Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/rJRewXigqKejGRBgWB6pAwf_UPU.roa
File: rJRewXigqKejGRBgWB6pAwf_UPU.roa (raw, json)
Hash identifier: 3bQdo0WICoTxQ2DI0qRKPwDc0bH02AqcEc4+Wq1lGT0=
Subject key identifier: AC:94:5E:C1:78:A0:A8:A7:A3:19:10:60:58:1E:A9:03:07:FF:50:F5
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1BCC
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/rJRewXigqKejGRBgWB6pAwf_UPU.roa
Signing time: Sat 04 May 2024 02:24:16 +0000
ROA not before: Sat 04 May 2024 02:24:16 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7116 (0x1bcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 4 02:24:16 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=AC945EC178A0A8A7A3191060581EA90307FF50F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:04:43:3a:72:35:f0:a0:98:e0:7c:a3:05:47:
aa:51:c4:c1:d8:23:0a:0c:ff:89:cb:42:11:07:54:
59:cd:70:1d:bb:f5:f8:82:f6:c1:98:e8:ff:6f:ee:
d4:b4:15:4f:e5:48:58:46:bd:19:1c:4b:53:e1:66:
72:9c:e6:6d:1c:7e:d9:3e:f3:58:dc:67:4a:e2:ea:
90:28:9e:f8:86:ec:a0:34:8e:25:cd:d4:a0:9f:7f:
71:ec:61:fe:47:26:7f:10:24:8e:45:d6:36:3d:44:
58:19:03:6c:65:46:f2:a8:0d:49:15:66:8e:93:a8:
c6:8e:37:be:f9:2e:77:3f:18:55:6c:e1:c4:05:7c:
e7:f0:da:3a:5c:09:aa:90:76:a3:14:79:bf:6c:89:
d7:c4:7a:60:84:70:db:be:cb:a2:45:3b:03:94:c2:
40:cd:be:08:5c:61:6e:1b:18:2b:fc:9a:dd:5a:28:
a9:10:a5:ba:87:3a:fa:1f:36:89:43:93:de:1a:ef:
95:23:a3:fd:85:2b:9b:cd:19:bf:cc:e9:03:b8:01:
df:7b:09:73:b7:cf:87:89:ec:23:a0:ae:c7:9d:46:
39:6d:98:3d:c2:37:df:33:63:18:64:bb:89:bf:7f:
68:a5:ec:43:0c:87:54:da:38:61:8a:35:e2:cc:81:
b7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:94:5E:C1:78:A0:A8:A7:A3:19:10:60:58:1E:A9:03:07:FF:50:F5
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/rJRewXigqKejGRBgWB6pAwf_UPU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9a:b3:6c:7b:b8:8c:36:80:a6:b9:38:17:47:ae:e7:bb:54:57:
2d:1f:69:79:66:9e:99:cb:41:6f:dc:6d:78:65:d0:ed:16:ab:
2a:db:68:09:7b:9b:e9:2c:e3:e8:49:03:e7:f2:74:94:f7:21:
9d:00:7f:32:e9:58:cf:44:08:7d:ae:ef:53:af:aa:b9:8f:19:
71:5e:e3:1b:d5:9b:f3:0e:ff:3c:9a:59:2f:9a:74:5d:11:6b:
fe:19:65:2b:b3:23:17:6f:01:0a:5e:e6:de:5b:21:45:4d:c7:
d0:97:85:e7:ce:63:16:de:b5:8e:42:75:f8:46:e0:82:bc:f3:
a8:06:77:2a:c1:18:ff:ba:fa:0f:af:27:d9:2c:4a:c1:73:2a:
92:85:d7:48:2f:94:69:0f:7c:b0:52:44:21:26:f9:e3:4b:2d:
77:e3:d9:80:d0:71:e4:1e:6b:f9:ae:64:b5:e4:ea:ea:f1:c3:
55:b4:00:79:bd:83:cc:fe:13:4d:e9:cc:34:a7:fa:dd:20:8a:
2b:08:2b:88:78:8d:08:c7:f9:7f:a4:ce:68:87:73:6d:da:d5:
ce:5c:0c:77:f5:f3:f2:e9:18:63:88:b6:16:95:4c:85:b8:f9:
0a:bd:5c:42:72:4d:c0:91:cb:d1:54:5c:c7:01:ca:19:33:93:
dd:b6:24:2e
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICG8wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA1MDQw
MjI0MTZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEFDOTQ1RUMxNzhBMEE4
QTdBMzE5MTA2MDU4MUVBOTAzMDdGRjUwRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdBEM6cjXwoJjgfKMFR6pRxMHYIwoM/4nLQhEHVFnNcB279fiC
9sGY6P9v7tS0FU/lSFhGvRkcS1PhZnKc5m0cftk+81jcZ0ri6pAonviG7KA0jiXN
1KCff3HsYf5HJn8QJI5F1jY9RFgZA2xlRvKoDUkVZo6TqMaON775Lnc/GFVs4cQF
fOfw2jpcCaqQdqMUeb9sidfEemCEcNu+y6JFOwOUwkDNvghcYW4bGCv8mt1aKKkQ
pbqHOvofNolDk94a75Ujo/2FK5vNGb/M6QO4Ad97CXO3z4eJ7COgrsedRjltmD3C
N98zYxhku4m/f2il7EMMh1TaOGGKNeLMgbeZAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUrJRewXigqKejGRBgWB6pAwf/UPUwHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL3JKUmV3WGlncUtlakdS
QmdXQjZwQXdmX1VQVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAmrNse7iMNoCmuTgXR67nu1RXLR9peWae
mctBb9xteGXQ7RarKttoCXub6Szj6EkD5/J0lPchnQB/MulYz0QIfa7vU6+quY8Z
cV7jG9Wb8w7/PJpZL5p0XRFr/hllK7MjF28BCl7m3lshRU3H0JeF585jFt61jkJ1
+EbggrzzqAZ3KsEY/7r6D68n2SxKwXMqkoXXSC+UaQ98sFJEISb540std+PZgNBx
5B5r+a5kteTq6vHDVbQAeb2DzP4TTenMNKf63SCKKwgriHiNCMf5f6TOaIdzbdrV
zlwMd/Xz8ukYY4i2FpVMhbj5Cr1cQnJNwJHL0VRcxwHKGTOT3bYkLg==
-----END CERTIFICATE-----
Generated at Sun May 18 04:43:17 2025 by rpki-client