Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/qD2rFtsSg0xpfIlLYFX7cT8-l2g.roa
File: qD2rFtsSg0xpfIlLYFX7cT8-l2g.roa (raw, json)
Hash identifier: vuYD6U5Jk1LOfayiasN5Lk05RpGdmjq9e5sVu8QFh/Y=
Subject key identifier: A8:3D:AB:16:DB:12:83:4C:69:7C:89:4B:60:55:FB:71:3F:3E:97:68
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1B14
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/qD2rFtsSg0xpfIlLYFX7cT8-l2g.roa
Signing time: Thu 02 May 2024 04:24:09 +0000
ROA not before: Thu 02 May 2024 04:24:09 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6932 (0x1b14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 2 04:24:09 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=A83DAB16DB12834C697C894B6055FB713F3E9768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c4:e1:f5:2f:29:49:ff:8b:f2:f2:1e:9d:f5:
3d:bd:a4:9b:0b:63:01:5d:6f:fc:2d:8a:c9:69:0e:
c2:ca:55:ef:91:02:45:01:2f:f0:0c:af:65:ff:29:
8f:bb:35:e9:e8:e4:fe:69:93:e4:12:da:01:1c:67:
34:7a:e9:af:e0:fc:3e:f6:3a:d9:41:9a:35:82:cf:
e1:5e:80:c5:e1:29:6a:5e:9e:ca:b9:a2:11:c6:58:
ca:1e:1c:2e:d6:74:fe:90:c9:64:46:be:be:c3:c8:
71:f6:eb:82:73:11:b3:8e:02:96:91:ff:1d:78:39:
4c:dc:c6:d4:2d:d8:62:96:00:9f:60:e1:7d:2e:d1:
3b:4f:9b:89:b9:ba:f8:17:75:12:90:21:99:e1:cb:
77:2f:e5:52:d5:23:b0:43:77:c0:49:8d:a2:33:f0:
c9:df:e4:79:5d:bc:ba:5e:b1:11:0c:22:3c:24:38:
6d:aa:86:bc:b1:8c:d7:f6:d9:c8:53:a8:bc:5c:89:
53:03:ae:85:4a:48:02:2b:6f:a1:90:f9:9c:82:e0:
99:eb:42:81:5d:79:24:56:f0:49:ea:ee:b2:6e:19:
06:ef:b5:3b:e1:f0:e9:72:53:55:d0:bd:12:e9:84:
b4:75:d2:1f:e1:87:6b:61:03:81:bb:ce:8c:a4:48:
65:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:3D:AB:16:DB:12:83:4C:69:7C:89:4B:60:55:FB:71:3F:3E:97:68
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/qD2rFtsSg0xpfIlLYFX7cT8-l2g.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c8:b7:7c:a4:5c:ea:0d:c6:e5:9d:99:bd:71:2e:07:64:65:79:
e5:5e:06:ce:e1:dc:d9:1f:68:8a:f1:66:9b:7f:00:29:bd:51:
b6:99:f3:bc:24:3c:e1:a1:06:5e:b7:55:65:7a:70:a4:2e:73:
f0:db:ec:b0:6e:54:d0:6f:dc:b5:3a:62:2b:f0:c8:32:db:65:
2f:23:85:48:a8:39:5f:fa:fe:da:7f:8f:7c:02:ac:3e:19:52:
a6:78:ee:c3:1f:79:b5:ef:da:b2:c5:f4:36:1a:15:27:76:ad:
82:d4:94:24:d4:f0:53:13:84:74:98:69:26:9e:55:06:0c:a4:
9c:f6:37:ee:9b:55:c0:43:af:57:92:9e:ba:5e:b8:50:18:43:
0d:51:1a:d1:ba:f1:0d:98:68:5a:56:b2:dc:74:8e:d8:18:79:
57:11:12:e2:c6:6e:40:ea:be:c6:5a:1e:aa:c9:a8:6c:16:eb:
49:d9:a1:8f:2d:f0:f0:d5:ed:2c:b7:51:c4:74:b6:6b:34:87:
3a:77:92:98:a9:3d:8c:43:42:73:b9:ac:ad:20:24:74:56:b3:
93:dc:26:61:de:f8:df:3d:05:d1:92:b5:02:cc:e1:99:48:44:
ca:ac:f7:d2:af:67:f7:e6:26:52:c6:cb:8d:70:a5:6d:e8:c2:
6c:ab:a7:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 04:42:12 2025 by rpki-client