Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/Iq-4LQl-MdqfV2iuWQhms1awnsk.roa
File: Iq-4LQl-MdqfV2iuWQhms1awnsk.roa (raw, json)
Hash identifier: KpNlJplNwCuQp579n/Z20v5WYCFEeDITeVkkoS9RdA4=
Subject key identifier: 22:AF:B8:2D:09:7E:31:DA:9F:57:68:AE:59:08:66:B3:56:B0:9E:C9
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1202
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/Iq-4LQl-MdqfV2iuWQhms1awnsk.roa
Signing time: Sun 07 Apr 2024 23:52:56 +0000
ROA not before: Sun 07 Apr 2024 23:52:56 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4610 (0x1202)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 7 23:52:56 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=22AFB82D097E31DA9F5768AE590866B356B09EC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9b:17:f2:3a:fd:f2:03:6b:d6:b4:07:f0:e2:
d4:b3:b3:fd:4e:15:03:5c:f0:d2:59:b0:ba:90:eb:
b4:a7:d7:1c:a4:f5:31:99:59:a6:f4:70:22:57:f8:
87:39:aa:6c:53:6e:b0:08:7a:12:17:79:52:86:8b:
51:97:d6:7b:40:d4:51:08:0d:31:d5:6f:e0:75:6f:
1c:24:08:a9:59:8f:42:a0:66:3a:d8:e0:8f:ab:14:
a7:be:07:fb:c7:78:5e:5b:f6:c8:a9:1d:4e:55:e7:
db:d4:93:1b:8c:06:11:a1:a4:64:fb:f5:f3:62:8f:
83:c5:ec:0d:56:f9:93:65:f5:bd:f8:61:63:60:39:
79:08:39:95:12:e3:3f:bb:bd:b0:da:c3:ca:09:50:
88:54:6f:3d:be:2b:4b:f5:0c:0e:60:24:5a:89:ac:
66:21:94:c1:cd:fb:35:86:23:2c:e5:5e:e0:ec:29:
5a:d9:ef:40:8d:f7:75:35:79:87:ee:d3:85:e4:9a:
ff:20:ee:33:a8:eb:1c:54:6c:d1:02:5e:57:4c:db:
9d:31:59:a4:14:88:f7:08:56:33:6f:ba:ce:15:d9:
0a:b7:c0:f4:89:39:2f:29:c5:bf:71:7d:cd:23:05:
65:15:da:67:96:0c:4d:79:b4:82:45:6d:89:81:2e:
61:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:AF:B8:2D:09:7E:31:DA:9F:57:68:AE:59:08:66:B3:56:B0:9E:C9
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/Iq-4LQl-MdqfV2iuWQhms1awnsk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
06:c5:69:5a:62:47:83:11:33:7c:6a:cf:fb:39:57:e2:81:7f:
56:fe:83:47:ae:3f:12:3c:cf:f0:57:9f:94:06:5d:05:a9:96:
38:18:19:fc:65:9d:a0:dc:0b:c4:24:99:1a:73:26:a0:4c:c0:
25:1a:1a:c9:f5:f9:d7:94:fe:fb:e1:5f:8d:f6:64:15:a6:7d:
7e:69:25:bf:66:7a:7f:70:2e:51:7d:d4:b7:29:6a:6f:ba:47:
bb:78:9b:2d:34:35:12:11:51:9b:60:fe:3b:69:91:1c:e0:59:
ad:8c:1f:23:0b:c9:39:ca:92:bb:76:b0:d4:a3:05:81:ce:a8:
73:18:fa:0e:89:bd:71:b7:8b:64:83:4d:5c:8c:19:ae:7c:9e:
8a:3c:23:ba:37:3c:ec:a9:21:23:fc:fa:d0:62:56:06:3d:10:
ff:0f:33:1b:99:e2:ee:18:a1:c2:9a:2b:71:d3:d9:48:f0:1f:
dd:00:05:31:91:20:33:9f:c0:ca:76:a3:97:4a:d6:06:4a:08:
f0:dd:e9:8b:dd:53:f7:a5:01:99:ff:a8:fa:db:c8:82:87:c2:
a1:6c:46:80:29:ef:7b:82:72:4c:a8:26:ab:ea:05:26:85:15:
87:35:2a:81:99:8b:eb:14:b4:67:6d:f9:07:b0:f0:a5:59:24:
cb:a6:d8:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 05:57:37 2025 by rpki-client