Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/ioX4um5Jel3_akWbOpVwx7miPlg.roa
File: ioX4um5Jel3_akWbOpVwx7miPlg.roa (raw, json)
Hash identifier: 9TdvvrN+t7e9nDD/dZfIXzL9v0kK0M5QAoiF3LdGvz8=
Subject key identifier: 8A:85:F8:BA:6E:49:7A:5D:FF:6A:45:9B:3A:95:70:C7:B9:A2:3E:58
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1AB2
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/ioX4um5Jel3_akWbOpVwx7miPlg.roa
Signing time: Wed 01 May 2024 03:54:00 +0000
ROA not before: Wed 01 May 2024 03:54:00 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6834 (0x1ab2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 1 03:54:00 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=8A85F8BA6E497A5DFF6A459B3A9570C7B9A23E58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:22:30:ba:1d:8d:d9:ba:f8:ca:e0:d4:6d:1f:
e9:20:6f:45:08:63:18:ac:30:62:1b:a8:ec:67:23:
dc:e0:15:28:f5:d3:b3:11:ce:90:37:00:b3:90:ba:
5e:9d:9c:75:05:49:c7:25:93:12:c2:21:bb:d0:53:
92:a6:d7:17:40:62:82:28:3a:cc:ef:35:87:4e:c6:
13:ec:c0:8b:f2:f8:57:d4:59:ad:2e:26:a7:80:8c:
6f:b6:f5:c6:72:0b:41:51:be:cf:35:c0:7d:6f:b0:
98:ce:aa:61:bf:a9:ad:94:f8:83:83:27:30:2b:5d:
f2:c3:f8:62:67:22:94:c9:7c:26:65:09:f2:57:22:
2d:7d:97:d7:bb:6f:bf:a6:08:ce:c5:59:69:a2:2d:
61:9e:f1:d3:80:6d:63:f9:61:4c:bc:8e:8a:b9:3c:
3d:ea:a5:d9:57:6b:bd:65:de:27:37:18:b5:c7:e2:
02:8e:f1:a0:47:1c:97:30:28:26:e4:c5:b5:2b:64:
3c:a6:a9:cd:7e:61:0f:bd:7f:a5:49:23:6d:36:68:
b4:ea:98:28:bf:1b:b6:4e:57:76:d2:55:0e:af:73:
6a:df:bd:f2:aa:7a:8a:c8:19:2d:05:f0:4c:99:2e:
a3:46:56:02:c0:35:7f:54:5c:37:7e:50:69:99:ba:
1e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:85:F8:BA:6E:49:7A:5D:FF:6A:45:9B:3A:95:70:C7:B9:A2:3E:58
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/ioX4um5Jel3_akWbOpVwx7miPlg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
d9:97:5f:64:17:8d:64:20:f8:2e:c9:ad:e1:7c:1b:b8:25:ac:
4e:81:01:9d:74:f8:70:e3:06:b7:85:60:87:2f:2b:9f:a5:99:
8e:04:e9:db:b1:f3:b7:6d:1f:02:8a:e0:d6:fe:fb:bb:1a:76:
bb:1a:22:6a:03:50:f3:03:a4:2a:05:9f:91:ba:68:15:03:f6:
c3:c0:43:aa:6a:ab:56:0b:d6:90:5d:be:38:b6:ec:02:10:49:
27:ce:fb:4c:08:56:07:ed:47:ad:6e:b5:b7:38:32:2e:3d:a4:
86:9f:a7:8f:c9:da:80:9d:d5:b2:cb:c5:90:45:90:60:9d:4b:
33:1e:37:71:cd:c6:23:b5:17:f6:70:2c:90:db:a1:b8:b3:d7:
20:78:86:e5:b0:38:d5:22:70:db:84:55:cf:49:ea:8b:11:ea:
52:f7:02:91:90:9d:bc:75:e7:bf:4a:eb:bd:31:8d:a1:bd:e8:
7f:cd:7e:b3:61:cb:a6:56:7f:84:a9:ca:d9:26:ad:e5:86:85:
2a:29:34:b6:46:58:77:c6:7c:8c:c6:39:d3:62:d1:7d:cc:9d:
31:42:c9:98:43:f7:4f:0e:87:23:45:54:18:b8:46:00:4f:4e:
f5:a9:83:54:c5:9c:cd:e1:2b:4d:6e:68:8f:95:47:5a:2e:9d:
ab:46:a2:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 10:58:21 2025 by rpki-client