Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/850wKC4QWFgkUg0GvkUWKXA7hEw.roa
File: 850wKC4QWFgkUg0GvkUWKXA7hEw.roa (raw, json)
Hash identifier: ssFY6iFnGavPB5VDk+skXEnatEGttAYoRQ2BDKxXV74=
Subject key identifier: F3:9D:30:28:2E:10:58:58:24:52:0D:06:BE:45:16:29:70:3B:84:4C
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1D28
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/850wKC4QWFgkUg0GvkUWKXA7hEw.roa
Signing time: Tue 07 May 2024 17:24:23 +0000
ROA not before: Tue 07 May 2024 17:24:23 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7464 (0x1d28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 7 17:24:23 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F39D30282E10585824520D06BE451629703B844C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fc:e3:4e:20:61:fa:ba:4b:c2:ae:68:09:00:
89:4d:af:92:ff:d1:6b:e1:48:b6:c4:0e:01:e0:b7:
7c:41:3b:29:02:bc:70:c3:b2:14:78:c9:37:5a:a0:
b3:aa:2a:70:65:37:f6:2d:0d:94:1d:44:86:fd:b1:
dd:7e:97:bb:83:02:6c:40:bd:47:ad:6d:16:2f:81:
34:20:32:ca:ec:12:7f:8b:49:6f:15:09:c6:c9:f7:
da:30:37:c8:b2:f4:c1:49:cf:b9:c8:1e:d2:5b:8e:
1c:0a:b7:99:d5:e3:7a:82:f9:35:81:2b:94:fe:3b:
d4:90:80:28:54:c4:81:d0:72:ff:1a:3b:87:cc:2d:
88:d4:de:00:96:77:48:f7:20:86:ca:86:d1:e2:46:
a3:ea:0a:97:84:51:fa:74:0d:67:6c:6b:de:4c:6b:
75:f5:48:33:d6:b3:f2:46:41:32:35:c3:79:0d:78:
d2:1e:00:98:68:d5:ab:3c:b9:15:8d:62:02:65:c3:
e2:d8:03:78:fb:85:c7:b5:8b:cc:e8:52:c3:8e:87:
45:fc:08:19:9a:5b:39:37:f4:4a:d1:ab:b0:cc:ce:
ac:69:c6:7e:8f:c5:3a:e6:47:97:a3:aa:71:ac:a6:
c2:6e:5c:57:39:be:5e:d5:b9:9c:96:92:0b:6f:49:
1a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:9D:30:28:2E:10:58:58:24:52:0D:06:BE:45:16:29:70:3B:84:4C
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/850wKC4QWFgkUg0GvkUWKXA7hEw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2f:9e:8d:87:51:93:5c:f9:95:4a:72:0e:61:71:36:ed:78:39:
e0:01:95:d1:b7:96:76:e7:a2:ec:3f:db:98:7d:6b:ab:39:b9:
3e:a4:de:ba:7c:1b:62:ce:5e:ec:21:62:8f:79:47:b2:d9:db:
5f:ca:f8:f2:b7:d8:85:75:88:11:e3:1a:13:db:b4:d0:a9:f4:
cc:cd:c3:f3:48:97:11:b7:85:ee:7f:95:7d:ba:58:8f:ad:33:
29:79:eb:5d:8f:b9:39:46:de:f4:31:a5:45:47:59:a3:95:7f:
8b:15:b8:80:5c:19:84:33:eb:b2:d6:f2:e0:2b:cc:8c:ea:9b:
26:fc:30:05:0c:f8:c6:04:ee:38:6e:8b:cf:cd:53:a8:4e:d0:
a8:b4:a9:9e:77:20:86:3e:1b:dc:1b:90:c7:b9:ef:f9:b6:8b:
91:91:a5:52:a8:3a:23:98:63:5d:da:66:73:39:86:74:02:ab:
f6:79:9e:de:f4:8a:d2:5a:c9:a7:ba:2a:c2:a4:0d:b6:4c:4e:
b8:ae:11:fc:64:65:a4:1b:67:03:14:78:08:16:cd:d1:0c:80:
8f:c1:87:65:f3:1b:7d:3c:f5:7c:a8:b4:17:07:b3:1a:b2:24:
1f:d6:f4:0f:62:db:e4:4e:b6:49:fa:7c:b9:9c:cb:84:df:01:
d3:12:ff:11
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICHSgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA1MDcx
NzI0MjNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEYzOUQzMDI4MkUxMDU4
NTgyNDUyMEQwNkJFNDUxNjI5NzAzQjg0NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+/ONOIGH6ukvCrmgJAIlNr5L/0WvhSLbEDgHgt3xBOykCvHDD
shR4yTdaoLOqKnBlN/YtDZQdRIb9sd1+l7uDAmxAvUetbRYvgTQgMsrsEn+LSW8V
CcbJ99owN8iy9MFJz7nIHtJbjhwKt5nV43qC+TWBK5T+O9SQgChUxIHQcv8aO4fM
LYjU3gCWd0j3IIbKhtHiRqPqCpeEUfp0DWdsa95Ma3X1SDPWs/JGQTI1w3kNeNIe
AJho1as8uRWNYgJlw+LYA3j7hce1i8zoUsOOh0X8CBmaWzk39ErRq7DMzqxpxn6P
xTrmR5ejqnGspsJuXFc5vl7VuZyWkgtvSRoHAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU850wKC4QWFgkUg0GvkUWKXA7hEwwHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzLzg1MHdLQzRRV0Zna1Vn
MEd2a1VXS1hBN2hFdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAL56Nh1GTXPmVSnIOYXE27Xg54AGV0beW
duei7D/bmH1rqzm5PqTeunwbYs5e7CFij3lHstnbX8r48rfYhXWIEeMaE9u00Kn0
zM3D80iXEbeF7n+VfbpYj60zKXnrXY+5OUbe9DGlRUdZo5V/ixW4gFwZhDPrstby
4CvMjOqbJvwwBQz4xgTuOG6Lz81TqE7QqLSpnncghj4b3BuQx7nv+baLkZGlUqg6
I5hjXdpmczmGdAKr9nme3vSK0lrJp7oqwqQNtkxOuK4R/GRlpBtnAxR4CBbN0QyA
j8GHZfMbfTz1fKi0FwezGrIkH9b0D2Lb5E62Sfp8uZzLhN8B0xL/EQ==
-----END CERTIFICATE-----
Generated at Sat Apr 26 14:39:28 2025 by rpki-client