Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/U2mUg-dm8hElyZqUOV7f6Yc0pdk.roa
File: U2mUg-dm8hElyZqUOV7f6Yc0pdk.roa (raw, json)
Hash identifier: nPRQ/d2ZZLgv4s9yqIfVPWvGwxVaF5q4mnQKK8OwzvQ=
Subject key identifier: 53:69:94:83:E7:66:F2:11:25:C9:9A:94:39:5E:DF:E9:87:34:A5:D9
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1A42
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/U2mUg-dm8hElyZqUOV7f6Yc0pdk.roa
Signing time: Mon 29 Apr 2024 23:53:55 +0000
ROA not before: Mon 29 Apr 2024 23:53:55 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6722 (0x1a42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 29 23:53:55 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=53699483E766F21125C99A94395EDFE98734A5D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a7:62:c1:fc:30:83:77:41:de:7c:07:b0:43:
8c:66:02:c6:8a:30:64:4d:cc:94:01:95:7e:dd:ef:
a6:91:1b:d3:8a:36:6e:c4:79:37:31:8f:51:5b:ff:
00:03:fb:d4:f1:b1:7f:da:c2:98:00:c4:40:a4:8e:
ed:06:91:8e:36:6f:0d:56:28:cb:9b:c7:34:b0:83:
d9:65:dc:76:19:4b:80:00:e8:03:a8:f9:c4:ba:f3:
41:a2:ff:2b:3b:d9:55:c9:6b:f6:31:14:c4:97:e5:
fe:79:ab:f0:3b:30:c9:15:0a:c8:65:3e:3d:f0:a1:
47:33:0b:df:37:34:e5:16:d3:46:f6:8b:38:47:3c:
6c:c7:4d:31:9d:56:6c:61:9b:d2:3f:e2:66:bc:7b:
3f:f3:1e:b9:25:f3:ba:4a:ab:01:15:f4:3c:59:94:
f9:f3:53:26:11:0a:2e:15:c0:71:ba:dc:43:fc:e5:
22:97:68:30:1d:ba:2b:f3:55:a0:83:72:cd:48:a1:
5f:76:e2:4c:fa:36:97:66:de:0b:b9:d9:14:f7:74:
d1:fa:19:78:9b:2a:e5:9d:0e:69:22:fb:85:45:e0:
b1:47:50:4f:32:89:5d:23:dd:ba:7b:0f:88:b7:7b:
dd:ca:e9:da:c1:06:5c:e3:33:94:30:50:b9:ff:e4:
32:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:69:94:83:E7:66:F2:11:25:C9:9A:94:39:5E:DF:E9:87:34:A5:D9
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/U2mUg-dm8hElyZqUOV7f6Yc0pdk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
26:42:ab:0e:0a:7a:e9:ce:c3:cd:f7:97:04:33:29:2f:8b:10:
73:41:24:31:ba:fe:e0:f8:c2:cb:eb:d7:75:59:9e:09:1d:e8:
cb:92:8f:26:8d:3c:24:55:91:1d:02:54:d3:63:c2:65:f8:7e:
9d:9b:e9:13:25:48:6d:51:bc:58:09:d6:84:1f:70:1c:e1:db:
05:ee:60:a2:fe:36:bc:a1:34:f4:ac:eb:1b:e9:d6:8d:ce:93:
e3:bb:43:04:27:16:ff:7d:c5:10:2d:27:43:57:d9:52:a0:91:
68:0b:40:a9:cd:4a:4d:5a:0b:cd:6f:e9:a9:c9:30:13:a3:5c:
21:b0:9a:ab:31:04:1b:68:c2:bc:79:d7:9f:bb:a6:25:c6:b6:
39:30:05:da:d5:be:65:a0:5c:92:eb:4c:a4:59:a5:97:aa:67:
c5:8a:99:6b:6f:3c:61:d0:cb:52:ea:37:ed:1d:35:a2:fc:6c:
5d:64:32:33:eb:a8:8a:ad:12:47:13:16:2c:16:7f:6b:6a:04:
8c:b6:92:e0:6d:65:cc:bb:2d:f5:54:c5:0c:50:d8:44:e0:9c:
31:b4:f2:8f:4d:27:69:03:a2:73:aa:73:c5:57:70:ef:f8:bd:
45:cf:c2:bd:a8:a6:ce:68:08:64:d4:12:37:47:3c:03:57:a4:
08:79:ab:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 13:54:45 2025 by rpki-client