Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/hFtJQ9uYxQ5Gz0znFDglnD9HoZo.roa
File: hFtJQ9uYxQ5Gz0znFDglnD9HoZo.roa (raw, json)
Hash identifier: QhMJ1BWFxvulhmQv3qV2ZGBrQA3D3K4Q/VsMSlajhCo=
Subject key identifier: 84:5B:49:43:DB:98:C5:0E:46:CF:4C:E7:14:38:25:9C:3F:47:A1:9A
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 16B2
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/hFtJQ9uYxQ5Gz0znFDglnD9HoZo.roa
Signing time: Sat 20 Apr 2024 11:53:37 +0000
ROA not before: Sat 20 Apr 2024 11:53:37 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5810 (0x16b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 20 11:53:37 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=845B4943DB98C50E46CF4CE71438259C3F47A19A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:da:22:1e:0b:90:0e:08:16:60:1f:3e:74:9e:
1d:b5:f4:55:fc:25:96:99:ec:a9:61:01:a1:cf:24:
fd:8e:ca:5e:a9:2d:d5:18:80:36:87:4b:5b:cc:61:
93:18:6a:4e:a3:dd:08:af:98:9f:fe:d2:51:54:81:
4d:71:f6:70:0d:33:b5:b0:a1:41:12:b4:f7:e6:9e:
7d:bd:41:e2:70:62:a5:07:26:ba:56:4a:d2:65:32:
8b:2d:fa:10:a0:12:cb:77:a8:96:da:ef:7c:cc:31:
b0:1d:48:13:a0:23:d7:f3:a2:9a:62:6c:f3:fa:18:
dc:1c:66:82:8c:3e:03:de:06:df:34:ac:eb:14:f4:
3d:cc:da:fc:76:85:f7:0d:02:2b:2a:07:b5:cc:0c:
47:ed:72:55:d8:16:b4:64:81:6b:46:e0:d8:78:5e:
bb:b4:53:e0:0a:95:d5:4e:72:03:2d:e6:b9:16:2a:
39:3b:fb:9f:11:8b:b5:65:ca:64:f3:ae:94:32:de:
a6:5d:88:97:8c:73:d8:72:23:87:de:82:dc:8a:45:
d2:55:d2:3b:31:35:9b:d9:71:e7:1a:1f:fc:d9:44:
a6:3a:64:c0:2c:4d:e6:a8:e0:29:96:f4:1c:3c:76:
7c:ce:ed:86:08:a4:6e:1e:3a:c7:b8:f1:94:c5:85:
df:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:5B:49:43:DB:98:C5:0E:46:CF:4C:E7:14:38:25:9C:3F:47:A1:9A
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/hFtJQ9uYxQ5Gz0znFDglnD9HoZo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6c:01:12:72:43:8d:5c:bc:a3:61:7f:46:b1:87:93:f2:53:19:
da:b1:80:d8:35:63:d6:40:a2:bd:5f:69:26:36:fa:3d:ca:f0:
9a:32:79:f8:fa:43:34:52:6d:7e:32:71:ce:a7:ff:22:e9:77:
08:0d:b0:31:af:50:7d:9d:89:db:ad:31:ed:73:8a:d0:46:79:
23:3d:e3:4d:b6:30:e0:4b:30:44:1c:e1:2d:2e:e8:76:b3:24:
d2:8a:2a:82:31:14:91:a4:aa:5d:3b:b3:f2:e9:e2:8b:3f:6a:
51:36:70:b0:06:77:fd:08:27:12:2a:3f:ec:6c:f2:71:3e:c0:
a8:15:cf:3b:06:43:d3:d3:62:78:55:bd:24:40:60:0f:a1:5a:
77:96:98:67:f2:b9:a3:b6:4b:a2:e9:ce:21:25:56:83:13:d5:
5d:f4:3c:b7:b3:7b:6e:26:3f:61:3f:01:de:34:f3:e7:f8:5a:
83:15:85:fa:35:3b:e5:d9:8b:38:80:9d:8d:61:af:18:e1:41:
bd:e2:4c:3f:cd:e2:fa:9d:d5:20:68:e5:79:ea:59:05:b0:20:
c8:30:7e:f6:d1:10:9c:60:41:23:e8:ad:40:f1:d5:e7:8e:f9:
1f:88:b1:f6:20:08:87:8e:e6:a0:48:d9:0a:74:12:42:7a:38:
bd:70:70:e9
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICFrIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MjAx
MTUzMzdaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDg0NUI0OTQzREI5OEM1
MEU0NkNGNENFNzE0MzgyNTlDM0Y0N0ExOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDC2iIeC5AOCBZgHz50nh219FX8JZaZ7KlhAaHPJP2Oyl6pLdUY
gDaHS1vMYZMYak6j3QivmJ/+0lFUgU1x9nANM7WwoUEStPfmnn29QeJwYqUHJrpW
StJlMost+hCgEst3qJba73zMMbAdSBOgI9fzoppibPP6GNwcZoKMPgPeBt80rOsU
9D3M2vx2hfcNAisqB7XMDEftclXYFrRkgWtG4Nh4Xru0U+AKldVOcgMt5rkWKjk7
+58Ri7VlymTzrpQy3qZdiJeMc9hyI4fegtyKRdJV0jsxNZvZcecaH/zZRKY6ZMAs
Teao4CmW9Bw8dnzO7YYIpG4eOse48ZTFhd/1AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUhFtJQ9uYxQ5Gz0znFDglnD9HoZowHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL2hGdEpROXVZeFE1R3ow
em5GRGdsbkQ5SG9aby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAbAESckONXLyjYX9GsYeT8lMZ2rGA2DVj
1kCivV9pJjb6PcrwmjJ5+PpDNFJtfjJxzqf/Iul3CA2wMa9QfZ2J260x7XOK0EZ5
Iz3jTbYw4EswRBzhLS7odrMk0ooqgjEUkaSqXTuz8uniiz9qUTZwsAZ3/QgnEio/
7GzycT7AqBXPOwZD09NieFW9JEBgD6Fad5aYZ/K5o7ZLounOISVWgxPVXfQ8t7N7
biY/YT8B3jTz5/hagxWF+jU75dmLOICdjWGvGOFBveJMP83i+p3VIGjleepZBbAg
yDB+9tEQnGBBI+itQPHV5475H4ix9iAIh47moEjZCnQSQno4vXBw6Q==
-----END CERTIFICATE-----
Generated at Sat Apr 26 14:31:36 2025 by rpki-client