Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/rOkJDnEuyK9cUtItBixEm7htgVc.roa
File: rOkJDnEuyK9cUtItBixEm7htgVc.roa (raw, json)
Hash identifier: 9HtP23J9eKnQ41iKkkET9muzKGcA3X1VfpZXZuFD31Y=
Subject key identifier: AC:E9:09:0E:71:2E:C8:AF:5C:52:D2:2D:06:2C:44:9B:B8:6D:81:57
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 11E2
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/rOkJDnEuyK9cUtItBixEm7htgVc.roa
Signing time: Sun 07 Apr 2024 15:52:58 +0000
ROA not before: Sun 07 Apr 2024 15:52:58 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4578 (0x11e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 7 15:52:58 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=ACE9090E712EC8AF5C52D22D062C449BB86D8157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:80:67:b8:e5:6c:13:b3:47:6d:29:40:27:e0:
31:e6:5b:02:45:f7:32:9a:53:08:cb:af:bf:85:c9:
c5:60:45:3d:39:49:8f:26:95:72:a3:38:64:50:46:
f7:e8:ab:6f:4e:ad:53:7d:f4:bc:7c:44:a2:26:09:
37:0a:47:40:88:56:20:3f:98:39:75:80:fc:b8:17:
5f:df:49:5a:9b:e6:9c:98:59:31:2e:7a:ad:92:e1:
4c:1d:d2:e4:83:76:22:de:05:5d:57:c6:81:d4:3b:
fb:3b:26:4d:3d:49:8b:05:d3:de:7e:cd:c0:3e:56:
05:b4:fa:37:a2:85:92:89:f1:ea:b4:50:9c:3a:83:
76:8f:ee:6b:90:b4:d9:fe:a7:87:ee:6f:0c:6e:da:
f7:da:a7:6c:bf:fc:32:b3:24:9f:a0:de:2e:59:b6:
1b:6a:37:8c:28:f5:30:0b:db:d9:33:1f:05:f4:c7:
fb:91:ff:b0:e3:84:ae:66:4f:9c:e2:93:30:5e:79:
c3:3f:a2:2b:34:b1:6f:b1:c8:31:2d:d8:17:eb:cd:
3f:fd:40:0b:01:6b:55:31:8c:74:61:da:51:8a:fb:
f2:69:96:1b:98:45:0e:ca:f1:2d:85:8b:1a:38:b0:
e1:28:bd:fa:b0:63:04:0d:4f:c5:0a:63:f0:94:dc:
88:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:E9:09:0E:71:2E:C8:AF:5C:52:D2:2D:06:2C:44:9B:B8:6D:81:57
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/rOkJDnEuyK9cUtItBixEm7htgVc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0b:11:22:e3:12:71:c5:47:d7:c8:c2:8a:38:36:ff:f1:49:63:
66:93:3b:6c:2d:80:25:85:64:1f:ea:e9:04:0c:84:d7:86:39:
a4:81:bc:31:3f:4c:84:0c:ba:9f:0e:48:b4:28:5c:79:c0:94:
21:8c:80:e1:89:e5:ec:4e:3c:16:59:ef:2d:45:07:64:9d:95:
c0:91:88:e7:59:b3:ce:48:97:04:ad:06:a1:75:43:17:7a:39:
ba:7b:e7:0e:d8:00:05:1d:a0:aa:c0:96:51:5a:91:e9:b4:ab:
3a:d5:62:83:65:bd:ce:09:53:8e:49:1b:a2:2a:b6:e5:f5:8a:
8c:f0:92:08:c4:03:5e:a8:34:e1:6c:d9:dc:d0:25:2c:98:88:
1f:78:2b:4e:c6:b7:94:c3:3a:01:4a:60:6d:45:ee:cf:48:d2:
f0:b0:1d:8f:47:f8:9c:73:d5:5d:24:9a:c6:94:f6:b7:2c:cb:
54:74:98:c7:6c:b0:a6:5d:9d:7c:b3:38:f4:aa:43:37:61:53:
ab:58:84:ec:99:bd:b0:b1:74:20:56:85:a2:fe:0f:06:9c:a9:
27:28:07:54:9c:92:32:49:d5:94:a9:55:32:4b:4c:cd:6f:71:
da:c1:69:34:09:a7:ea:d3:99:92:b0:e8:51:19:f6:c0:8d:78:
1b:e5:a5:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 04:45:24 2025 by rpki-client