Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/VJdUvzgd4j1XtyZbV8Ed57LlIQU.roa
File: VJdUvzgd4j1XtyZbV8Ed57LlIQU.roa (raw, json)
Hash identifier: 9D8CgynwhathyXNTPkHUMR50SHjRAxf/c2bF1zjdlws=
Subject key identifier: 54:97:54:BF:38:1D:E2:3D:57:B7:26:5B:57:C1:1D:E7:B2:E5:21:05
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1D2C
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/VJdUvzgd4j1XtyZbV8Ed57LlIQU.roa
Signing time: Tue 07 May 2024 18:24:20 +0000
ROA not before: Tue 07 May 2024 18:24:20 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7468 (0x1d2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 7 18:24:20 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=549754BF381DE23D57B7265B57C11DE7B2E52105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:73:9e:9d:09:ec:81:81:3d:2e:61:03:22:63:
f8:7b:10:b5:8c:01:f6:23:5e:3a:08:11:02:d1:28:
1b:eb:e4:77:84:14:17:0d:db:62:f6:cd:1a:4f:c5:
e0:d8:95:39:25:ea:ff:89:85:71:4b:ff:59:c7:f3:
df:ca:8d:89:3f:b6:9b:73:5b:99:50:25:73:73:59:
a6:f6:6e:21:12:53:28:bc:c8:39:4f:4a:75:9c:d3:
33:47:ff:5f:28:e1:ec:96:ed:8a:5e:78:53:db:43:
ce:d4:ee:bc:03:70:d9:64:db:58:ed:6d:2b:90:92:
5c:77:10:20:d6:ef:96:1c:f4:ad:74:62:5c:e5:aa:
f6:77:c3:8d:8d:dc:1b:1b:3d:2b:11:11:6e:19:e2:
1f:c8:93:c9:51:b1:f7:72:d5:7e:25:d0:c4:66:78:
57:28:c7:48:d7:94:40:89:e1:83:73:fe:11:55:49:
35:be:06:d5:d5:8a:91:80:64:46:4d:86:95:23:8c:
3d:ff:6e:e0:eb:75:df:b3:97:f4:c3:fb:b3:c6:a7:
35:8a:24:b0:cf:4b:c4:87:4f:b1:62:ae:b6:ad:63:
c1:24:bb:4d:7e:46:37:34:bb:56:90:47:e4:ed:ba:
5e:75:c6:02:4d:6b:ed:df:95:76:06:3f:f7:6f:bb:
11:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:97:54:BF:38:1D:E2:3D:57:B7:26:5B:57:C1:1D:E7:B2:E5:21:05
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/VJdUvzgd4j1XtyZbV8Ed57LlIQU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
36:0c:52:22:62:b1:c4:88:83:ee:92:77:b2:57:8f:89:de:41:
aa:f4:dc:44:94:0b:c0:89:c4:df:2d:c8:dd:4e:d6:ce:ac:1a:
9a:56:03:a9:11:09:4e:ad:60:00:16:70:9e:11:b2:6c:5c:e3:
b6:dd:fd:21:3c:bc:9b:33:7e:32:c9:be:60:7d:02:81:4b:62:
0f:e2:a0:e0:0a:8b:10:d1:d8:6b:21:c7:54:80:2f:1f:a0:bd:
fe:ec:d9:06:3c:a2:c3:7a:b5:bb:1c:07:cf:78:2f:bd:40:84:
27:81:53:7f:f7:78:ec:f8:74:82:d6:e0:aa:7b:e5:f4:fe:9c:
39:59:d5:8a:d9:b8:f7:48:b0:b5:be:cb:1f:4c:5d:c8:65:bf:
ee:22:44:15:25:96:fb:c7:77:8f:d3:c5:e9:93:b0:2e:37:92:
36:13:7f:e6:ef:c2:27:5b:74:5e:b4:20:55:75:ab:77:99:29:
8b:2d:6d:84:f5:26:e4:f6:b9:2c:76:04:61:a4:13:bf:2c:50:
dd:83:1a:5b:4d:fc:23:63:4a:4f:61:de:74:be:29:e9:ec:48:
7b:c2:9b:56:10:7b:21:8b:61:1f:cb:cd:a2:48:33:9b:ba:4e:
17:54:67:23:85:00:9a:cc:28:a7:d8:3d:3e:fa:00:57:a9:66:
f6:21:88:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 04:43:19 2025 by rpki-client