Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/SnEkflFwOl82wneaL1Jqr12_SUs.roa
File: SnEkflFwOl82wneaL1Jqr12_SUs.roa (raw, json)
Hash identifier: 7wqY0MhIhCYc/oSEViwcK8cr6ED3AyxAJERol+NRQPo=
Subject key identifier: 4A:71:24:7E:51:70:3A:5F:36:C2:77:9A:2F:52:6A:AF:5D:BF:49:4B
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1B8A
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/SnEkflFwOl82wneaL1Jqr12_SUs.roa
Signing time: Fri 03 May 2024 09:54:11 +0000
ROA not before: Fri 03 May 2024 09:54:11 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7050 (0x1b8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 3 09:54:11 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=4A71247E51703A5F36C2779A2F526AAF5DBF494B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4b:98:35:1d:b3:2b:e1:37:49:21:5c:a3:fa:
de:2e:8d:d1:80:3d:cc:e5:ae:b0:5d:64:ba:dc:ca:
12:c8:28:b5:b6:84:fd:37:da:f2:bb:37:19:c9:c6:
c6:2a:29:a1:a0:c5:a8:7b:a6:c4:06:c3:45:a9:49:
16:8f:d1:98:aa:e4:55:88:e4:dc:16:f5:91:a5:ba:
ec:5e:66:a3:ee:9d:c3:ae:ab:9f:54:4c:72:54:8b:
0b:e6:5a:af:3b:b1:1b:57:f6:cc:b8:53:16:7e:14:
0e:37:94:6f:f6:47:5d:da:5c:7c:93:b4:01:0d:66:
1b:ce:fc:89:13:7e:17:43:1a:ff:d1:32:21:de:44:
b6:53:f8:59:64:39:2e:69:56:8f:0a:36:31:ca:10:
60:75:10:9a:ab:11:9b:51:36:75:c6:37:a4:ab:2c:
ef:d5:f1:4f:a9:0f:bf:9c:30:a4:7a:63:9f:d9:b2:
55:cb:48:88:97:92:95:73:c4:7e:f3:c9:c1:40:7d:
ec:e6:b4:0a:e9:ac:48:0a:3d:66:f7:a7:13:ba:b1:
0f:e7:7e:38:12:5c:85:8b:08:cf:d4:be:5d:73:e4:
5c:71:aa:90:68:4f:1c:c2:ee:bb:f1:ed:66:fc:5a:
75:6c:9a:f7:37:bc:a0:ca:9d:13:6a:37:1b:22:53:
b2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:71:24:7E:51:70:3A:5F:36:C2:77:9A:2F:52:6A:AF:5D:BF:49:4B
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/SnEkflFwOl82wneaL1Jqr12_SUs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2c:c8:bc:ff:eb:29:54:54:ce:2a:75:da:c0:31:fd:c4:64:46:
23:1a:a5:4b:b2:fa:6e:d1:1d:7c:f1:e6:e2:86:b0:af:90:37:
f0:cd:ea:f5:45:55:ec:15:63:e2:39:a9:8f:33:3d:66:90:58:
80:76:69:fe:f3:01:e6:4c:de:4b:39:a3:76:b9:a4:06:6a:bd:
2e:8d:70:89:d8:56:6a:82:7b:cc:0f:4a:0b:a5:e6:25:a1:c6:
b6:16:64:7f:fb:e4:18:47:22:6b:9e:75:99:d7:db:4a:f7:31:
66:27:eb:f0:54:ec:47:37:b3:f7:db:6e:8b:21:0e:56:33:2d:
ee:3e:0e:17:bc:a9:30:91:db:56:86:6e:bc:6d:0a:b9:80:64:
4b:71:97:f0:a1:91:1f:9c:0f:2a:c4:45:ab:47:37:d1:e0:83:
ff:a6:b2:fe:e2:05:7d:b1:05:4c:2a:ce:29:10:95:94:6d:89:
e1:f0:ff:c4:b4:7f:e7:3a:80:14:a0:99:32:c9:25:83:6e:6e:
be:13:53:c4:03:88:91:a6:a2:6d:73:9e:0f:29:5c:7c:64:2d:
7e:87:d3:e4:f2:06:5f:da:b8:35:ec:e5:69:21:30:29:64:cc:
44:fa:58:3a:20:40:71:a3:30:15:42:92:fa:b0:4f:23:0a:3d:
74:09:e9:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 04:44:28 2025 by rpki-client