Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/AHbFrZbB23mKqVu0kg7EDjKWQAo.roa
File: AHbFrZbB23mKqVu0kg7EDjKWQAo.roa (raw, json)
Hash identifier: Tw26IWXJXraYj0cx8XSsOwrCk8/vQRAJnsV3LzWnEVA=
Subject key identifier: 00:76:C5:AD:96:C1:DB:79:8A:A9:5B:B4:92:0E:C4:0E:32:96:40:0A
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 0DB4
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/AHbFrZbB23mKqVu0kg7EDjKWQAo.roa
Signing time: Wed 27 Mar 2024 12:22:34 +0000
ROA not before: Wed 27 Mar 2024 12:22:34 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3508 (0xdb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Mar 27 12:22:34 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=0076C5AD96C1DB798AA95BB4920EC40E3296400A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:a6:bb:aa:78:5e:77:6e:22:57:5e:ad:8b:d8:
24:0b:c6:a3:7a:b6:76:a7:29:9c:b5:62:c0:0d:82:
a2:74:7d:a0:3f:7b:08:7a:34:8d:0b:2a:15:ea:29:
58:14:76:f5:3f:ac:bc:cc:a3:f3:6f:cf:ec:7c:07:
c3:28:da:8e:00:3d:76:e6:85:d5:bb:8e:37:4b:e1:
84:9d:3b:ea:8b:44:8f:f4:dd:17:66:76:cc:7c:b1:
9f:96:bc:fa:89:8c:1d:eb:6d:56:0a:ad:f6:b4:38:
cd:b2:e8:c7:dc:b1:c5:40:9c:b4:1d:7f:f2:19:4a:
03:ab:88:7f:98:98:5f:54:16:16:49:b3:c1:7e:b5:
ae:f0:a8:48:61:94:11:51:44:a9:17:1c:06:6b:d7:
32:a1:56:91:2b:bb:44:75:d7:87:e7:81:e2:b2:74:
38:17:d7:55:ef:ba:55:45:28:ed:1d:bc:77:f3:2a:
67:53:3d:0f:2a:13:cc:64:db:b8:6d:04:c3:53:9f:
e0:3d:1c:8c:b0:06:f7:85:1c:96:44:2a:d0:fe:a0:
af:3c:f2:85:fd:67:43:d8:b8:9f:7a:30:2c:03:17:
3a:1a:c1:47:b4:8a:56:f2:1c:3b:9f:2a:b3:94:19:
5e:ed:0f:0a:e3:84:e3:02:08:bf:03:bd:4c:d8:31:
01:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:76:C5:AD:96:C1:DB:79:8A:A9:5B:B4:92:0E:C4:0E:32:96:40:0A
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/AHbFrZbB23mKqVu0kg7EDjKWQAo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5f:19:45:73:43:c5:65:d9:41:6b:69:01:ba:86:7a:77:4c:98:
96:90:6d:18:b0:b2:1f:13:6f:b0:41:77:4c:df:f4:0d:84:e3:
2b:39:da:a1:7a:ac:91:b4:64:7b:0d:5c:8a:b6:d6:2d:a3:b9:
fe:5a:a2:2d:67:fd:23:7f:f9:35:c8:5c:cf:cd:8d:76:ff:45:
ea:eb:dd:9e:50:4e:08:f2:8b:9c:ca:58:95:dd:90:a1:eb:95:
1e:6e:7c:b2:f7:66:56:91:f7:c5:98:13:db:0c:e5:63:28:14:
0c:d4:6a:d2:15:99:31:ea:2c:dc:8a:ec:60:4b:be:a1:b7:64:
50:7d:fd:9f:71:89:aa:18:46:6a:c5:48:ab:46:29:b5:3b:2d:
4e:fd:1b:78:57:cf:5e:c7:34:35:53:5a:68:00:f4:c2:c4:d7:
eb:36:6f:eb:0c:7e:f8:b3:79:6b:d7:3a:39:59:e3:97:b6:34:
d4:74:b3:64:03:45:5d:38:d2:c4:cc:a1:75:b3:52:2b:0b:a9:
08:b0:b6:4f:4f:7b:1e:04:f5:2d:4c:bb:ee:fb:b0:20:7b:e3:
30:f3:17:18:9e:36:01:9e:94:aa:14:e7:f2:be:fd:ea:a6:91:
f6:14:1d:f4:e8:20:a4:ce:17:1f:12:85:d0:5a:52:62:e6:3e:
52:18:40:b5
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDbQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDAzMjcx
MjIyMzRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDAwNzZDNUFEOTZDMURC
Nzk4QUE5NUJCNDkyMEVDNDBFMzI5NjQwMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDupruqeF53biJXXq2L2CQLxqN6tnanKZy1YsANgqJ0faA/ewh6
NI0LKhXqKVgUdvU/rLzMo/Nvz+x8B8Mo2o4APXbmhdW7jjdL4YSdO+qLRI/03Rdm
dsx8sZ+WvPqJjB3rbVYKrfa0OM2y6MfcscVAnLQdf/IZSgOriH+YmF9UFhZJs8F+
ta7wqEhhlBFRRKkXHAZr1zKhVpEru0R114fngeKydDgX11XvulVFKO0dvHfzKmdT
PQ8qE8xk27htBMNTn+A9HIywBveFHJZEKtD+oK888oX9Z0PYuJ96MCwDFzoawUe0
ilbyHDufKrOUGV7tDwrjhOMCCL8DvUzYMQGXAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUAHbFrZbB23mKqVu0kg7EDjKWQAowHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL0FIYkZyWmJCMjNtS3FW
dTBrZzdFRGpLV1FBby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAXxlFc0PFZdlBa2kBuoZ6d0yYlpBtGLCy
HxNvsEF3TN/0DYTjKznaoXqskbRkew1cirbWLaO5/lqiLWf9I3/5Nchcz82Ndv9F
6uvdnlBOCPKLnMpYld2QoeuVHm58svdmVpH3xZgT2wzlYygUDNRq0hWZMeos3Irs
YEu+obdkUH39n3GJqhhGasVIq0YptTstTv0beFfPXsc0NVNaaAD0wsTX6zZv6wx+
+LN5a9c6OVnjl7Y01HSzZANFXTjSxMyhdbNSKwupCLC2T097HgT1LUy77vuwIHvj
MPMXGJ42AZ6UqhTn8r796qaR9hQd9OggpM4XHxKF0FpSYuY+UhhAtQ==
-----END CERTIFICATE-----
Generated at Sun May 18 04:43:28 2025 by rpki-client