Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/MnD3mDqsjRaSa67DS75UxLN8B54.roa
File: MnD3mDqsjRaSa67DS75UxLN8B54.roa (raw, json)
Hash identifier: I38p1w+Dr61vHhUI8jCb7Muyl02XZQngauO7o5ALOEc=
Subject key identifier: 32:70:F7:98:3A:AC:8D:16:92:6B:AE:C3:4B:BE:54:C4:B3:7C:07:9E
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 129C
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/MnD3mDqsjRaSa67DS75UxLN8B54.roa
Signing time: Tue 09 Apr 2024 14:23:55 +0000
ROA not before: Tue 09 Apr 2024 14:23:55 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4764 (0x129c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 9 14:23:55 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=3270F7983AAC8D16926BAEC34BBE54C4B37C079E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7a:1d:42:80:8c:cf:4c:96:6e:2f:a6:be:c8:
b7:76:1c:1f:33:26:a3:71:34:63:e4:fd:ad:8c:e3:
c3:8e:b0:ae:4f:63:7d:42:39:8a:dc:ba:75:29:f4:
1a:ff:89:2a:ab:84:58:2e:7e:d8:af:70:7b:b2:d1:
6d:fc:1c:28:23:9f:33:a7:d9:89:f5:54:9c:ee:15:
71:00:ff:fc:5b:3f:61:19:13:e2:04:79:39:b3:a2:
1e:cb:1a:85:0e:b8:26:c1:f5:c3:59:3e:ce:a9:9c:
3e:28:14:a7:2e:ba:92:9f:b5:41:a6:45:15:2c:46:
37:8c:c9:b8:87:cc:ae:b3:46:6a:6d:0e:65:5d:70:
74:b7:7a:64:74:60:ca:dd:c4:fa:ef:26:72:30:38:
0a:af:b2:b7:d6:82:5e:27:f8:98:c7:aa:53:ab:12:
c2:81:7c:9f:14:2a:6b:29:c3:e7:46:7f:c1:ab:a4:
bf:8f:e1:a1:de:ab:90:cb:10:17:8d:82:e9:18:73:
82:6e:d0:33:07:97:f5:c0:a8:7e:b8:27:a8:3a:73:
00:d4:fd:ec:f4:4a:5c:b9:76:6e:08:ef:85:2c:48:
14:09:a2:87:74:4c:93:27:af:e4:d6:9d:6e:6a:8c:
b5:8a:a0:dc:0c:c6:24:ed:4a:a9:bf:21:40:f5:d6:
64:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:70:F7:98:3A:AC:8D:16:92:6B:AE:C3:4B:BE:54:C4:B3:7C:07:9E
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/MnD3mDqsjRaSa67DS75UxLN8B54.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
93:99:74:3e:7d:33:de:cf:7e:0c:d7:82:1e:09:a1:12:f2:3a:
56:44:fa:c7:2d:ed:70:f3:c9:0a:e2:22:19:8a:af:5a:fc:17:
61:66:3f:e3:03:cb:88:b1:7c:d1:53:9b:45:9e:47:01:41:c1:
25:c2:7b:10:4a:2f:b2:04:0f:da:9f:ba:93:b0:00:9b:cd:1a:
62:47:17:eb:06:4b:cf:3d:5b:41:fd:ed:8d:5c:34:95:8e:69:
8e:0a:43:75:f6:b8:c8:ea:c4:5c:aa:ff:5b:58:bd:db:48:98:
ab:23:0b:c4:f6:45:b2:e8:23:af:30:7a:fe:75:0c:a4:4a:89:
61:60:b1:13:f4:a2:0a:a8:5a:2b:b9:30:4c:e4:51:4e:4a:a2:
40:8b:8c:6c:8a:4b:7c:8e:2d:6c:e1:ba:09:5b:67:78:6a:c0:
0b:19:d9:f8:5d:07:bc:1e:8b:d1:72:b5:2a:17:8b:31:be:f6:
18:64:59:d7:73:41:45:3f:59:51:b2:06:46:4c:68:68:69:51:
e1:48:55:cd:9c:76:f0:22:b2:08:13:5f:2c:89:a0:89:5d:2c:
82:9e:96:f0:a5:53:f7:f0:15:0b:76:bd:0a:66:6d:ec:9e:7d:
25:10:18:97:00:fe:74:c1:4b:21:46:48:c8:4b:ac:b4:68:8e:
7d:db:cb:f8
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEpwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MDkx
NDIzNTVaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDMyNzBGNzk4M0FBQzhE
MTY5MjZCQUVDMzRCQkU1NEM0QjM3QzA3OUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHeh1CgIzPTJZuL6a+yLd2HB8zJqNxNGPk/a2M48OOsK5PY31C
OYrcunUp9Br/iSqrhFguftivcHuy0W38HCgjnzOn2Yn1VJzuFXEA//xbP2EZE+IE
eTmzoh7LGoUOuCbB9cNZPs6pnD4oFKcuupKftUGmRRUsRjeMybiHzK6zRmptDmVd
cHS3emR0YMrdxPrvJnIwOAqvsrfWgl4n+JjHqlOrEsKBfJ8UKmspw+dGf8GrpL+P
4aHeq5DLEBeNgukYc4Ju0DMHl/XAqH64J6g6cwDU/ez0Sly5dm4I74UsSBQJood0
TJMnr+TWnW5qjLWKoNwMxiTtSqm/IUD11mSnAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUMnD3mDqsjRaSa67DS75UxLN8B54wHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL01uRDNtRHFzalJhU2E2
N0RTNzVVeExOOEI1NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAk5l0Pn0z3s9+DNeCHgmhEvI6VkT6xy3t
cPPJCuIiGYqvWvwXYWY/4wPLiLF80VObRZ5HAUHBJcJ7EEovsgQP2p+6k7AAm80a
YkcX6wZLzz1bQf3tjVw0lY5pjgpDdfa4yOrEXKr/W1i920iYqyMLxPZFsugjrzB6
/nUMpEqJYWCxE/SiCqhaK7kwTORRTkqiQIuMbIpLfI4tbOG6CVtneGrACxnZ+F0H
vB6L0XK1KheLMb72GGRZ13NBRT9ZUbIGRkxoaGlR4UhVzZx28CKyCBNfLImgiV0s
gp6W8KVT9/AVC3a9CmZt7J59JRAYlwD+dMFLIUZIyEustGiOfdvL+A==
-----END CERTIFICATE-----
Generated at Sat Apr 26 14:42:25 2025 by rpki-client