Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/gOuLKArYtHr_15m0DtNIzgCG9oo.roa
File: gOuLKArYtHr_15m0DtNIzgCG9oo.roa (raw, json)
Hash identifier: gFxovVwVlrb/g9kxJONDRyi0SqvyIaESAkQLXn10J3k=
Subject key identifier: 80:EB:8B:28:0A:D8:B4:7A:FF:D7:99:B4:0E:D3:48:CE:00:86:F6:8A
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1B24
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/gOuLKArYtHr_15m0DtNIzgCG9oo.roa
Signing time: Thu 02 May 2024 08:24:11 +0000
ROA not before: Thu 02 May 2024 08:24:10 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6948 (0x1b24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 2 08:24:10 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=80EB8B280AD8B47AFFD799B40ED348CE0086F68A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:db:6e:5e:4a:e7:87:c4:6e:09:c6:74:c3:8c:
e0:44:bc:45:cc:6f:03:f6:28:bf:ba:34:1e:f4:65:
35:74:28:ed:ba:63:70:c6:56:ee:8d:df:d6:bf:a8:
27:ca:4a:b9:76:02:cc:43:69:0a:e5:43:51:4b:7d:
b3:c0:1a:84:67:95:3b:46:f1:f3:e6:0c:89:60:00:
5b:b3:b1:ac:75:03:f6:fd:cd:70:4c:2c:86:4a:eb:
00:e7:24:53:71:5b:57:e9:20:ec:1b:1a:9e:4f:cf:
4b:e6:8e:c5:0f:18:cf:3e:c6:3e:ce:0f:cc:4a:df:
a5:1a:0c:9d:11:3a:e8:b2:80:0a:bf:87:b2:49:1d:
f2:fd:4e:2c:24:3b:11:42:be:05:06:30:d5:22:06:
d4:a9:0f:f3:c5:09:14:c1:25:96:b3:1d:07:d3:41:
dd:e4:b5:d8:ea:49:f5:34:ac:d3:72:e0:dd:38:0b:
69:bd:ce:31:08:f1:b3:06:9a:60:aa:d5:7e:fe:34:
35:04:2b:82:6c:37:a7:f9:40:fd:33:3c:d7:bf:23:
a0:36:84:f2:a6:d6:ba:66:51:af:d4:64:b4:18:ae:
c2:32:ad:6f:51:91:30:5d:cc:08:53:e5:a4:4f:74:
ff:80:4d:4e:04:65:65:12:8b:9e:7f:2b:2c:2d:c8:
0e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:EB:8B:28:0A:D8:B4:7A:FF:D7:99:B4:0E:D3:48:CE:00:86:F6:8A
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/gOuLKArYtHr_15m0DtNIzgCG9oo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
91:d9:63:b5:e5:f5:da:d4:88:0c:80:40:20:a8:74:d1:3d:22:
f5:e9:c4:60:cd:59:cb:41:99:d2:0f:1f:70:16:6a:96:c2:08:
46:80:3b:4e:22:9b:77:6f:2f:ec:eb:f4:6d:80:97:06:8c:ea:
e1:95:83:85:63:7b:fb:b8:17:ab:35:15:0f:e7:35:d8:d6:0c:
14:f4:af:29:c9:94:c8:da:fa:38:be:1a:ed:89:b5:de:d8:d0:
97:b5:09:ad:a4:38:92:8a:6e:7c:0a:09:ff:d7:de:aa:bb:12:
06:8e:0e:2a:5e:6f:3f:c6:67:8f:29:cd:a4:76:ce:f6:37:2a:
52:a0:fb:c4:50:a4:66:86:9c:da:32:37:d9:4f:59:ae:38:33:
93:85:5d:77:34:b1:cd:fd:95:39:79:4b:a3:fd:26:1d:9b:29:
ae:cb:2f:68:27:29:dd:e5:92:2d:d5:03:00:1c:6f:93:78:2e:
92:b1:4c:ac:97:ae:46:14:4b:56:68:98:2e:ff:13:0f:02:f4:
88:75:0d:74:90:5b:13:00:46:94:fa:88:dc:e0:bb:73:f2:23:
f9:63:6c:32:57:65:57:8e:bc:e4:ae:f9:7e:fc:ed:32:ce:1d:
28:f0:c2:37:3a:f3:ec:2f:bf:24:7f:fb:3e:fd:f6:a4:cc:2e:
be:82:48:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:34:04 2025 by rpki-client