:c4:
4d:82:3e:c4:d1:c2:ee:cb:d4:a2:de:f2:1b:57:03:17:ed:70:
59:26:fc:67:ef:2f:3e:6e:f8:af:23:18:b9:9c:5d:05:e3:47:
72:a7:86:06
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEFowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MDMx
MzUyNDNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEQ1QjM1NDc5M0NEMzAw
NjM2QkUxNzY0REUxRDM1QTdCM0M5NjI2MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFkj5JE8y0oMEfFiispU46WyBDQHUSgx4HiF+1LJyECPipWvYB
KZgvGsBM9P3xMFATeS4R7JCXqSgGjf6bz3675ceNG9W7sgd7Mxdy7GM85RptBV9/
6OVGJrRFXK56Su5NJBxgsf440RlA4Z90rqGtDkNvGeGndUxHgs26Entn28uaUYg8
kzCNq5brMS949YE5GJUrMRi8g+L1IzRuJ5ek6TMEy8/xKTswc0ooCP3iGzyetSM3
jLSj9gzurB9+q7za/IjuhBtYMzmPdsjY7jVNePGjvpw0k1lpzGKnM5r8eSpr/UOw
j7fQ1Bo03VoxsL9H/WX0uxwrr8U7Lenyvot5AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU1bNUeTzTAGNr4XZN4dNaezyWJjAwHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzLzFiTlVlVHpUQUdOcjRY
Wk40ZE5hZXp5V0pqQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAUAcXb1BpqSEPDl0/V2Hz3Rvgh8UQAaD6
14P0KPgUfIlFfpGKJjJF4Vk/ojAYzJoNHih98Xjwf3agSjb65EJE4PzVnJL72IQh
/NILIHpDQMPrTnmp9Yw8PvPi8pczG+K0dYCll7JlEImgjlAjdxCFSjRqHb+sNiGm
VSnJHjp8HLRfK2H4+/kLdZMs02csNrVYQgL613It/IrJL8C+fGKwt7gFsH06Jfq3
Ejd9fZttizLi73fwqt9qPC0A6By0sLTgVh8eJJPX7MbY3x6T7ejrzG9hjTmk117E
TYI+xNHC7svUot7yG1cDF+1wWSb8Z+8vPm74ryMYuZxdBeNHcqeGBg==
-----END CERTIFICATE-----
Generated at Sun May 18 04:52:07 2025 by rpki-client