Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/aOY2_YikdicSjjO08CTQDAFyHUs.roa
File: aOY2_YikdicSjjO08CTQDAFyHUs.roa (raw, json)
Hash identifier: JjP2qnwEGfEklU6DJXDi9ScsM/e9UD2Oevhwbk0/VoM=
Subject key identifier: 68:E6:36:FD:88:A4:76:27:12:8E:33:B4:F0:24:D0:0C:01:72:1D:4B
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 13EC
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/aOY2_YikdicSjjO08CTQDAFyHUs.roa
Signing time: Sat 13 Apr 2024 02:23:14 +0000
ROA not before: Sat 13 Apr 2024 02:23:14 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5100 (0x13ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 13 02:23:14 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=68E636FD88A47627128E33B4F024D00C01721D4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:96:9a:39:34:86:4c:11:15:3d:e7:6f:2b:36:
2e:02:f5:75:ff:42:9e:00:13:e5:c3:c6:6c:87:54:
d3:d9:90:8e:d4:2e:d3:35:2e:ec:a9:cf:7a:3e:dd:
9d:7e:cc:3d:b4:c8:ea:e3:51:0d:ba:ce:63:52:55:
40:92:42:80:12:cd:ea:ef:67:2f:22:41:4d:ed:22:
f2:4f:2b:0a:aa:6a:40:0a:ab:c0:f2:da:e9:ec:e9:
32:55:ef:27:ca:12:f6:fc:b2:7d:8c:48:67:76:8c:
3d:be:62:3b:dd:86:fd:9f:5b:4c:74:5d:50:5f:a5:
e8:2c:48:fa:b2:8d:da:4b:7e:7e:45:80:08:e4:2b:
24:b3:ec:ac:47:6c:e4:10:b1:83:ba:be:6e:fe:a4:
dc:49:58:1d:16:38:72:00:fa:6a:3f:e5:34:b8:06:
0e:47:5a:5b:54:10:a5:c7:b2:52:16:c4:8d:bd:3f:
f8:aa:c8:db:4f:83:4a:6e:50:81:e2:a4:21:c1:d3:
ef:e6:89:1a:42:b8:75:fe:29:08:f3:3b:e7:29:eb:
1a:00:03:5b:89:55:b2:9b:0f:3e:8a:ac:2d:1d:02:
9a:29:6e:75:4d:1b:9f:57:7e:ef:f1:38:81:ae:c3:
7a:00:be:a3:0b:32:47:40:20:29:3b:b5:b8:a9:f4:
32:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E6:36:FD:88:A4:76:27:12:8E:33:B4:F0:24:D0:0C:01:72:1D:4B
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/aOY2_YikdicSjjO08CTQDAFyHUs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c4:c5:53:b7:ea:cd:e1:16:f7:44:2d:dc:3a:f2:c1:0f:1e:c7:
fd:b6:1b:57:f6:03:ba:61:e0:99:bf:73:62:83:a1:dd:da:9c:
d2:00:45:cd:2f:9a:60:12:ed:e2:56:1e:0a:82:4b:13:ee:7e:
1a:50:f8:8c:47:9a:f5:f6:74:f8:6d:9f:7a:1e:73:f2:a4:13:
a1:8e:77:47:03:28:2f:5a:23:88:65:06:e9:17:ca:c7:9c:6d:
e4:cf:78:5c:f2:ab:e3:e5:9e:b9:e8:ed:3c:cb:c2:09:ff:b9:
4a:92:dd:8a:30:0b:55:64:0f:4e:17:86:0b:09:8e:3b:79:01:
5c:db:02:92:67:f5:c4:b2:87:bf:b7:db:6a:22:13:a2:8d:85:
5f:0a:2c:d1:45:28:dc:e3:87:5d:45:0a:62:78:48:65:73:1e:
c6:9b:6a:16:e8:5c:2b:67:f7:ce:58:5e:61:d4:0b:1c:00:ae:
dc:1d:ec:a0:28:bd:6f:75:91:dc:71:31:74:5c:99:35:38:0a:
db:14:07:0b:0b:96:73:ef:90:2b:b3:3d:f8:22:77:58:94:d6:
0a:41:26:32:4d:e6:74:fa:6c:ad:0a:49:9e:2a:6f:45:b5:36:
06:68:66:b9:6c:89:43:de:ad:41:98:f0:e7:90:54:ae:d9:71:
c1:ec:a8:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:24:27 2025 by rpki-client