Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/NwTBopxuR41YXqYDk1imYpLGvuo.roa
File: NwTBopxuR41YXqYDk1imYpLGvuo.roa (raw, json)
Hash identifier: 84Rud26pg7TXyc34JHgHoy0dVfBWdrok/t/ePn6ORYw=
Subject key identifier: 37:04:C1:A2:9C:6E:47:8D:58:5E:A6:03:93:58:A6:62:92:C6:BE:EA
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1274
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/NwTBopxuR41YXqYDk1imYpLGvuo.roa
Signing time: Tue 09 Apr 2024 04:23:00 +0000
ROA not before: Tue 09 Apr 2024 04:23:00 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4724 (0x1274)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 9 04:23:00 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=3704C1A29C6E478D585EA6039358A66292C6BEEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:63:ba:76:6e:d8:1a:08:1e:d1:83:db:cc:3c:
84:07:85:35:fc:2f:b2:d6:5c:8e:38:d7:52:c2:45:
69:da:ce:57:27:26:8d:ac:a7:e0:79:4a:0b:6b:06:
0a:42:74:c8:ca:ec:22:ce:0a:e8:1c:b2:ec:af:74:
42:9c:cd:3c:15:ea:9e:22:c9:af:fc:26:ac:8f:03:
ca:f9:9a:95:ad:20:e7:1b:75:b5:fd:4b:67:7f:ed:
76:02:91:13:2a:9e:60:28:b5:4f:76:99:5b:fb:9f:
3a:28:54:08:0a:9d:1e:4d:26:65:14:8d:02:88:b3:
75:a7:a2:f3:78:d2:b7:39:ed:62:9c:38:61:8d:bb:
73:a6:cd:0d:9c:c9:c6:10:04:72:bf:26:68:c6:c8:
5c:df:9c:29:33:a0:53:b8:8d:78:a9:19:7f:33:bf:
4e:fd:6d:c2:ce:78:ea:1e:c2:61:07:38:6a:49:2b:
dd:0e:4a:cc:4c:61:20:a5:19:ac:a9:2c:66:d2:9e:
49:7f:77:c3:07:1c:3e:c2:f0:a0:b7:ea:b0:c8:6f:
f4:ce:04:54:93:f0:c1:fd:5c:97:2d:35:e0:30:77:
c3:8b:a2:96:56:b8:c6:66:5c:6e:74:6d:4f:65:d1:
4f:4b:68:f3:cf:65:0e:ff:0f:73:3e:92:2d:ee:72:
be:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:04:C1:A2:9C:6E:47:8D:58:5E:A6:03:93:58:A6:62:92:C6:BE:EA
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/NwTBopxuR41YXqYDk1imYpLGvuo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3d:82:3d:4d:da:06:5d:a7:0e:d4:86:9e:a6:c6:cc:83:a5:37:
7b:3b:0b:51:0a:70:cb:49:63:ea:a3:46:cb:5c:96:bd:3c:69:
5a:97:13:5c:f8:e9:3f:df:9f:66:5b:a5:c8:5e:70:4c:ad:e4:
4e:5e:4c:40:e7:1c:ea:f3:3f:3e:51:d9:3c:fe:aa:8c:14:a3:
6d:14:6d:98:f8:49:15:b7:72:1e:ef:de:4a:cd:20:f5:d6:2f:
18:64:fb:d9:e7:cd:06:a0:63:7e:ce:7f:f7:7a:c8:c7:9c:34:
df:da:3d:23:38:a8:03:4d:3d:de:fa:93:95:67:7e:1a:1e:a4:
63:1d:45:56:f3:c9:09:b4:e9:59:80:4c:7c:38:b5:f3:88:69:
22:4d:0b:e8:bc:2e:f0:26:e4:7f:8b:32:cd:69:af:36:7e:dc:
b9:9b:af:d7:d7:bb:e5:f7:56:59:3f:47:a4:49:8f:4b:f2:3c:
21:05:00:16:b5:cf:dd:ac:4e:92:91:8e:6a:c7:60:cc:9c:ab:
96:a1:69:70:7c:d0:ec:34:30:f9:44:36:a5:83:33:ee:0d:52:
6a:d8:eb:e1:90:54:26:39:d3:27:80:b7:e7:55:83:f1:cb:b1:
22:50:77:ca:9d:cb:2e:83:ad:7e:22:5d:f9:c9:0c:e8:29:86:
86:c1:49:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 10:51:58 2025 by rpki-client