Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/W53uumy9G3BgTBfdQubP-mKNsY0.roa
File: W53uumy9G3BgTBfdQubP-mKNsY0.roa (raw, json)
Hash identifier: 7JyBtkmKdNlwUscikItOVXBwgnVaKVo+aCNAKoCGyhE=
Subject key identifier: 5B:9D:EE:BA:6C:BD:1B:70:60:4C:17:DD:42:E6:CF:FA:62:8D:B1:8D
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 0DE4
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/W53uumy9G3BgTBfdQubP-mKNsY0.roa
Signing time: Thu 28 Mar 2024 00:22:27 +0000
ROA not before: Thu 28 Mar 2024 00:22:27 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3556 (0xde4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Mar 28 00:22:27 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=5B9DEEBA6CBD1B70604C17DD42E6CFFA628DB18D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e9:fb:0f:6b:e8:42:46:0b:b4:88:64:75:a9:
cf:4f:49:7d:dd:4f:72:9e:0f:24:dd:de:d2:ca:6f:
9c:d2:74:39:2e:0b:2c:e2:4a:ef:87:0a:66:e8:1c:
13:7b:be:24:21:4b:c1:7f:8a:bc:a2:36:2e:b2:3a:
20:24:b6:31:93:c0:27:58:66:43:71:d4:a9:b6:54:
5f:cc:e9:77:e9:03:7d:96:26:63:63:67:ed:5b:3d:
1a:dc:5d:8d:a8:9b:99:74:f1:4f:73:73:ba:a7:e5:
3d:e2:ce:62:4a:df:c0:f3:be:0d:0b:d6:ca:10:ac:
68:f4:5e:26:5f:f5:61:cc:b1:74:54:ee:f2:24:a4:
f5:8e:1e:3c:fa:f5:7e:d0:9a:e2:90:29:73:2f:b0:
47:7b:60:e4:ae:ea:57:d7:31:cd:63:2c:6d:45:4e:
fe:fa:68:36:88:b5:82:ec:af:da:c3:98:c3:32:c3:
44:33:4e:d3:24:6a:08:4f:d1:c4:61:23:de:9b:a6:
c9:56:de:f5:7d:a3:7d:69:16:f1:e5:89:93:41:c3:
16:af:5c:dc:c2:3c:52:a3:01:e0:5d:2f:53:59:63:
ee:13:34:41:bb:e2:88:14:88:c7:c1:69:1b:fe:c0:
41:1b:d3:e5:c2:31:6c:2e:01:4a:08:53:ed:82:ee:
4c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:9D:EE:BA:6C:BD:1B:70:60:4C:17:DD:42:E6:CF:FA:62:8D:B1:8D
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/W53uumy9G3BgTBfdQubP-mKNsY0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
69:15:9f:d9:87:f5:7b:6d:ca:53:15:c7:f8:ab:64:aa:d4:8c:
90:d0:20:bb:d3:85:71:8d:a5:60:72:8f:e1:72:c9:58:0f:21:
0d:38:59:d1:6e:58:e7:55:c8:73:10:c5:0a:f5:36:4d:20:66:
df:5e:e7:62:21:82:ea:cf:b0:1c:52:77:7e:5c:1b:08:06:44:
7c:ff:9b:e6:1b:61:5c:f2:c7:81:c9:0a:c0:c7:8c:4a:08:04:
24:77:d9:25:01:7c:6b:7d:25:ab:bc:35:af:a4:5c:e3:95:29:
22:ab:25:d6:82:d5:a3:40:03:e7:f0:de:64:2a:da:fe:c8:8c:
0a:42:28:c1:00:b5:8f:4a:9c:b2:70:7c:c9:28:61:b9:7b:68:
8d:f0:f8:7d:74:35:0a:05:53:c4:6f:a0:69:dd:2c:f7:ba:4e:
e9:20:ca:aa:71:39:21:3e:76:03:03:74:b6:71:37:e5:4b:04:
e2:1c:f5:4c:6f:19:96:07:93:4d:6b:4b:6a:12:7f:8a:be:7f:
83:c1:fa:a5:f3:73:ed:b7:95:7f:63:09:21:37:f2:61:5c:f3:
43:fc:32:38:0a:4a:d4:c6:a4:be:68:f1:c8:ae:63:55:be:9a:
42:02:58:17:0f:cc:9c:7d:0a:9c:e6:16:6f:e0:b2:e7:81:8b:
c2:72:c3:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:34:07 2025 by rpki-client