Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/dnwc4vrXit2N2AG-wZtFFIv3-SE.roa
File: dnwc4vrXit2N2AG-wZtFFIv3-SE.roa (raw, json)
Hash identifier: 6Tn8eZOTumn9sLZHeLXy5AComi9rsoJYYVLXoBxiqcA=
Subject key identifier: 76:7C:1C:E2:FA:D7:8A:DD:8D:D8:01:BE:C1:9B:45:14:8B:F7:F9:21
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1C3A
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/dnwc4vrXit2N2AG-wZtFFIv3-SE.roa
Signing time: Sun 05 May 2024 05:54:13 +0000
ROA not before: Sun 05 May 2024 05:54:13 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7226 (0x1c3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 5 05:54:13 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=767C1CE2FAD78ADD8DD801BEC19B45148BF7F921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:96:d3:1b:5f:88:22:28:3d:9b:a7:eb:46:ff:
60:d2:1e:33:dd:cb:eb:ea:5a:60:6b:a7:52:59:e1:
00:9f:a0:94:91:6c:ee:60:d7:88:0f:8a:23:16:30:
64:0c:77:13:56:7f:72:8a:89:4a:ba:55:1c:12:f4:
21:08:7e:21:0e:fa:73:a3:eb:8c:d2:ed:4e:27:34:
62:bd:10:a2:3d:e8:39:fb:28:8d:ad:90:66:24:88:
9c:ab:ae:59:2d:6f:ad:1d:65:49:d4:6a:87:8c:59:
9f:b4:d6:b8:8f:8b:63:70:7c:ee:a6:37:03:dc:cf:
9f:10:e7:48:0e:ee:80:80:2c:b8:3f:7b:dc:6d:67:
27:df:38:a9:10:c9:5f:d8:46:27:ba:f7:c8:4c:37:
94:74:54:b9:12:46:22:9a:53:eb:03:8d:b8:f8:7b:
0b:d2:4b:84:59:98:66:5c:48:f1:3c:e2:9e:d7:da:
ec:20:c4:73:0c:7e:8a:09:d0:ec:f7:87:7f:d0:ac:
45:39:e7:78:d4:38:36:57:8a:b1:60:48:5b:97:72:
9f:f2:58:73:ca:1d:5d:5c:48:36:29:b8:d4:e1:b0:
4f:b9:b4:17:20:97:9c:09:37:9f:70:fe:77:dd:21:
e1:2c:5e:0c:0a:4c:43:75:9b:4d:29:ae:6a:83:ec:
a0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:7C:1C:E2:FA:D7:8A:DD:8D:D8:01:BE:C1:9B:45:14:8B:F7:F9:21
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/dnwc4vrXit2N2AG-wZtFFIv3-SE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
90:9e:b2:db:8b:83:7b:87:eb:0d:0a:b7:bb:e6:b2:65:1f:6d:
af:a7:fc:f7:25:56:b0:c4:49:c1:69:b3:57:ac:77:38:17:c1:
38:a6:a2:11:03:66:20:62:60:dd:03:af:3f:3f:d8:40:cc:b8:
62:5c:85:70:88:13:58:a0:fb:8b:1a:55:18:c4:05:50:f7:f3:
cb:91:ee:c9:02:da:96:9d:79:38:8e:91:c6:1d:01:90:60:01:
35:0d:da:6a:ec:a7:eb:10:c2:44:83:30:fa:45:f2:8c:4e:03:
bb:31:f8:fa:2e:ff:9d:b1:84:79:e8:e0:03:de:a9:a2:81:17:
10:e4:16:fd:ae:a7:db:a5:92:db:91:04:27:37:3f:56:cb:e5:
87:c3:8c:5c:08:9a:e7:35:d0:56:e5:9e:0d:0c:f7:b9:14:7c:
75:93:37:5a:8c:4d:49:46:96:c8:a3:b6:08:7b:c8:05:90:25:
80:7f:bb:ec:02:6f:76:e7:90:f9:f0:01:33:3e:c4:47:0b:53:
b7:e4:e9:aa:e9:72:5e:c7:5e:cb:5b:82:fd:e3:f6:af:db:44:
35:84:10:18:0e:32:36:fb:08:03:99:19:02:11:79:fa:a7:11:
56:e9:b9:5f:07:9f:a4:fc:5b:2a:ed:d7:d8:f6:b6:f3:af:8b:
ef:a0:38:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 04:43:18 2025 by rpki-client