Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/VTDJJETD-nEde7saiNTH-c3y8mw.roa
File: VTDJJETD-nEde7saiNTH-c3y8mw.roa (raw, json)
Hash identifier: 3v3XWCpIFVXNIR3H4B/ACLKbLaS+eRl786772l3Gm48=
Subject key identifier: 55:30:C9:24:44:C3:FA:71:1D:7B:BB:1A:88:D4:C7:F9:CD:F2:F2:6C
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1364
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/VTDJJETD-nEde7saiNTH-c3y8mw.roa
Signing time: Thu 11 Apr 2024 16:23:13 +0000
ROA not before: Thu 11 Apr 2024 16:23:13 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4964 (0x1364)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 11 16:23:13 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=5530C92444C3FA711D7BBB1A88D4C7F9CDF2F26C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:82:e7:7f:9a:fc:f7:59:41:23:2a:12:c6:a2:
9b:89:07:b5:61:a0:46:c7:01:75:e4:31:5b:a0:0a:
1c:19:af:3c:a5:75:21:58:f2:d5:7b:10:cd:9b:3d:
0a:f9:38:22:45:d0:bb:85:d4:08:90:d7:21:9e:ff:
ea:0c:d6:88:6e:39:7f:1b:7e:e3:41:28:2c:51:5f:
a5:72:ee:64:25:4e:29:0f:c1:eb:6d:ad:8d:e7:10:
1e:9a:1b:c5:e0:e9:62:ac:ff:e9:35:ed:8c:15:b2:
69:c2:eb:13:46:92:f4:8d:09:61:2e:28:3b:e6:f0:
e6:c2:12:e8:59:79:bf:23:fc:9d:16:12:41:73:ba:
48:d2:d5:7e:e0:72:6a:d7:57:63:86:b7:3f:54:1b:
bd:d6:02:25:c9:6e:0e:b8:df:8b:93:35:8c:bf:93:
5e:c1:a0:b1:29:e2:76:2a:6b:5c:57:5a:96:30:cf:
0d:eb:ce:68:f6:83:6b:3c:30:96:13:91:fd:07:4b:
b3:c3:c7:67:19:a7:0e:12:8c:ad:6e:aa:9c:dd:8b:
bd:a9:6d:73:b4:35:25:08:14:18:9f:99:89:c3:51:
ce:bf:8e:1d:7d:59:28:83:fd:04:6b:b7:85:c1:21:
fe:50:24:e9:e1:62:1a:17:f3:b0:61:92:9e:61:17:
14:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:30:C9:24:44:C3:FA:71:1D:7B:BB:1A:88:D4:C7:F9:CD:F2:F2:6C
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/VTDJJETD-nEde7saiNTH-c3y8mw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
cc:f6:d1:f6:ff:b6:da:47:7b:bd:91:ca:f3:11:dc:32:00:c3:
6b:6e:67:4e:77:63:12:b1:53:a0:82:ad:24:a4:e0:2f:b7:f6:
ef:0b:b6:3a:f6:d5:95:ba:8d:55:8b:65:72:b3:79:6a:40:21:
d5:8e:c2:b5:d0:63:2e:b6:c6:99:3a:22:d6:95:da:97:26:4d:
e3:17:59:42:97:54:e6:08:e2:bc:c3:3a:42:dd:71:ad:bf:8d:
88:f5:1a:52:ea:70:ee:86:04:b0:be:4f:5a:e7:9a:01:38:01:
ba:4e:42:a1:cf:48:2d:97:87:7d:5c:5a:39:03:8e:7f:60:5c:
0e:f4:9e:4c:c2:40:80:36:2d:24:2d:e0:d6:b9:da:bc:54:71:
1b:08:b6:f6:8c:34:5b:0a:07:8e:a1:03:f0:9c:6b:40:14:e4:
6c:fd:42:59:2a:1f:09:c7:c6:55:41:b8:47:90:4b:2f:6d:41:
41:9b:4c:da:33:73:ef:d4:f9:3f:d4:f7:ea:b1:33:96:f8:29:
d4:70:13:19:db:88:c8:8b:02:4d:9a:f1:be:34:21:17:c8:6e:
77:c4:5c:18:2b:fa:be:7f:03:29:13:24:5b:96:b8:4a:b7:10:
63:33:3e:b4:f6:5c:c5:83:c1:3e:06:18:12:59:ea:04:cf:85:
75:d9:eb:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 05:55:37 2025 by rpki-client