Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/4nI1gIGUfImPSmi6D1S_li3bO1E.roa
File: 4nI1gIGUfImPSmi6D1S_li3bO1E.roa (raw, json)
Hash identifier: 2nAfAaRcDhzS7vwuvZ8zhvtiWodMvotMN03455BNaaU=
Subject key identifier: E2:72:35:80:81:94:7C:89:8F:4A:68:BA:0F:54:BF:96:2D:DB:3B:51
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 0ECC
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/4nI1gIGUfImPSmi6D1S_li3bO1E.roa
Signing time: Sat 30 Mar 2024 10:22:37 +0000
ROA not before: Sat 30 Mar 2024 10:22:37 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3788 (0xecc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Mar 30 10:22:37 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E272358081947C898F4A68BA0F54BF962DDB3B51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3c:e2:30:83:c3:02:05:2d:8f:c6:7a:05:c2:
4b:b9:98:7e:77:e8:ef:50:11:2c:10:20:27:22:8d:
3e:1e:2c:f7:12:1f:d2:ae:d8:3d:f2:b6:35:0e:ea:
26:97:8e:eb:32:e9:f3:70:23:1a:e5:59:66:08:43:
0e:85:d8:8a:31:60:9f:f0:cb:ef:da:3a:85:bc:08:
c6:61:17:94:1c:ce:73:1a:c7:12:77:0f:7c:95:46:
3b:49:61:8e:1f:e7:91:e7:d4:1b:29:5d:09:af:34:
47:c2:1b:aa:0e:4c:81:75:f9:78:63:7c:db:18:a5:
80:66:e7:fe:2c:a3:74:65:77:8b:7e:4c:f0:89:6f:
0f:ce:68:2c:54:2f:b6:69:5e:93:a2:3b:f4:c6:6b:
ff:61:8f:25:c2:70:53:dd:e5:20:4d:00:c9:d0:4c:
0e:c4:67:88:c5:f8:f2:e2:5b:21:e6:cf:1e:a9:3c:
3b:03:6e:59:ef:0d:60:b1:35:58:d6:b9:87:8b:ef:
78:35:03:f3:fd:53:7e:1a:a2:43:81:a1:d5:ba:3f:
94:27:6c:fb:45:c0:0e:35:79:0e:71:7d:b9:bc:7c:
ed:1d:96:5b:10:24:e7:4b:40:eb:d1:62:7b:6b:ed:
dd:31:34:a4:65:94:a9:83:cc:f1:9d:2e:e1:b1:6f:
4f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:72:35:80:81:94:7C:89:8F:4A:68:BA:0F:54:BF:96:2D:DB:3B:51
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/4nI1gIGUfImPSmi6D1S_li3bO1E.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
81:66:d5:7c:59:a5:27:bc:e2:33:5a:a6:00:f8:56:4f:d9:f6:
32:38:be:cb:91:1a:6b:81:e8:25:a4:29:e9:3d:69:7c:b3:e2:
5d:be:eb:24:fc:00:e8:ff:71:65:24:67:ae:0b:49:f4:f3:c9:
9d:7a:20:6a:aa:9a:82:49:fe:d8:be:fc:31:27:bc:a1:89:db:
d0:68:a5:61:03:f6:62:eb:7e:66:7c:25:8e:33:77:20:ce:d9:
4a:3f:6f:72:08:55:04:21:5b:4a:83:31:92:3b:ce:a1:b4:76:
ad:1a:63:c6:c7:68:35:d8:16:bb:a9:e0:b7:a2:d0:44:ad:e6:
63:ef:f2:19:d9:e8:de:45:0b:c7:6d:45:4a:d1:e2:61:b3:47:
a4:68:fe:b3:87:7d:13:08:df:00:86:6c:dd:1d:dd:0c:d7:b4:
d8:f4:12:61:d3:62:7f:36:1c:4a:23:7b:4d:c6:4c:ac:50:36:
da:b8:15:24:95:ce:53:4a:b0:4e:54:a5:a3:d9:c1:91:44:42:
54:15:b3:4a:7d:55:05:d2:f3:e0:7b:ad:22:3a:d3:e6:d6:da:
de:70:36:db:06:77:20:6e:14:26:81:88:8e:b1:2e:30:9c:76:
d8:6b:c8:9e:a2:8d:2f:ca:8b:50:51:52:b3:e2:96:4a:3b:89:
3b:b2:c0:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 04:52:08 2025 by rpki-client