Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/UHnDp9xk9R84iDsSjNF-Zo5fmW4.roa
File: UHnDp9xk9R84iDsSjNF-Zo5fmW4.roa (raw, json)
Hash identifier: 5b2vleXkCg/CExA+jtD13vCVqThhGthAR6wgltIiVg8=
Subject key identifier: 50:79:C3:A7:DC:64:F5:1F:38:88:3B:12:8C:D1:7E:66:8E:5F:99:6E
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 12AC
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/UHnDp9xk9R84iDsSjNF-Zo5fmW4.roa
Signing time: Tue 09 Apr 2024 18:23:03 +0000
ROA not before: Tue 09 Apr 2024 18:23:03 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4780 (0x12ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 9 18:23:03 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=5079C3A7DC64F51F38883B128CD17E668E5F996E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:00:2e:0c:0f:e7:f9:0c:ec:f5:d8:49:ae:fd:
73:97:4f:03:6b:87:df:83:93:89:7a:4a:e0:b4:29:
e1:0b:1b:49:20:42:35:e7:15:6a:fa:28:82:08:2b:
4f:97:9a:5b:1d:c1:8a:aa:8d:f6:67:7e:34:15:a0:
6f:3e:4a:28:67:35:22:bd:3d:d5:1b:c5:c4:c8:cf:
ee:5d:e9:72:9c:d2:14:de:f4:ed:c4:ac:b2:90:bc:
a4:77:ec:9e:46:62:eb:b4:43:8c:cf:ae:a7:2a:fa:
8c:ce:cf:6b:ab:e4:d9:22:eb:51:26:eb:fd:8f:f4:
e4:63:b4:3b:58:4b:59:d0:5c:03:d9:db:1d:4d:4e:
9e:ec:1b:eb:77:e2:34:a4:00:29:49:63:20:52:2d:
a0:3b:ed:9d:51:6b:30:d9:1f:96:65:50:9d:5a:81:
d5:f7:5a:16:15:b3:82:59:88:42:aa:2a:d8:82:d8:
32:d6:c9:0e:5a:12:09:ec:d5:36:28:2b:da:c7:c3:
be:7d:6b:a3:f1:32:91:48:ca:c0:02:3e:7c:dc:95:
3f:f7:0c:f3:0a:18:5c:eb:ff:28:a5:50:0f:c7:40:
d0:2e:3d:1a:df:df:db:49:d1:08:0e:dc:68:cc:08:
b7:9a:9d:e2:d9:1c:46:b5:9c:97:29:5b:fd:12:e2:
18:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:79:C3:A7:DC:64:F5:1F:38:88:3B:12:8C:D1:7E:66:8E:5F:99:6E
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/UHnDp9xk9R84iDsSjNF-Zo5fmW4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4c:ac:0e:62:9f:98:b1:bc:00:71:96:83:b1:09:31:53:2b:bf:
d1:4e:01:55:e5:93:9a:6f:7a:f8:09:c6:f6:aa:3a:3f:d8:80:
f9:8b:8d:b2:a7:ff:42:15:b3:7b:34:cf:3c:cf:f4:11:b7:96:
63:5f:40:95:67:93:c1:52:df:f6:c4:fa:02:2b:f7:52:8f:ef:
38:52:93:79:2e:a6:64:b0:2e:9f:d2:01:19:88:4f:1b:d4:f9:
b4:8f:63:82:53:c6:fc:5b:e0:95:f2:89:7d:cb:93:d3:dc:d7:
dc:1c:cf:56:de:8d:c1:80:90:48:33:e1:74:3e:75:01:45:9b:
5b:0e:79:8b:94:3c:b2:a6:a7:1b:9b:db:a2:ff:d3:87:b1:d1:
9a:5c:2d:26:a5:19:6b:cb:d2:9f:64:f3:62:15:0a:1c:e0:3c:
06:51:1a:c7:be:9b:13:42:e4:e0:9c:6b:96:92:d5:d3:55:19:
c6:d9:d0:b3:ef:2a:d9:26:4e:87:b4:46:00:76:00:4d:d7:ea:
8c:63:5c:1a:6b:07:95:1c:1e:dc:72:eb:25:5f:65:50:89:35:
20:d5:40:7f:7f:66:59:da:d2:ca:89:74:be:f8:eb:24:9e:91:
c5:31:3f:ec:c7:9f:cf:f1:06:b4:86:ef:d5:87:7d:79:41:dc:
c8:e4:f7:a4
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEqwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MDkx
ODIzMDNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDUwNzlDM0E3REM2NEY1
MUYzODg4M0IxMjhDRDE3RTY2OEU1Rjk5NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMAC4MD+f5DOz12Emu/XOXTwNrh9+Dk4l6SuC0KeELG0kgQjXn
FWr6KIIIK0+XmlsdwYqqjfZnfjQVoG8+SihnNSK9PdUbxcTIz+5d6XKc0hTe9O3E
rLKQvKR37J5GYuu0Q4zPrqcq+ozOz2ur5Nki61Em6/2P9ORjtDtYS1nQXAPZ2x1N
Tp7sG+t34jSkAClJYyBSLaA77Z1RazDZH5ZlUJ1agdX3WhYVs4JZiEKqKtiC2DLW
yQ5aEgns1TYoK9rHw759a6PxMpFIysACPnzclT/3DPMKGFzr/yilUA/HQNAuPRrf
39tJ0QgO3GjMCLeaneLZHEa1nJcpW/0S4hiHAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUUHnDp9xk9R84iDsSjNF+Zo5fmW4wHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL1VIbkRwOXhrOVI4NGlE
c1NqTkYtWm81Zm1XNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEATKwOYp+YsbwAcZaDsQkxUyu/0U4BVeWT
mm96+AnG9qo6P9iA+YuNsqf/QhWzezTPPM/0EbeWY19AlWeTwVLf9sT6Aiv3Uo/v
OFKTeS6mZLAun9IBGYhPG9T5tI9jglPG/FvglfKJfcuT09zX3BzPVt6NwYCQSDPh
dD51AUWbWw55i5Q8sqanG5vbov/Th7HRmlwtJqUZa8vSn2TzYhUKHOA8BlEax76b
E0Lk4JxrlpLV01UZxtnQs+8q2SZOh7RGAHYATdfqjGNcGmsHlRwe3HLrJV9lUIk1
INVAf39mWdrSyol0vvjrJJ6RxTE/7Mefz/EGtIbv1Yd9eUHcyOT3pA==
-----END CERTIFICATE-----
Generated at Sun May 18 18:46:56 2025 by rpki-client