Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/QNQwIItbK9-n-t5eDIH-O60jWxs.roa
File: QNQwIItbK9-n-t5eDIH-O60jWxs.roa (raw, json)
Hash identifier: 2jJ0WcTR5Ex3b4+ZDnDZ2I1HbopHDqf49/TkdRKb2l8=
Subject key identifier: 40:D4:30:20:8B:5B:2B:DF:A7:FA:DE:5E:0C:81:FE:3B:AD:23:5B:1B
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 0FE8
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/QNQwIItbK9-n-t5eDIH-O60jWxs.roa
Signing time: Tue 02 Apr 2024 09:22:38 +0000
ROA not before: Tue 02 Apr 2024 09:22:38 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4072 (0xfe8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 2 09:22:38 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=40D430208B5B2BDFA7FADE5E0C81FE3BAD235B1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:96:b0:c2:3d:f0:6d:28:15:3e:82:45:18:31:
d5:3b:1c:70:d5:ae:cc:e4:6a:2e:86:b8:c3:50:14:
d8:b5:33:03:5c:ed:05:28:ec:3e:75:91:f5:4e:5f:
ca:cd:ef:4b:72:f6:d5:12:f0:f2:1f:ea:88:8d:1b:
7d:f1:47:96:28:f8:48:25:3e:87:0e:12:68:f5:31:
ac:70:1d:d3:b9:6f:31:d0:60:04:b7:ee:72:bd:b8:
22:27:3d:89:e7:e3:d5:5f:f1:61:68:2c:f7:9c:b1:
4c:3d:09:32:d4:26:c3:ed:64:1d:e9:88:9b:3c:07:
87:80:59:9b:93:79:04:17:a4:aa:9e:da:31:9a:3a:
e6:2f:e9:33:b6:57:eb:9c:8d:98:fd:ce:6c:7a:1a:
01:65:52:5e:5c:8a:50:bd:6e:9c:86:41:52:7a:23:
bd:9c:b5:0e:dc:9b:8c:05:f2:4d:fe:4e:29:8b:72:
59:78:c5:8e:00:bc:2a:7f:f3:8e:dd:4e:09:a4:9e:
67:5e:e8:14:48:49:cc:e6:10:8f:da:3e:11:dd:be:
24:20:c7:c8:a4:52:e4:f8:86:c6:f1:db:58:70:54:
aa:61:9e:55:fc:43:28:c3:0a:ce:ed:f5:5b:d4:9d:
2a:c9:01:61:c8:31:9e:28:22:87:22:ff:11:64:c1:
3d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D4:30:20:8B:5B:2B:DF:A7:FA:DE:5E:0C:81:FE:3B:AD:23:5B:1B
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/QNQwIItbK9-n-t5eDIH-O60jWxs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
d0:74:85:fe:c1:23:ba:6d:c7:51:96:50:f3:a0:a2:8a:2a:fa:
91:1f:c4:37:78:b7:1d:51:85:b7:42:b4:35:90:7d:df:84:44:
45:2a:40:59:ce:29:74:e5:e7:92:35:d8:ba:d5:61:18:28:94:
d2:26:d7:2b:b4:90:87:2a:ce:72:6d:77:93:b1:bc:23:08:b0:
8f:6b:a9:22:35:52:de:6a:ba:13:bd:1c:78:0b:6c:d9:63:8d:
29:b5:3a:73:89:b8:74:fd:74:70:fc:8d:f1:6f:ec:2b:09:3c:
b6:d0:99:0f:0c:2a:41:cd:16:65:f7:a0:76:c4:ed:fc:b9:b1:
0c:2f:5c:ab:32:70:1c:90:8c:57:f1:19:a2:2d:69:d4:f6:95:
6d:58:3d:8d:20:c6:31:11:d6:67:83:d5:97:58:46:33:51:ee:
ca:06:e9:4a:3e:90:ae:da:4d:bb:cc:ab:32:68:09:33:60:50:
7c:90:fb:f3:a4:fa:8a:40:be:25:4a:3e:3d:55:a1:13:8c:ea:
74:db:dd:42:22:5c:d0:12:d8:01:a0:0b:97:08:19:34:8a:c1:
e1:1a:d5:f9:1f:ea:2d:2c:b1:a3:5d:52:0d:41:b8:26:79:62:
1e:42:46:03:05:2e:13:b6:28:4a:c3:18:83:16:d9:48:e4:7b:
93:3a:2d:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 05:57:35 2025 by rpki-client