Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/9L7YHfmd7WvoCsY_HPYY-w9HfNc.roa
File: 9L7YHfmd7WvoCsY_HPYY-w9HfNc.roa (raw, json)
Hash identifier: NFTWMGWqtj2X5wAPgojBb9yGY51S/q3miq3CeInwvCQ=
Subject key identifier: F4:BE:D8:1D:F9:9D:ED:6B:E8:0A:C6:3F:1C:F6:18:FB:0F:47:7C:D7
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 0F14
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/9L7YHfmd7WvoCsY_HPYY-w9HfNc.roa
Signing time: Sun 31 Mar 2024 04:22:33 +0000
ROA not before: Sun 31 Mar 2024 04:22:33 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3860 (0xf14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Mar 31 04:22:33 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F4BED81DF99DED6BE80AC63F1CF618FB0F477CD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:00:08:0c:2d:7e:ca:9d:82:11:e0:80:76:72:
2c:15:30:a8:de:41:38:91:04:ab:a4:ae:ce:44:e6:
ab:fa:fc:e2:38:31:79:4e:0e:05:2a:00:a2:dd:d1:
0b:6f:73:43:0c:4d:90:5b:9b:c9:f8:8f:15:e6:89:
69:29:8f:2b:4c:f3:dd:a8:3a:6e:d4:22:bc:7f:b6:
e2:db:83:e3:6c:c2:d9:51:08:f3:14:b8:04:84:55:
81:7f:1d:ea:85:0c:24:4e:24:8b:a5:fe:23:ce:98:
bb:07:fe:d3:3c:ed:fe:20:93:26:fc:5c:af:03:d0:
73:f4:15:9c:d6:76:eb:80:28:45:ec:e3:9e:60:91:
d2:e2:5b:f1:de:cd:12:ac:13:49:57:59:52:ff:ec:
ed:e2:86:ff:6f:ce:ee:ac:a0:f2:96:aa:8d:53:6a:
be:3c:29:64:dc:d2:c9:d5:f7:80:8b:74:d6:50:df:
fc:52:c6:34:04:82:a8:2a:15:31:9b:9e:c3:d5:cd:
2f:01:09:74:47:58:60:04:a7:3c:b8:cc:3f:e3:cb:
2b:c9:4f:13:7c:61:ec:1c:be:56:7d:0c:17:7c:c5:
77:87:92:eb:82:39:d7:41:26:00:76:d2:1c:ad:23:
da:91:47:63:6c:a3:cf:9e:f3:ce:01:ab:b0:62:6d:
b0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:BE:D8:1D:F9:9D:ED:6B:E8:0A:C6:3F:1C:F6:18:FB:0F:47:7C:D7
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/9L7YHfmd7WvoCsY_HPYY-w9HfNc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3e:b6:d6:3a:2e:27:69:b4:a7:2d:62:43:1b:7d:fe:27:10:74:
4a:57:cb:de:81:d4:71:e3:0c:86:02:2c:a3:3e:29:35:72:27:
05:fe:ad:b5:a9:fe:02:c8:1d:fb:a2:f0:5a:57:00:fd:ed:94:
07:07:83:7b:f2:da:94:af:e1:42:53:4f:50:94:67:df:be:d5:
bd:47:40:e9:55:47:c5:46:0d:22:83:5d:0c:9c:35:23:cd:b1:
3e:8d:c2:23:5a:f0:b7:fe:37:2f:3a:45:4a:0e:ee:d9:d9:a9:
d6:57:f2:d4:55:25:1a:55:51:d3:f1:60:76:e1:aa:60:87:da:
72:ce:77:ba:d2:5e:9f:8f:a4:88:b5:0f:91:79:49:e3:a7:b6:
22:87:df:fd:f0:a8:c4:6f:e6:f9:1f:ed:96:da:1d:62:47:87:
db:a7:7c:f8:1c:f9:f9:68:3d:64:23:fb:3e:81:39:c4:91:44:
89:ef:c2:c4:89:68:55:6b:ec:f5:26:cb:b9:b8:c5:fd:4c:fc:
0c:27:3d:5f:51:43:ff:f6:9e:9d:1f:f7:9f:64:15:f6:54:0b:
9d:dc:11:bf:75:df:69:4c:50:2c:f6:7a:ce:0e:2e:8c:0d:f9:
1b:2f:81:15:d1:de:de:eb:43:bb:d1:8f:b2:72:c3:c0:3c:20:
e1:1e:61:4e
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDxQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDAzMzEw
NDIyMzNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEY0QkVEODFERjk5REVE
NkJFODBBQzYzRjFDRjYxOEZCMEY0NzdDRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+AAgMLX7KnYIR4IB2ciwVMKjeQTiRBKukrs5E5qv6/OI4MXlO
DgUqAKLd0Qtvc0MMTZBbm8n4jxXmiWkpjytM892oOm7UIrx/tuLbg+NswtlRCPMU
uASEVYF/HeqFDCROJIul/iPOmLsH/tM87f4gkyb8XK8D0HP0FZzWduuAKEXs455g
kdLiW/HezRKsE0lXWVL/7O3ihv9vzu6soPKWqo1Tar48KWTc0snV94CLdNZQ3/xS
xjQEgqgqFTGbnsPVzS8BCXRHWGAEpzy4zD/jyyvJTxN8YewcvlZ9DBd8xXeHkuuC
OddBJgB20hytI9qRR2Nso8+e884Bq7BibbADAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU9L7YHfmd7WvoCsY/HPYY+w9HfNcwHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzLzlMN1lIZm1kN1d2b0Nz
WV9IUFlZLXc5SGZOYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAPrbWOi4nabSnLWJDG33+JxB0SlfL3oHU
ceMMhgIsoz4pNXInBf6ttan+Asgd+6LwWlcA/e2UBweDe/LalK/hQlNPUJRn377V
vUdA6VVHxUYNIoNdDJw1I82xPo3CI1rwt/43LzpFSg7u2dmp1lfy1FUlGlVR0/Fg
duGqYIfacs53utJen4+kiLUPkXlJ46e2Ioff/fCoxG/m+R/tltodYkeH26d8+Bz5
+Wg9ZCP7PoE5xJFEie/CxIloVWvs9SbLubjF/Uz8DCc9X1FD//aenR/3n2QV9lQL
ndwRv3XfaUxQLPZ6zg4ujA35Gy+BFdHe3utDu9GPsnLDwDwg4R5hTg==
-----END CERTIFICATE-----
Generated at Sun May 18 05:02:20 2025 by rpki-client