Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/AayeUX6K2V7whGcTYLvmME3dJa4.roa
File: AayeUX6K2V7whGcTYLvmME3dJa4.roa (raw, json)
Hash identifier: UlXVDq+iAzsZJ0rEA+UiwmRv5p7nCFlx97hVZpLAMN4=
Subject key identifier: 01:AC:9E:51:7E:8A:D9:5E:F0:84:67:13:60:BB:E6:30:4D:DD:25:AE
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 0E82
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/AayeUX6K2V7whGcTYLvmME3dJa4.roa
Signing time: Fri 29 Mar 2024 15:52:29 +0000
ROA not before: Fri 29 Mar 2024 15:52:29 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3714 (0xe82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Mar 29 15:52:29 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=01AC9E517E8AD95EF084671360BBE6304DDD25AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c8:bf:3f:f1:49:e2:6a:9f:a3:c0:78:46:73:
2a:b2:e8:e9:80:23:5c:90:68:b9:d6:4c:a4:41:3c:
a9:e1:e1:11:b1:77:fb:59:87:fe:a9:cf:26:16:67:
da:86:c6:5a:ad:7e:c2:7c:8e:dd:90:b0:69:4b:b1:
01:15:ca:2c:1c:27:3d:0c:92:9b:f5:90:89:75:f4:
c2:2a:4f:20:cc:b5:ca:df:59:fa:ad:be:43:b7:91:
97:9a:c1:45:a2:98:4a:8d:da:6e:ed:56:23:c2:eb:
a1:94:b5:6a:3a:72:17:a9:95:99:6d:9b:3c:2d:36:
0e:1a:30:9d:bb:8d:99:0f:8c:75:06:6a:3b:73:46:
05:e0:69:1c:98:f3:bf:f7:8e:1a:67:f1:88:55:c8:
15:ae:da:8c:c9:f3:8a:a7:b0:84:b6:aa:da:c5:b0:
f1:02:24:43:98:e2:e8:c4:a3:de:aa:ee:8c:12:b9:
5d:1f:ec:2e:09:55:43:05:22:2f:ee:f8:56:3d:c9:
24:2f:a9:c9:3c:0e:c6:9e:3f:c1:81:ed:d7:06:27:
58:79:cc:4e:bd:34:2f:2d:50:3c:69:07:d6:18:22:
e9:1a:3f:1f:7d:64:b3:d1:33:4f:b0:6c:2d:92:1c:
6e:b0:88:d4:3b:c0:2a:57:c8:91:de:90:b3:dd:58:
cc:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:AC:9E:51:7E:8A:D9:5E:F0:84:67:13:60:BB:E6:30:4D:DD:25:AE
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/AayeUX6K2V7whGcTYLvmME3dJa4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
13:0c:31:fe:21:e1:97:66:f1:33:6f:b3:8d:c0:8d:ba:bc:4c:
25:6f:47:1c:4f:47:8c:fd:ad:8a:5b:6c:f4:c3:29:04:03:13:
4b:44:7f:4d:81:c1:de:d1:94:d4:46:72:fa:cb:98:5a:05:c3:
4b:b4:34:53:b8:7e:2d:f7:cc:3b:a7:5e:d0:e0:5d:e4:a2:8f:
37:08:36:ff:cf:2d:b3:b9:83:e9:20:f9:50:04:ba:2d:a4:98:
81:ea:fb:d8:a1:4f:fb:33:d7:19:05:a0:33:86:82:f6:cb:70:
b5:20:22:5e:f1:de:0b:03:b1:ba:e4:6e:37:e5:4f:fa:51:e6:
08:a6:c3:fc:68:51:65:44:93:3f:95:23:ea:1f:98:4c:98:1a:
0e:20:ff:01:b7:60:a0:86:83:0f:9c:64:fc:f2:a0:86:c9:9a:
cf:ec:5d:bd:22:12:ec:0e:41:6c:a1:00:a5:ab:a8:00:dc:21:
71:77:04:03:60:f2:1b:77:72:12:51:03:6b:9c:bf:fd:a3:39:
a1:b4:8b:ad:6e:c2:97:02:11:8f:5e:24:c9:46:99:77:f7:c3:
7a:84:d4:8f:67:a7:e5:2f:9c:82:a1:c3:ed:08:b7:db:ff:4e:
e9:a9:e0:dd:74:c9:19:d7:80:15:d2:f7:0b:10:bb:ed:b7:96:
be:8c:d4:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 04:43:29 2025 by rpki-client