Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/68Ux9TBfcY8kl8djiFA6CrAikL4.roa
File: 68Ux9TBfcY8kl8djiFA6CrAikL4.roa (raw, json)
Hash identifier: 9ZG6blwzud8y8AlaDA3bkfR5b9sIXyM8QC+pZlN13nA=
Subject key identifier: EB:C5:31:F5:30:5F:71:8F:24:97:C7:63:88:50:3A:0A:B0:22:90:BE
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1A52
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/68Ux9TBfcY8kl8djiFA6CrAikL4.roa
Signing time: Tue 30 Apr 2024 03:53:57 +0000
ROA not before: Tue 30 Apr 2024 03:53:57 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6738 (0x1a52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 30 03:53:57 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=EBC531F5305F718F2497C76388503A0AB02290BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:60:66:5e:45:fd:b6:af:de:28:8d:c5:19:31:
0f:af:d2:38:66:9a:db:d3:90:b8:f1:44:26:ec:6f:
ff:fa:37:9d:70:d5:53:9a:b1:9c:c3:4d:0e:c9:dd:
e3:f9:de:69:d6:22:e6:50:b2:c5:28:aa:e8:d7:9f:
67:4b:79:ef:4f:6f:b8:e3:4d:ef:39:c9:f9:cd:07:
8d:06:b7:37:64:e1:da:ea:cf:01:80:5f:66:ff:6a:
43:65:c9:f4:1b:6a:73:c6:07:fb:4d:ab:0e:45:09:
11:b9:9b:6f:9d:63:3f:a4:46:82:ab:74:e4:ce:7d:
27:97:11:e9:a6:54:5b:00:0b:49:c8:db:6b:6f:e1:
90:10:c1:ad:cf:53:cc:65:50:fa:74:f3:87:54:88:
21:df:20:08:f8:a3:c2:af:a5:25:3f:7d:b4:6b:7b:
69:7d:59:96:b9:ba:72:70:c8:35:42:7e:d9:98:7c:
40:74:6f:53:7e:44:88:27:92:a5:20:82:c9:df:9e:
da:ec:a1:24:43:b3:bb:f9:d3:66:2e:77:d4:0e:3c:
87:83:7a:c1:87:f4:a8:f7:42:bd:07:cf:49:3c:95:
85:dd:34:e5:d0:4c:ea:ff:06:f5:7d:29:ec:06:ad:
ac:4a:6c:3f:11:7b:c3:31:a4:22:cf:34:d5:50:40:
16:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C5:31:F5:30:5F:71:8F:24:97:C7:63:88:50:3A:0A:B0:22:90:BE
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/68Ux9TBfcY8kl8djiFA6CrAikL4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
57:88:91:2f:cc:6e:ad:48:34:32:69:24:4b:c2:b9:20:f3:a7:
fb:a3:e7:e3:ca:39:ba:77:8c:76:33:5c:02:f7:e3:06:cc:89:
7b:62:0b:ee:1e:9c:11:66:d4:ff:41:f4:33:c9:aa:1b:6c:0a:
77:5f:19:65:97:57:f4:70:35:06:0d:50:18:47:75:67:a3:34:
f4:be:ec:c9:8d:0a:d3:6d:cd:69:91:75:35:66:76:f7:f7:f8:
94:32:82:fb:39:77:e2:2f:41:96:6b:b6:6f:62:99:64:2c:60:
5f:7e:d8:75:f3:90:8b:c4:d1:d3:6e:92:ba:68:46:9c:45:7b:
9c:92:58:71:e3:08:13:6a:33:93:e7:93:b7:90:59:e4:9b:55:
f5:9b:bd:45:74:23:f7:b2:8b:5a:e6:93:cd:45:bc:bc:07:2e:
51:f6:e0:6f:08:8f:15:f3:4a:93:f6:d3:2b:74:a3:48:2f:af:
c4:87:cf:90:52:08:30:e3:71:c5:3a:70:b7:97:3b:1a:5e:69:
44:cd:6a:2a:94:78:93:bc:62:af:33:9c:7e:a1:77:ec:85:98:
48:bc:44:95:b0:06:83:f4:02:2f:88:a1:df:56:4c:00:44:3a:
e5:78:3b:e7:02:48:84:f2:64:e3:d6:95:f7:34:02:80:c9:af:
5a:25:3e:5b
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICGlIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MzAw
MzUzNTdaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEVCQzUzMUY1MzA1Rjcx
OEYyNDk3Qzc2Mzg4NTAzQTBBQjAyMjkwQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUYGZeRf22r94ojcUZMQ+v0jhmmtvTkLjxRCbsb//6N51w1VOa
sZzDTQ7J3eP53mnWIuZQssUoqujXn2dLee9Pb7jjTe85yfnNB40Gtzdk4drqzwGA
X2b/akNlyfQbanPGB/tNqw5FCRG5m2+dYz+kRoKrdOTOfSeXEemmVFsAC0nI22tv
4ZAQwa3PU8xlUPp084dUiCHfIAj4o8KvpSU/fbRre2l9WZa5unJwyDVCftmYfEB0
b1N+RIgnkqUggsnfntrsoSRDs7v502Yud9QOPIeDesGH9Kj3Qr0Hz0k8lYXdNOXQ
TOr/BvV9KewGraxKbD8Re8MxpCLPNNVQQBaHAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU68Ux9TBfcY8kl8djiFA6CrAikL4wHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzLzY4VXg5VEJmY1k4a2w4
ZGppRkE2Q3JBaWtMNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAV4iRL8xurUg0MmkkS8K5IPOn+6Pn48o5
uneMdjNcAvfjBsyJe2IL7h6cEWbU/0H0M8mqG2wKd18ZZZdX9HA1Bg1QGEd1Z6M0
9L7syY0K023NaZF1NWZ29/f4lDKC+zl34i9Blmu2b2KZZCxgX37YdfOQi8TR026S
umhGnEV7nJJYceMIE2ozk+eTt5BZ5JtV9Zu9RXQj97KLWuaTzUW8vAcuUfbgbwiP
FfNKk/bTK3SjSC+vxIfPkFIIMONxxTpwt5c7Gl5pRM1qKpR4k7xirzOcfqF37IWY
SLxElbAGg/QCL4ih31ZMAEQ65Xg75wJIhPJk49aV9zQCgMmvWiU+Ww==
-----END CERTIFICATE-----
Generated at Sat Apr 26 14:39:30 2025 by rpki-client