Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/kijT3VjEqJkJEOi_YoRl-gbwLQE.roa
File: kijT3VjEqJkJEOi_YoRl-gbwLQE.roa (raw, json)
Hash identifier: D68vzfu/3oT+N5s39ds1oBGFE3ktjmpIj+GLiuz41bE=
Subject key identifier: 92:28:D3:DD:58:C4:A8:99:09:10:E8:BF:62:84:65:FA:06:F0:2D:01
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 10F4
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/kijT3VjEqJkJEOi_YoRl-gbwLQE.roa
Signing time: Fri 05 Apr 2024 04:23:40 +0000
ROA not before: Fri 05 Apr 2024 04:23:40 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4340 (0x10f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 5 04:23:40 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=9228D3DD58C4A8990910E8BF628465FA06F02D01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:59:b3:a0:b6:3e:08:d9:ba:86:26:03:96:f6:
e2:ed:07:e4:b9:9d:39:c8:7d:d8:2c:77:b8:82:19:
9b:2d:46:3b:19:7e:64:0d:37:a5:43:7b:e5:6e:b1:
b3:12:3d:48:2e:11:f8:a7:f6:8e:be:14:00:9d:4d:
a5:6f:23:c7:fb:4f:15:c6:46:1f:75:ff:64:cd:73:
3d:4a:47:66:2a:74:4d:ba:7f:85:f3:e5:37:00:be:
44:d1:1e:df:70:bb:b9:30:b2:1a:fa:35:16:9c:dc:
40:f6:fc:c2:99:66:aa:aa:9e:e9:c4:7b:a2:5e:8a:
00:1b:64:fb:6e:a8:a3:6b:08:de:60:7f:b4:7b:60:
ce:bf:ad:cf:d9:b5:f1:8b:23:4f:c9:ea:04:2a:c0:
77:21:c9:74:f6:48:2d:11:85:ca:7d:d1:f6:24:19:
b6:a0:72:5f:4e:46:9b:f3:7f:1d:dc:7a:64:85:c2:
a5:74:ab:79:e5:1a:01:32:85:69:40:45:d7:9f:a8:
8a:df:48:63:46:ed:6c:e2:63:47:0f:7b:ba:ac:db:
c0:6b:af:fc:53:80:6a:74:e2:07:33:97:76:70:50:
d7:ef:51:38:1a:96:ce:5d:cd:72:7f:9b:a9:82:4b:
fd:6f:67:4f:ae:a6:c7:ac:d7:c6:98:4a:f1:f2:60:
13:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:28:D3:DD:58:C4:A8:99:09:10:E8:BF:62:84:65:FA:06:F0:2D:01
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/kijT3VjEqJkJEOi_YoRl-gbwLQE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
86:74:8e:66:de:ea:2a:d0:4d:8d:eb:d8:bf:17:4a:03:d9:4c:
46:bb:5d:f3:59:f6:db:1a:b8:71:35:c3:17:89:26:72:be:11:
db:f1:a9:e5:7b:34:b2:25:36:d7:1a:cc:3a:c0:5a:81:4e:ef:
04:e5:b8:7f:5d:00:6a:df:3a:ef:b0:c5:39:ee:a4:4a:29:90:
04:be:8e:8b:58:fd:c7:e5:38:2a:61:3d:fc:dd:83:b0:43:10:
78:0a:df:c7:d1:91:11:20:f9:b6:dc:2e:b9:03:14:2c:63:70:
9d:66:bf:93:6d:dc:c2:d5:22:a7:38:73:93:ed:bc:ba:6e:13:
e9:aa:f8:27:2b:e1:b3:46:83:02:7f:f2:08:3b:83:cd:b9:4f:
4c:69:fe:56:27:48:6e:e2:52:f4:cf:13:0b:ef:26:fc:4c:19:
41:db:a5:3d:0c:1c:04:b0:8e:25:75:f2:d1:6a:01:80:13:1a:
1f:15:f7:59:e9:47:05:03:da:84:23:33:2f:64:87:88:e5:c1:
d4:23:30:e4:3f:de:04:8a:25:0d:c0:1d:a8:f2:85:77:c7:e3:
9b:42:e4:08:d5:fb:4a:cb:2a:8a:e7:aa:e6:c5:fa:94:f8:52:
3f:24:26:56:cb:7e:8b:c2:19:b2:97:90:55:f5:a7:46:cc:4a:
76:dc:77:d0
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEPQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MDUw
NDIzNDBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDkyMjhEM0RENThDNEE4
OTkwOTEwRThCRjYyODQ2NUZBMDZGMDJEMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRWbOgtj4I2bqGJgOW9uLtB+S5nTnIfdgsd7iCGZstRjsZfmQN
N6VDe+VusbMSPUguEfin9o6+FACdTaVvI8f7TxXGRh91/2TNcz1KR2YqdE26f4Xz
5TcAvkTRHt9wu7kwshr6NRac3ED2/MKZZqqqnunEe6JeigAbZPtuqKNrCN5gf7R7
YM6/rc/ZtfGLI0/J6gQqwHchyXT2SC0Rhcp90fYkGbagcl9ORpvzfx3cemSFwqV0
q3nlGgEyhWlARdefqIrfSGNG7WziY0cPe7qs28Brr/xTgGp04gczl3ZwUNfvUTga
ls5dzXJ/m6mCS/1vZ0+upses18aYSvHyYBMNAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUkijT3VjEqJkJEOi/YoRl+gbwLQEwHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL2tpalQzVmpFcUprSkVP
aV9Zb1JsLWdid0xRRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAhnSOZt7qKtBNjevYvxdKA9lMRrtd81n2
2xq4cTXDF4kmcr4R2/Gp5Xs0siU21xrMOsBagU7vBOW4f10Aat8677DFOe6kSimQ
BL6Oi1j9x+U4KmE9/N2DsEMQeArfx9GRESD5ttwuuQMULGNwnWa/k23cwtUipzhz
k+28um4T6ar4Jyvhs0aDAn/yCDuDzblPTGn+VidIbuJS9M8TC+8m/EwZQdulPQwc
BLCOJXXy0WoBgBMaHxX3WelHBQPahCMzL2SHiOXB1CMw5D/eBIolDcAdqPKFd8fj
m0LkCNX7Sssqiueq5sX6lPhSPyQmVst+i8IZspeQVfWnRsxKdtx30A==
-----END CERTIFICATE-----
Generated at Sat Apr 26 14:37:14 2025 by rpki-client