Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/U9GSlG8HHjfve0YJqZZfG5dkjCg.roa
File: U9GSlG8HHjfve0YJqZZfG5dkjCg.roa (raw, json)
Hash identifier: bOpYFavLWkj1w1odsGr1XflHGIYt4xOUmNS4+FsnelE=
Subject key identifier: 53:D1:92:94:6F:07:1E:37:EF:7B:46:09:A9:96:5F:1B:97:64:8C:28
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 11EA
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/U9GSlG8HHjfve0YJqZZfG5dkjCg.roa
Signing time: Sun 07 Apr 2024 17:52:56 +0000
ROA not before: Sun 07 Apr 2024 17:52:56 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4586 (0x11ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 7 17:52:56 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=53D192946F071E37EF7B4609A9965F1B97648C28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b5:76:65:ec:6f:66:18:be:41:db:48:13:6e:
7f:cc:3b:a0:93:97:1e:b7:17:cc:1a:f2:85:38:fd:
90:40:bd:7e:1f:84:e0:f7:15:5a:f1:cc:27:06:44:
9f:51:9d:e9:e5:fd:cd:99:1b:bb:6c:a9:d5:d9:a9:
38:00:9b:07:bd:23:fe:c2:f0:ac:65:bd:ff:ef:d1:
db:bf:7a:0d:dd:6f:ec:8d:a9:39:6d:4f:76:56:49:
fa:0a:c4:d8:c8:19:fe:5e:26:c8:54:67:26:05:cb:
8b:b1:6c:4f:a0:c8:46:97:cb:28:1c:5a:36:49:b4:
56:f8:c7:c2:87:36:fb:b1:21:78:37:7c:fb:a2:a9:
d5:0b:4d:d5:5f:05:12:a4:5f:0b:a2:04:dc:1b:a4:
42:7a:88:38:cb:9a:b3:11:7c:4b:b3:0f:e1:0d:5d:
15:49:69:3b:8a:de:4d:b2:c7:12:c6:29:a2:a5:a0:
a9:be:a0:0f:4a:f6:83:fa:d0:57:22:5f:ac:dd:ca:
23:bf:a8:99:27:67:0b:d4:4d:20:6b:8d:8c:1f:bd:
e3:9c:d7:d6:bb:c4:dd:58:83:f7:34:93:26:ed:c2:
b0:0d:2c:3a:c1:9b:67:02:a9:21:49:1b:6d:6a:06:
c2:f7:bf:8d:0a:d8:6b:93:e1:f9:57:53:81:25:8c:
af:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D1:92:94:6F:07:1E:37:EF:7B:46:09:A9:96:5F:1B:97:64:8C:28
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/U9GSlG8HHjfve0YJqZZfG5dkjCg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7f:09:23:68:a3:67:42:b4:ac:f4:e7:40:71:de:22:f2:b1:94:
b6:ad:7f:69:fb:e8:b1:3c:09:0a:ca:b0:16:2a:5b:14:86:47:
d4:9b:9e:61:36:aa:61:5a:e2:8c:3e:0c:46:ad:87:9a:3e:da:
a4:51:a6:55:bc:0e:2a:f0:31:37:5c:7c:c0:22:c4:2e:c9:de:
79:17:72:a5:cc:b7:47:dd:68:f5:cd:fa:0a:66:4d:bd:1a:78:
40:25:be:03:85:8b:21:f9:73:82:55:4d:6f:e8:35:97:bb:56:
8d:e1:f1:a3:6e:74:0a:c1:59:51:dc:ca:60:3e:ef:26:55:c2:
98:d7:7a:23:f0:37:16:7c:95:a0:50:a2:fb:87:82:8f:4b:1e:
bc:b6:f2:93:32:0f:1e:c4:c8:7d:7a:92:c0:66:55:8d:ec:c1:
e2:0e:5e:47:ad:dd:52:d5:36:90:b4:17:ad:93:ea:92:72:ae:
1d:c2:1e:4e:ec:e8:c5:11:68:d7:65:55:86:7b:dc:86:c6:cd:
78:97:23:ee:1d:98:89:23:e4:7e:f7:d9:be:9d:84:9f:8d:ef:
6a:0f:84:30:53:5f:25:3d:34:45:af:70:01:64:17:dc:f1:92:
da:eb:bf:eb:11:5d:9c:38:4b:c0:e6:89:e0:2d:d8:ff:81:e5:
7a:16:fe:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:37:24 2025 by rpki-client